Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32362e302f32332d3233203d3e20323731333039.roa
File:                     3230372e3234382e32362e302f32332d3233203d3e20323731333039.roa (raw, json)
Hash identifier:          3QI4eol5o+lXPH/M6Eyirh7JbRtZH0fjCafPAq8zriI=
Subject key identifier:   42:24:6F:2D:CD:C2:F8:25:59:C5:2D:19:B7:5A:D0:00:E3:5C:11:30
Certificate issuer:       /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial:       41514F9A4CC0E663C8D3A325721E6C4FB05A15C7
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32362e302f32332d3233203d3e20323731333039.roa
Signing time:             Mon 11 Mar 2024 17:38:22 +0000
ROA not before:           Mon 11 Mar 2024 17:33:22 +0000
ROA not after:            Mon 10 Mar 2025 17:38:22 +0000
asID:                     271309
IP address blocks:        207.248.26.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            41:51:4f:9a:4c:c0:e6:63:c8:d3:a3:25:72:1e:6c:4f:b0:5a:15:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
        Validity
            Not Before: Mar 11 17:33:22 2024 GMT
            Not After : Mar 10 17:38:22 2025 GMT
        Subject: CN=42246F2DCDC2F82559C52D19B75AD000E35C1130
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:84:6f:38:2a:72:11:68:b1:6d:b4:cb:dd:6a:
                    39:62:6a:06:22:39:19:ec:a0:f6:b6:3e:3d:7a:24:
                    7f:5e:cf:e0:b2:14:68:00:c0:af:89:b8:b7:f7:a6:
                    20:ad:dc:c0:70:c4:49:0c:4c:06:37:c5:3f:d5:42:
                    3e:d9:bc:69:59:a0:19:fa:e2:7f:64:f1:d4:74:f5:
                    02:02:b0:b9:07:47:1f:77:61:dc:ed:e1:f2:a3:f3:
                    d1:b2:4a:ce:d0:b3:0f:69:28:a3:ff:b8:51:4f:ea:
                    d5:f1:ed:b4:d0:0e:22:22:68:9c:fe:0f:a9:d3:d2:
                    45:a8:f3:ff:9e:6a:86:8e:16:b9:39:b5:3a:27:0d:
                    d1:46:8a:73:fe:42:ad:88:e2:fd:f6:c5:55:b9:38:
                    20:46:36:fc:78:80:b0:f1:7d:45:89:74:3f:38:dc:
                    8b:fd:a5:0f:04:65:96:e9:3e:54:25:40:ea:19:e6:
                    0a:51:29:d4:b7:d5:32:e3:44:b0:3a:9e:ac:cd:29:
                    1f:7d:27:d7:be:19:40:e1:cc:dc:7f:98:ca:a0:0a:
                    04:86:23:af:43:25:ee:29:4d:e0:16:02:30:0c:49:
                    8b:cb:4f:12:4e:43:6e:61:c6:23:39:8a:83:71:da:
                    bd:23:9e:e3:bb:33:34:5c:b5:7b:1c:14:1c:70:1f:
                    90:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:24:6F:2D:CD:C2:F8:25:59:C5:2D:19:B7:5A:D0:00:E3:5C:11:30
            X509v3 Authority Key Identifier:
                keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32362e302f32332d3233203d3e20323731333039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  207.248.26.0/23

    Signature Algorithm: sha256WithRSAEncryption
         6f:d7:1e:be:a9:e5:84:57:88:e6:09:2e:c9:e4:71:ed:75:1d:
         bd:94:5b:59:df:03:4f:e7:04:40:d3:37:dd:93:95:49:2c:1b:
         f1:71:6f:71:22:59:14:dd:09:1e:c7:be:83:b4:1a:30:19:a1:
         b1:a2:13:fa:2b:1b:0a:17:90:29:9a:12:d6:85:62:e7:e9:5f:
         be:68:44:7e:d9:91:5b:ad:e8:b3:d8:be:87:1a:40:e7:a7:51:
         70:db:be:a0:06:80:ad:27:1f:25:e7:73:72:f9:df:2d:a3:22:
         82:75:1f:83:2c:51:d0:17:e8:b5:48:ce:9a:80:96:b3:ad:d0:
         49:83:30:6a:49:67:12:5d:fc:03:af:42:30:e7:97:f2:90:cb:
         84:9b:9e:89:40:a6:8c:b2:27:6c:9d:d7:89:64:43:34:f9:59:
         bd:8f:42:3a:9e:70:96:49:cd:91:da:62:97:d2:79:77:e9:f3:
         4a:a0:c6:fe:ae:98:58:68:51:2c:81:42:41:da:ba:19:2e:dd:
         1c:97:4b:da:5d:d9:cd:ce:bb:57:da:05:57:e2:d5:59:0b:8d:
         00:31:cd:b9:50:e1:3d:1f:8a:4e:d0:a8:f6:85:33:aa:d6:d4:
         c2:b5:dc:98:79:84:83:90:12:8c:9d:2e:69:cb:a8:ce:b1:b0:
         21:82:80:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:35 2024 by rpki-client on console-fra.rpki-client.org