Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32342e302f32332d3233203d3e20323731333039.roa
File:                     3230372e3234382e32342e302f32332d3233203d3e20323731333039.roa (raw, json)
Hash identifier:          frj4Tvnw9Fgu6WcEqi6OSPuQdWcNZf91mx7bDLIXtpk=
Subject key identifier:   C7:50:BF:49:7D:80:AC:C6:F7:33:4E:A5:2B:93:A9:F0:24:F4:E6:86
Certificate issuer:       /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial:       314A1C323ED2683F94C2C5CCF481A66A455E5B65
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32342e302f32332d3233203d3e20323731333039.roa
Signing time:             Mon 11 Mar 2024 17:38:23 +0000
ROA not before:           Mon 11 Mar 2024 17:33:23 +0000
ROA not after:            Mon 10 Mar 2025 17:38:23 +0000
asID:                     271309
IP address blocks:        207.248.24.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            31:4a:1c:32:3e:d2:68:3f:94:c2:c5:cc:f4:81:a6:6a:45:5e:5b:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
        Validity
            Not Before: Mar 11 17:33:23 2024 GMT
            Not After : Mar 10 17:38:23 2025 GMT
        Subject: CN=C750BF497D80ACC6F7334EA52B93A9F024F4E686
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:e3:09:04:30:d0:60:60:a3:7f:c9:3c:bc:b7:
                    d0:cf:07:8a:cc:7a:ac:c5:1d:1a:b7:57:ae:15:23:
                    a8:bd:36:de:15:1a:db:8e:72:51:3b:bf:74:98:91:
                    2f:b7:57:ae:b6:1c:c9:b9:2b:dc:50:60:07:d6:67:
                    5b:ea:b4:96:9c:af:e4:0b:e7:ea:bb:01:21:d0:67:
                    3d:84:32:65:17:3a:6c:c0:bf:ed:c0:3b:85:6e:f6:
                    7d:6f:6b:98:4f:36:eb:0e:b8:32:9f:38:b4:13:8c:
                    c1:e2:b5:96:36:e0:22:de:9a:13:b5:9c:44:45:df:
                    9b:80:d8:63:b9:02:12:d4:bc:65:36:ed:ee:4f:8b:
                    60:ad:15:aa:d8:08:71:a6:87:27:ab:ce:12:f6:c1:
                    22:2d:22:41:fa:af:fa:9f:60:29:2a:7d:db:9c:9d:
                    bb:f7:b0:c7:d2:74:b6:cc:25:33:7e:d7:2f:94:32:
                    df:06:3e:f8:f6:ab:e8:54:c6:72:41:23:62:fc:61:
                    cc:fa:db:31:30:99:42:fd:98:23:ed:80:e2:09:f6:
                    07:65:10:3c:59:f9:26:51:5f:61:81:48:e0:71:36:
                    ec:6f:53:15:8c:20:66:fc:da:55:d4:c7:e4:6a:4b:
                    d3:0d:a9:f8:00:28:e0:b7:66:9d:2f:72:50:13:59:
                    3c:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:50:BF:49:7D:80:AC:C6:F7:33:4E:A5:2B:93:A9:F0:24:F4:E6:86
            X509v3 Authority Key Identifier:
                keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32342e302f32332d3233203d3e20323731333039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  207.248.24.0/23

    Signature Algorithm: sha256WithRSAEncryption
         bb:a2:db:b2:e6:32:dd:cc:09:ec:53:e2:0a:55:b3:fa:f5:e0:
         2e:01:77:a0:6e:b5:f7:9d:2e:51:c4:6e:d0:2e:82:78:a8:ac:
         26:5f:20:77:c9:56:6b:fc:cb:e5:42:ea:db:83:0b:5e:8e:57:
         e8:41:56:ab:26:f2:7c:18:3c:59:e0:19:55:08:22:f3:16:99:
         5d:9e:85:15:47:cb:c1:c7:e0:62:6e:77:1c:87:f6:f4:d3:07:
         00:6d:12:76:82:e0:14:75:7e:1f:1d:12:97:02:4f:98:ea:19:
         fb:56:bc:8b:75:5a:35:97:7a:d9:ae:77:ba:42:9e:b1:9f:ea:
         3b:17:f4:bb:d7:10:9d:f4:f1:d4:43:b9:69:6e:36:4e:f6:52:
         ce:f3:75:e9:c4:ab:52:ca:c6:4f:a8:c0:c8:7a:bf:b5:a9:13:
         30:ba:da:fd:31:41:d7:f6:d1:1f:0e:2b:5e:6f:69:ec:93:98:
         97:82:32:fe:84:74:a6:77:d4:c6:e4:a4:aa:b2:da:63:7b:1e:
         0d:e5:55:fa:c0:c8:f7:df:1d:e4:c1:83:e4:eb:93:a4:f7:51:
         5b:90:aa:b2:f9:7e:ab:56:4d:d5:ff:d5:42:06:89:c0:84:e1:
         0b:71:1f:c3:4c:61:8d:4e:59:62:e3:8c:88:16:ed:13:58:a0:
         bb:f4:1f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:35 2024 by rpki-client on console-fra.rpki-client.org