Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33322d3332203d3e20323731333039.roa
File:                     323830343a373938303a3a2f33322d3332203d3e20323731333039.roa (raw, json)
Hash identifier:          TluFLFWUei9/P/oR/nlIu54pueODt+27or8lOVQ7kJ8=
Subject key identifier:   84:B2:16:4D:EC:83:91:DF:A7:F1:C8:52:D6:DB:21:B7:91:6E:49:94
Certificate issuer:       /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial:       5A1A82ED331A615A98D69D3B6A94E00AEA6537A2
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33322d3332203d3e20323731333039.roa
Signing time:             Mon 11 Mar 2024 17:38:21 +0000
ROA not before:           Mon 11 Mar 2024 17:33:21 +0000
ROA not after:            Mon 10 Mar 2025 17:38:21 +0000
asID:                     271309
IP address blocks:        2804:7980::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5a:1a:82:ed:33:1a:61:5a:98:d6:9d:3b:6a:94:e0:0a:ea:65:37:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
        Validity
            Not Before: Mar 11 17:33:21 2024 GMT
            Not After : Mar 10 17:38:21 2025 GMT
        Subject: CN=84B2164DEC8391DFA7F1C852D6DB21B7916E4994
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:92:92:a6:dd:52:44:e9:6b:3c:b7:37:f7:04:
                    52:7a:45:84:17:55:73:69:e5:bc:28:40:d9:05:34:
                    ee:8a:86:f6:ff:ad:18:da:5e:2e:be:65:25:d8:02:
                    36:ff:ac:17:ae:d8:18:d2:6d:d0:2d:c9:91:2a:62:
                    f0:6d:ea:dd:98:c0:27:19:a4:86:70:6c:44:11:d8:
                    2d:b4:11:ed:2d:14:80:a9:cc:35:60:e1:42:c5:e9:
                    f9:ca:61:3e:a6:48:25:60:77:b4:75:c4:94:3a:c7:
                    fd:d9:ce:d8:96:53:b7:d0:be:ee:cb:b0:a6:01:c8:
                    5c:d8:c0:c0:7a:18:2c:05:71:e0:6c:c7:80:82:06:
                    da:d0:f2:8a:3b:5c:9d:e0:95:16:61:98:b8:56:10:
                    48:bc:15:70:98:75:70:ec:6c:dc:e7:5e:30:9a:f4:
                    9f:61:2c:17:b8:c4:2a:e0:b4:13:05:ea:58:6f:3b:
                    d6:dd:bd:d4:6f:87:99:d0:1b:a3:51:21:24:a0:a7:
                    f1:45:3b:51:0a:b4:12:73:e4:c9:7e:b9:34:08:ae:
                    e8:7e:13:00:4c:de:bf:ef:f7:7e:08:04:93:40:d6:
                    f2:dc:32:78:dc:62:2f:09:59:ad:1a:3e:02:f3:00:
                    71:02:a9:cf:64:a4:07:ea:84:84:1e:d9:96:d0:76:
                    1a:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:B2:16:4D:EC:83:91:DF:A7:F1:C8:52:D6:DB:21:B7:91:6E:49:94
            X509v3 Authority Key Identifier:
                keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33322d3332203d3e20323731333039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:7980::/32

    Signature Algorithm: sha256WithRSAEncryption
         6b:79:a8:ed:ae:41:90:4a:19:26:29:b4:89:10:25:1f:4e:be:
         bc:ea:45:24:22:71:6b:ac:6d:f8:51:e7:36:ef:d6:a8:16:ab:
         30:c9:cd:ab:50:36:c3:d8:0d:61:19:f5:06:05:73:bd:19:b9:
         67:c5:8a:d7:ec:2a:16:78:24:e7:e7:9f:2e:fe:60:b3:e8:66:
         cf:84:84:4a:e4:31:e0:39:ba:87:1d:41:ff:50:da:4f:56:53:
         3d:60:28:c1:e6:f4:96:1b:3d:36:4a:b7:c6:bb:00:95:6a:09:
         fe:5c:39:3b:15:4c:d2:64:1f:c6:e4:51:04:17:f7:a6:2d:fd:
         38:fd:16:31:2f:0b:db:3b:f2:5f:a4:17:93:8d:06:b9:97:cc:
         f6:01:7c:5e:e9:29:a5:f6:31:7a:19:ce:45:a9:10:a9:07:ec:
         16:ef:73:3b:be:28:a1:39:84:86:ed:0b:d3:79:f3:53:87:81:
         88:59:40:dc:4d:ed:52:ee:46:6c:7e:e3:08:5c:26:23:e8:a1:
         80:cf:cc:7d:aa:dc:d8:f5:84:de:9d:ba:b3:e2:75:19:e7:50:
         41:b4:75:b1:43:8b:7c:1d:6b:f5:38:d8:0e:7d:15:32:72:5f:
         b8:85:ad:a2:2a:fa:a3:59:7c:1c:f8:74:19:1e:fb:79:94:a3:
         3e:32:6e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:35 2024 by rpki-client on console-fra.rpki-client.org