Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a633030303a3a2f33342d3334203d3e20323732363737.roa
File:                     323830343a383666343a633030303a3a2f33342d3334203d3e20323732363737.roa (raw, json)
Hash identifier:          jETYUEGXCxiM5JF5y5s9wgEiLLTGM9IohFRefnWoADE=
Subject key identifier:   3E:25:42:43:24:D3:BB:F3:3C:D3:05:72:1C:45:5E:07:93:B8:1E:67
Certificate issuer:       /CN=0504345023EFC15C3D01D89B97881FD18D235AA8
Certificate serial:       0CCA69FAF1C24F854DD160A558624DFD8A16CCCF
Authority key identifier: 05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a633030303a3a2f33342d3334203d3e20323732363737.roa
Signing time:             Thu 22 Feb 2024 20:56:36 +0000
ROA not before:           Thu 22 Feb 2024 20:51:36 +0000
ROA not after:            Thu 20 Feb 2025 20:56:36 +0000
asID:                     272677
IP address blocks:        2804:86f4:c000::/34 maxlen: 34

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:ca:69:fa:f1:c2:4f:85:4d:d1:60:a5:58:62:4d:fd:8a:16:cc:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0504345023EFC15C3D01D89B97881FD18D235AA8
        Validity
            Not Before: Feb 22 20:51:36 2024 GMT
            Not After : Feb 20 20:56:36 2025 GMT
        Subject: CN=3E25424324D3BBF33CD305721C455E0793B81E67
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:51:72:24:8c:d6:06:d7:f2:c0:3d:65:12:2f:
                    6c:2c:d7:b9:40:c7:d6:3d:90:38:c3:fb:95:37:b5:
                    4a:41:14:c3:7d:f6:29:ea:5e:0b:9b:08:b9:49:12:
                    8a:00:25:c9:18:64:4a:b3:2a:f2:33:5b:87:5c:ba:
                    99:4a:7e:58:a7:23:12:a7:f9:9e:7b:3d:68:ed:2f:
                    4e:1e:6c:c6:4a:2a:8e:d8:8d:21:42:fc:69:8b:51:
                    07:c3:dc:2d:04:12:05:c5:e6:0f:74:18:5c:60:df:
                    69:28:fc:ac:2b:3b:77:ca:58:7f:a8:5f:67:fb:7a:
                    75:67:5b:30:25:47:4e:ee:04:4f:ee:8f:de:bc:10:
                    25:8b:29:17:ce:73:3f:ff:21:b4:d8:96:03:9f:1b:
                    e1:56:8d:23:85:ea:a5:05:a6:8a:d6:39:32:bf:a7:
                    e7:d4:05:84:8f:20:1f:c4:2d:c4:ca:2f:8a:a6:46:
                    1c:35:8d:54:1c:e3:81:0d:0e:f7:bd:75:bd:34:54:
                    74:4d:91:34:1c:1f:4b:1e:ac:9b:12:b3:eb:a2:8d:
                    55:7b:f1:50:b0:36:aa:01:29:82:59:4b:81:1d:07:
                    b4:9d:f2:a8:b7:df:f3:02:ae:91:58:a0:5f:36:c9:
                    2f:af:c0:b8:1a:10:98:d4:76:86:1f:7a:02:f8:67:
                    b1:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:25:42:43:24:D3:BB:F3:3C:D3:05:72:1C:45:5E:07:93:B8:1E:67
            X509v3 Authority Key Identifier:
                keyid:05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/0504345023EFC15C3D01D89B97881FD18D235AA8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a633030303a3a2f33342d3334203d3e20323732363737.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:86f4:c000::/34

    Signature Algorithm: sha256WithRSAEncryption
         a5:77:80:78:2a:18:f5:68:80:ea:ce:0d:76:ba:fa:d8:53:f0:
         77:6d:85:85:0b:c0:fd:1d:3b:36:a2:84:ab:67:4d:90:7c:dd:
         a9:0e:66:e5:f1:0a:81:1b:45:ab:bb:7c:52:bc:63:13:1f:2e:
         2d:8c:bc:8a:47:be:f5:ff:c2:ef:0a:06:6c:31:40:41:46:dc:
         c7:ab:6a:7c:e8:57:02:76:6d:c5:33:04:18:cb:e3:f9:38:3e:
         03:93:64:8b:9d:e3:40:64:8b:82:4e:04:8f:08:bf:3a:85:ca:
         99:3f:83:65:21:c5:bc:ac:82:df:38:14:69:a8:c3:f4:b7:3c:
         d9:11:c1:3e:f0:ab:7d:9d:db:10:be:97:49:69:5e:e4:80:89:
         1c:2b:e8:76:24:51:79:9c:b3:c2:be:c1:0b:22:4c:43:ef:66:
         7d:e2:bc:da:34:67:3f:7c:db:43:80:0b:8b:ce:ca:10:ff:c9:
         3b:95:64:c0:32:ba:e4:ae:58:82:e0:74:37:25:5f:26:2e:6c:
         69:83:35:c8:ae:c5:af:39:1a:a7:92:1e:c7:fb:84:b1:08:90:
         86:e5:b5:c3:50:41:66:cf:69:3e:56:42:b2:8e:0c:5c:b1:54:
         17:f2:b8:b8:bc:62:d6:e0:c1:1d:87:d3:4a:07:f8:89:c7:6b:
         9c:24:64:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:28 2024 by rpki-client on console-fra.rpki-client.org