Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33342d3334203d3e20323731333039.roa
File:                     323830343a373938303a3a2f33342d3334203d3e20323731333039.roa (raw, json)
Hash identifier:          4OyGTRANRH41/96+Vs6o2xGGvbjTNKnmOMwF+PzVlF8=
Subject key identifier:   CE:1C:6F:B7:3D:C3:57:80:FF:6A:CA:21:F3:A9:A6:71:DD:F0:27:00
Certificate issuer:       /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial:       18D29BE74181F1A65A2D3D47038D394F994C476F
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33342d3334203d3e20323731333039.roa
Signing time:             Mon 11 Mar 2024 17:38:22 +0000
ROA not before:           Mon 11 Mar 2024 17:33:22 +0000
ROA not after:            Mon 10 Mar 2025 17:38:22 +0000
asID:                     271309
IP address blocks:        2804:7980::/34 maxlen: 34

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:d2:9b:e7:41:81:f1:a6:5a:2d:3d:47:03:8d:39:4f:99:4c:47:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
        Validity
            Not Before: Mar 11 17:33:22 2024 GMT
            Not After : Mar 10 17:38:22 2025 GMT
        Subject: CN=CE1C6FB73DC35780FF6ACA21F3A9A671DDF02700
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:39:cc:e7:04:63:5f:06:89:14:a1:57:ee:98:
                    41:84:d9:03:60:35:48:26:b7:03:5b:29:2f:90:01:
                    cc:e7:37:af:50:6f:72:f9:a3:d9:88:de:9f:44:2b:
                    c2:ce:98:44:63:d7:f2:0d:83:b5:ee:9f:a6:0c:f6:
                    5f:38:3a:1a:39:94:83:c6:b3:46:a0:3e:8d:e0:7c:
                    44:d7:67:06:a5:21:e3:41:c9:f4:6a:e3:f3:94:b2:
                    df:67:e7:b7:7b:68:7f:24:bd:55:a6:b5:8e:73:d9:
                    97:04:70:51:9d:2e:2c:c6:2b:d9:e1:90:4d:fc:78:
                    57:6d:d3:f2:01:2e:8e:50:d2:95:80:16:ed:98:fd:
                    d9:b9:70:c3:4c:f1:bb:a2:16:97:45:be:78:c4:af:
                    ca:00:2a:11:26:47:bb:f7:0c:d8:36:10:42:3d:a1:
                    03:54:ee:6a:ae:78:3c:63:23:d5:49:90:d5:98:92:
                    38:33:42:17:b5:0d:11:71:09:bd:40:53:8c:fe:3b:
                    cb:b4:ec:d8:ec:15:7f:35:0f:d9:83:0e:3e:50:98:
                    69:93:4b:69:f4:78:ec:01:56:f6:b3:e0:f6:52:3c:
                    96:62:44:63:cf:ef:08:29:b5:f6:0a:5d:14:ff:a9:
                    c0:1b:c7:56:0d:bc:08:39:fb:a4:9e:45:f3:f7:9c:
                    82:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:1C:6F:B7:3D:C3:57:80:FF:6A:CA:21:F3:A9:A6:71:DD:F0:27:00
            X509v3 Authority Key Identifier:
                keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/323830343a373938303a3a2f33342d3334203d3e20323731333039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:7980::/34

    Signature Algorithm: sha256WithRSAEncryption
