Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
File:                     3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa (raw, json)
Hash identifier:          6vcAc9CciYRc9pz+Tnet0y8vdIMuOWumLKTVQn3vc/M=
Subject key identifier:   1B:D8:87:A0:19:CD:AE:F6:2F:CC:63:1E:39:68:38:18:6A:F6:47:4C
Certificate issuer:       /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial:       3826C2E211D1575411D0CAB0E548014FD0FCEB2A
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
Signing time:             Mon 11 Mar 2024 17:38:22 +0000
ROA not before:           Mon 11 Mar 2024 17:33:22 +0000
ROA not after:            Mon 10 Mar 2025 17:38:22 +0000
asID:                     271309
IP address blocks:        207.248.25.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            38:26:c2:e2:11:d1:57:54:11:d0:ca:b0:e5:48:01:4f:d0:fc:eb:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
        Validity
            Not Before: Mar 11 17:33:22 2024 GMT
            Not After : Mar 10 17:38:22 2025 GMT
        Subject: CN=1BD887A019CDAEF62FCC631E396838186AF6474C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:26:6a:c8:b0:52:15:52:b6:ae:cf:3b:bb:19:
                    21:94:38:04:7b:b7:14:76:af:e7:5c:15:6c:a4:5c:
                    41:ca:51:e6:0d:fd:ed:90:bb:1f:c1:46:d7:0e:e5:
                    0f:06:50:f9:48:bb:c1:7e:95:61:f4:ca:fc:2f:62:
                    2a:0b:7a:df:6e:ec:0e:4e:1e:a7:24:8e:66:33:56:
                    78:d4:4d:20:01:5c:a5:30:8b:db:2f:e8:74:9b:7c:
                    21:8a:16:ca:ef:1c:7d:0c:90:a8:43:d5:50:e2:5e:
                    e0:4c:75:52:46:64:8f:a4:4c:6e:25:c8:0d:2f:31:
                    ec:3d:b4:83:2a:a7:2c:05:3e:10:e5:fb:76:1d:23:
                    0b:f6:a9:0a:05:12:16:23:05:01:1a:e8:8f:32:a4:
                    e9:6e:25:96:30:09:e9:21:89:85:2a:4c:e1:5e:99:
                    0c:8c:33:b1:ef:7d:10:c4:d1:b5:cc:18:cb:c4:24:
                    ff:14:60:e4:28:53:1f:05:2b:d8:9f:63:75:6f:84:
                    6a:21:b6:de:c1:a4:ce:29:38:e3:9c:0c:dc:8b:23:
                    df:36:87:d3:22:61:ca:bb:a4:a5:19:31:76:10:8f:
                    21:8f:3d:3e:87:55:e4:0d:70:86:e8:04:72:56:87:
                    e5:86:f8:93:6b:a4:d8:da:35:f2:f2:22:db:9a:24:
                    2f:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:D8:87:A0:19:CD:AE:F6:2F:CC:63:1E:39:68:38:18:6A:F6:47:4C
            X509v3 Authority Key Identifier:
                keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  207.248.25.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b7:97:9a:be:96:c7:2e:40:69:7d:23:f4:94:98:e7:02:92:85:
         bd:dd:65:53:10:b1:78:5e:bb:7f:28:3d:17:96:23:61:7a:e6:
         ba:dc:36:fd:07:ce:a4:8f:ce:47:27:f3:fc:9e:e9:78:fc:eb:
         3f:1f:f9:fc:56:52:7f:25:48:8d:7e:2a:a2:f8:ed:59:32:4f:
         73:9f:59:cd:38:33:d0:62:9d:07:97:f6:2d:01:9e:cd:41:90:
         46:c7:4b:e8:77:8e:97:21:41:f9:01:2a:52:ab:b7:cb:6e:d0:
         a5:5d:f4:3d:aa:70:03:c1:01:ff:46:89:31:35:76:64:71:2d:
         3d:ae:c3:25:5a:7d:5b:c5:25:51:c1:0a:a1:74:25:40:12:b5:
         09:25:97:42:7d:c8:d2:ea:cc:76:35:91:ff:a4:40:f4:db:f9:
         fd:09:6e:96:41:c4:d6:7f:c1:9b:49:eb:3c:e3:77:17:15:a0:
         62:40:92:0c:d4:6e:75:78:23:56:85:a9:8a:bd:88:0f:c5:b5:
         e8:1c:89:2d:51:08:09:66:91:3b:ec:b0:b1:49:17:a0:74:fc:
         8c:38:e7:cd:62:9d:b9:88:ca:d3:d9:8c:9d:28:51:4e:af:00:
         ea:b4:d1:8e:e3:99:0f:44:f3:d0:ab:5a:ec:95:ad:97:77:ab:
         89:dc:27:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:44 2024 by rpki-client on console-ams.rpki-client.org