Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/323830343a323962343a3a2f33322d3332203d3e20323634303330.roa
File:                     323830343a323962343a3a2f33322d3332203d3e20323634303330.roa (raw, json)
Hash identifier:          vY7WDIcM7lPKqohjIzLNrOa3NJR7MDAGUnq5wrvoGEk=
Subject key identifier:   CD:23:09:72:17:D2:97:4D:AB:00:2E:53:C2:A8:06:8A:CD:2D:92:17
Certificate issuer:       /CN=D9C358E6928303C5658F72633DD8C3CF3F10E8D5
Certificate serial:       35FAAB3B1CD3E4E4D1C112623CA4270D86D1796E
Authority key identifier: D9:C3:58:E6:92:83:03:C5:65:8F:72:63:3D:D8:C3:CF:3F:10:E8:D5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/323830343a323962343a3a2f33322d3332203d3e20323634303330.roa
Signing time:             Wed 28 Jun 2023 16:38:23 +0000
ROA not before:           Wed 28 Jun 2023 16:33:23 +0000
ROA not after:            Wed 26 Jun 2024 16:38:23 +0000
asID:                     264030
IP address blocks:        2804:29b4::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            35:fa:ab:3b:1c:d3:e4:e4:d1:c1:12:62:3c:a4:27:0d:86:d1:79:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D9C358E6928303C5658F72633DD8C3CF3F10E8D5
        Validity
            Not Before: Jun 28 16:33:23 2023 GMT
            Not After : Jun 26 16:38:23 2024 GMT
        Subject: CN=CD23097217D2974DAB002E53C2A8068ACD2D9217
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:12:e7:a4:2f:a6:dd:f2:8c:cd:7c:0a:23:64:
                    2a:2d:5b:c6:7d:50:52:2c:26:fa:3e:bf:1e:10:e4:
                    c9:37:d2:35:19:c9:2b:88:7a:49:69:b5:5b:8b:82:
                    10:b5:e3:3a:34:11:c0:66:d6:fe:91:98:1d:fc:35:
                    d9:ec:01:56:1c:fb:2b:75:6b:e6:3b:ad:fb:2c:ca:
                    ce:dc:d7:e5:d5:43:f8:4c:ea:41:6a:9d:1e:8d:35:
                    bf:75:35:5e:6f:c5:64:ad:32:9f:78:56:95:40:d7:
                    a3:f7:c6:dd:cd:81:e5:79:68:51:65:92:fd:5e:28:
                    be:75:3d:d1:d6:da:56:a2:52:4b:91:7e:11:ec:4a:
                    83:6d:52:47:02:f4:e7:5b:81:fb:ce:93:64:74:86:
                    79:2f:87:89:b1:56:8a:d2:b7:ea:43:11:4d:3c:fe:
                    2e:08:36:f0:62:12:43:a9:da:4b:28:74:61:1c:ec:
                    fc:85:91:8f:4f:05:da:2a:7c:9f:ba:ed:1a:76:68:
                    3d:2a:02:bc:fe:41:8f:fd:e6:d6:5f:dd:a1:14:3e:
                    92:56:62:b6:05:38:10:55:34:5b:6b:1f:9a:37:93:
                    1d:72:12:a3:37:44:f1:d2:a1:29:21:d4:3e:01:22:
                    c0:ee:1d:22:f2:2c:72:34:80:0c:e5:77:8b:95:0f:
                    aa:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:23:09:72:17:D2:97:4D:AB:00:2E:53:C2:A8:06:8A:CD:2D:92:17
            X509v3 Authority Key Identifier:
                keyid:D9:C3:58:E6:92:83:03:C5:65:8F:72:63:3D:D8:C3:CF:3F:10:E8:D5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D9C358E6928303C5658F72633DD8C3CF3F10E8D5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/0/323830343a323962343a3a2f33322d3332203d3e20323634303330.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:29b4::/32

    Signature Algorithm: sha256WithRSAEncryption
         59:d3:45:71:e2:5f:da:01:2c:f0:1e:a4:33:c7:00:5e:10:f7:
         71:d1:e5:70:3f:34:40:da:b7:6a:80:c8:08:a9:d4:bf:28:3a:
         44:38:41:6b:72:06:9d:0d:a1:1c:a5:73:fd:b9:39:3e:f4:fe:
         7f:ee:11:d2:55:b8:5b:d0:0f:43:e9:71:1e:6c:71:83:a3:ac:
         5f:74:15:78:0b:40:6a:0d:bd:59:c2:f8:0b:74:83:d5:23:ee:
         f8:90:8b:77:c1:90:2f:9d:b3:ca:19:91:aa:41:19:c0:49:21:
         58:e7:4a:79:e5:8e:ac:7c:58:a8:d9:35:bd:14:60:36:a1:d5:
         57:37:32:e4:26:0a:f0:d5:5e:25:32:0d:22:fa:d5:aa:c2:24:
         f2:bd:5b:cc:6e:60:ae:b9:be:46:c4:3c:0a:b2:0d:6a:68:6b:
         62:20:07:8b:85:a6:8b:98:65:cf:8e:79:89:3c:2e:e7:80:57:
         71:90:0c:c0:91:bd:ae:b3:b2:23:d0:21:d0:0a:00:98:ee:ed:
         4c:fe:00:da:66:b2:95:d5:75:94:a0:28:7f:de:32:0a:07:0e:
         f9:66:9d:0e:4e:f7:ce:75:05:52:33:6c:46:6c:1d:5c:c7:40:
         d8:c2:44:8d:6a:27:6e:22:a6:3f:4c:83:18:d6:5e:2d:0f:98:
         c0:c9:87:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:29 2024 by rpki-client on console-fra.rpki-client.org