         b1:9e:c8:f7:fe:57:16:31:b9:ba:06:80:2b:8b:80:ae:f5:29:
         d6:e0:9d:c8:fb:ab:76:4e:66:d3:19:36:45:f8:bf:b1:7b:63:
         55:df:20:55:77:88:3e:09:71:14:96:a7:14:f6:ed:18:19:ee:
         bc:8e:4c:c1:40:72:01:a1:47:75:ff:cd:b6:69:be:a7:56:1a:
         99:d8:08:bc:14:84:60:24:89:14:f4:1b:81:5e:4a:fe:32:ec:
         a1:c6:fe:30:01:73:51:2e:da:70:4a:f3:11:a5:83:f1:af:f2:
         e0:05:50:a5:08:ce:66:79:3c:5f:bf:8f:1d:46:43:18:cd:fe:
         33:ec:10:50:4c:8a:45:c1:94:30:76:69:9f:0c:8a:eb:b8:52:
         96:c6:0a:59:09:ed:4e:64:6a:5f:9e:b5:09:97:cc:8c:14:65:
         9f:ce:e4:a4:c4:4d:da:86:6d:42:a3:1e:de:a4:bb:e4:eb:90:
         32:a4:40:fc:ef:58:86:c5:10:b2:b1:52:96:82:3c:a1:e3:05:
         a8:58:d7:84:ea:33:30:b0:40:96:7c:db:2c:83:71:d4:71:a9:
         ca:52:ea:b7:74:63:21:d2:db:89:ad:09:b3:01:46:a1:fc:90:
         e5:51:bc:3f:ec:ee:31:39:73:33:e8:eb:b3:e0:ed:ab:b0:39:
         e8:ed:a4:af
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUGNKb50GB8aZaLT1HA405T5lMR28wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDQzQTA1REU0NTdEQTYxMDMwQzUwQjcxRDY1NUIzODFD
RTc5M0M3MzAeFw0yNDAzMTExNzMzMjJaFw0yNTAzMTAxNzM4MjJaMDMxMTAvBgNV
BAMTKENFMUM2RkI3M0RDMzU3ODBGRjZBQ0EyMUYzQTlBNjcxRERGMDI3MDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1OcznBGNfBokUoVfumEGE2QNg
NUgmtwNbKS+QAcznN69Qb3L5o9mI3p9EK8LOmERj1/INg7Xun6YM9l84Oho5lIPG
s0agPo3gfETXZwalIeNByfRq4/OUst9n57d7aH8kvVWmtY5z2ZcEcFGdLizGK9nh
kE38eFdt0/IBLo5Q0pWAFu2Y/dm5cMNM8buiFpdFvnjEr8oAKhEmR7v3DNg2EEI9
oQNU7mqueDxjI9VJkNWYkjgzQhe1DRFxCb1AU4z+O8u07NjsFX81D9mDDj5QmGmT
S2n0eOwBVvaz4PZSPJZiRGPP7wgptfYKXRT/qcAbx1YNvAg5+6SeRfP3nIIjAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUzhxvtz3DV4D/asoh86mmcd3wJwAwHwYDVR0j
BBgwFoAURDoF3kV9phAwxQtx1lWzgc55PHMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNFQyWUJtYVR6enhFR2VRQ1BHdzRpczhjc2RLSDlvN3NORXBCd290Nk1u
YmYvMC80NDNBMDVERTQ1N0RBNjEwMzBDNTBCNzFENjU1QjM4MUNFNzkzQzczLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzQ0M0EwNURFNDU3REE2MTAz
MEM1MEI3MUQ2NTVCMzgxQ0U3OTNDNzMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzRUMllCbWFUenp4RUdlUUNQR3c0aXM4Y3NkS0g5bzdzTkVwQndvdDZNbmJmLzAv
MzIzODMwMzQzYTM3MzkzODMwM2EzYTJmMzMzNDJkMzMzNDIwM2QzZTIwMzIzNzMx
MzMzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH
AQH/BBIwEDAOBAIAAjAIAwYGKAR5gAAwDQYJKoZIhvcNAQELBQADggEBALGeyPf+
VxYxuboGgCuLgK71Kdbgncj7q3ZOZtMZNkX4v7F7Y1XfIFV3iD4JcRSWpxT27RgZ
7ryOTMFAcgGhR3X/zbZpvqdWGpnYCLwUhGAkiRT0G4FeSv4y7KHG/jABc1Eu2nBK
8xGlg/Gv8uAFUKUIzmZ5PF+/jx1GQxjN/jPsEFBMikXBlDB2aZ8Miuu4UpbGClkJ
7U5kal+etQmXzIwUZZ/O5KTETdqGbUKjHt6ku+TrkDKkQPzvWIbFELKxUpaCPKHj
BahY14TqMzCwQJZ82yyDcdRxqcpS6rd0YyHS24mtCbMBRqH8kOVRvD/s7jE5czPo
67Pg7auwOejtpK8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:45 2024 by rpki-client on console-ams.rpki-client.org