Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/3134332e3133372e34302e302f32322d3232203d3e20323634303330.roa
File:                     3134332e3133372e34302e302f32322d3232203d3e20323634303330.roa (raw, json)
Hash identifier:          zEXYT1IGXJRueg+3BSMoZhl1Pa8ML9KkcZ9vZswiadY=
Subject key identifier:   86:58:6B:7D:A9:AE:C4:2B:A8:CD:EA:B4:9E:52:D8:7A:FE:AF:83:5A
Certificate issuer:       /CN=D9C358E6928303C5658F72633DD8C3CF3F10E8D5
Certificate serial:       4FE75E2DAEFEE04A0C58ECF66C007AFE176FA9D5
Authority key identifier: D9:C3:58:E6:92:83:03:C5:65:8F:72:63:3D:D8:C3:CF:3F:10:E8:D5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/3134332e3133372e34302e302f32322d3232203d3e20323634303330.roa
Signing time:             Wed 28 Jun 2023 16:38:23 +0000
ROA not before:           Wed 28 Jun 2023 16:33:23 +0000
ROA not after:            Wed 26 Jun 2024 16:38:23 +0000
asID:                     264030
IP address blocks:        143.137.40.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:e7:5e:2d:ae:fe:e0:4a:0c:58:ec:f6:6c:00:7a:fe:17:6f:a9:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D9C358E6928303C5658F72633DD8C3CF3F10E8D5
        Validity
            Not Before: Jun 28 16:33:23 2023 GMT
            Not After : Jun 26 16:38:23 2024 GMT
        Subject: CN=86586B7DA9AEC42BA8CDEAB49E52D87AFEAF835A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:21:1c:e6:f4:3c:34:c4:00:97:52:40:5f:c8:
                    a1:c8:5d:97:64:b9:de:fa:75:50:79:04:59:b2:ce:
                    80:20:5f:ec:b5:38:aa:d3:3e:98:61:c4:20:be:f8:
                    35:89:3d:6c:06:a5:f2:6c:a6:a1:c1:02:40:a8:6f:
                    16:99:56:d8:c7:16:22:56:79:93:10:78:f2:5c:ec:
                    dc:45:87:90:b2:19:91:ce:42:39:7c:7c:fc:a8:a6:
                    5d:bb:37:93:e0:4f:0b:a6:8a:eb:96:b6:59:01:cb:
                    15:07:7e:30:10:0e:98:ec:8a:29:1b:e6:2c:2e:22:
                    1b:f7:0d:eb:9a:a5:8f:1e:c0:15:49:e0:ad:17:a5:
                    84:9e:dc:00:6c:7e:2f:d1:e7:9f:3e:c0:92:fd:7d:
                    25:ed:9a:d8:37:ab:5c:74:ce:ef:5c:55:73:ad:93:
                    9e:f0:22:2d:6f:9d:2d:18:e4:ff:58:a0:9a:f5:9f:
                    6a:45:27:83:fa:fd:26:be:3c:79:1b:26:eb:36:cc:
                    f1:2e:5b:df:07:dc:52:2d:4a:88:88:4b:0a:40:19:
                    26:78:21:28:ce:84:b0:1b:0c:1a:16:56:be:3d:b1:
                    2c:e5:60:ab:9b:eb:65:51:fc:25:d3:7e:a2:f7:7b:
                    2c:21:c5:aa:3b:0f:34:27:91:28:42:56:50:e1:9f:
                    fb:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:58:6B:7D:A9:AE:C4:2B:A8:CD:EA:B4:9E:52:D8:7A:FE:AF:83:5A
            X509v3 Authority Key Identifier:
                keyid:D9:C3:58:E6:92:83:03:C5:65:8F:72:63:3D:D8:C3:CF:3F:10:E8:D5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/3134332e3133372e34302e302f32322d3232203d3e20323634303330.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  143.137.40.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1b:d1:e7:5c:24:a1:60:8a:6d:40:d3:20:9f:da:19:14:60:c4:
         fc:27:d2:14:39:c3:c4:c1:ca:8f:cf:91:fe:d1:ba:b7:11:00:
         0a:bf:7d:21:0f:5e:67:d0:f8:2a:e6:eb:ec:96:50:ad:85:fb:
         3f:e2:3c:97:fa:58:ed:45:46:4d:f0:d9:59:78:b2:64:3b:12:
         f8:97:3c:8c:ad:3c:62:d2:2d:f5:09:7a:f0:f1:e0:a6:b4:28:
         02:6a:ef:a4:99:3a:5b:29:4a:ec:17:85:0d:21:2b:25:ed:3f:
         24:03:32:32:11:63:4e:26:99:3c:fc:f0:9b:b1:4d:6d:97:fa:
         c3:d9:5c:bb:25:0a:2c:22:75:19:1c:83:fa:d8:aa:8b:06:5d:
         2a:97:fa:5a:4a:49:eb:fd:1e:92:53:78:90:36:e9:8e:4d:36:
         da:9b:ff:1c:48:39:19:04:3f:c0:cf:6b:4d:7a:d1:85:78:a6:
         aa:f4:63:2a:54:9d:70:60:f0:2e:f6:b3:10:4d:35:80:d1:6c:
         5b:74:5e:8a:40:89:8c:37:f7:0c:90:f2:d1:ec:f2:31:a5:38:
         33:82:88:1e:5a:2f:51:ab:c1:48:0b:5b:79:1d:46:c5:04:fb:
         54:1d:0c:c4:6a:0e:94:4e:a3:95:b4:da:06:4b:f3:4b:15:c8:
         30:9b:9f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:30 2024 by rpki-client on console-ams.rpki-client.org