Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/323830343a316234343a3a2f33322d3332203d3e203631373137.roa
File:                     323830343a316234343a3a2f33322d3332203d3e203631373137.roa (raw, json)
Hash identifier:          6QzbPhj7ALJ+KU0cEt/kDZnfZjeHwZSxj9fgMx43l3o=
Subject key identifier:   0D:27:2C:77:38:0A:F9:7F:48:AE:B2:25:6B:92:9F:B2:7B:0A:A7:76
Certificate issuer:       /CN=818877B39D32BF83248D22BD29D162AD2243D97A
Certificate serial:       3D410C1B636AC05905EF230BFFC997C87F156504
Authority key identifier: 81:88:77:B3:9D:32:BF:83:24:8D:22:BD:29:D1:62:AD:22:43:D9:7A
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/818877B39D32BF83248D22BD29D162AD2243D97A.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/323830343a316234343a3a2f33322d3332203d3e203631373137.roa
Signing time:             Thu 04 Apr 2024 15:37:49 +0000
ROA not before:           Thu 04 Apr 2024 15:32:49 +0000
ROA not after:            Thu 03 Apr 2025 15:37:49 +0000
asID:                     61717
IP address blocks:        2804:1b44::/32 maxlen: 32

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3d:41:0c:1b:63:6a:c0:59:05:ef:23:0b:ff:c9:97:c8:7f:15:65:04
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=818877B39D32BF83248D22BD29D162AD2243D97A
        Validity
            Not Before: Apr  4 15:32:49 2024 GMT
            Not After : Apr  3 15:37:49 2025 GMT
        Subject: CN=0D272C77380AF97F48AEB2256B929FB27B0AA776
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:76:3d:be:14:74:32:8f:f0:43:fd:df:aa:47:
                    f0:ca:d2:87:e7:5a:ff:02:ee:7e:09:3b:ca:53:4b:
                    d3:b6:22:36:b4:8b:f3:6b:51:33:c8:ea:9e:9a:6c:
                    1f:51:0f:fc:e8:3c:d0:cc:5c:4d:3c:ed:94:82:f4:
                    dc:3c:e0:6c:e0:e9:1e:57:68:61:9d:d6:e8:91:2e:
                    64:a0:eb:a1:9f:09:35:c8:c5:f6:ac:4e:dc:d6:11:
                    4c:7e:e0:cd:38:85:2b:40:fb:c3:5a:a8:45:8c:c1:
                    21:c6:1f:66:37:d9:19:4d:02:d0:66:01:27:fb:58:
                    56:2a:39:5e:4f:2b:6a:98:96:a2:47:6a:bd:9d:11:
                    a3:0a:12:f4:d3:13:ca:67:6e:44:37:40:97:33:8f:
                    f5:74:5f:fb:4f:46:31:14:4f:33:96:54:2b:2e:35:
                    99:44:94:16:06:7a:bb:51:69:65:48:b8:14:47:bc:
                    e9:24:9f:e8:93:ba:3c:a7:60:b3:3d:e2:ae:99:03:
                    a9:e5:f6:31:2b:d9:67:ce:c0:be:2a:dc:f0:6a:d9:
                    64:6f:1d:e8:5b:6f:c1:a4:55:e6:58:80:28:7c:04:
                    9a:62:33:53:ff:76:46:c5:37:27:3e:5f:f2:59:74:
                    09:db:ac:aa:28:4d:62:bb:bb:f0:aa:a0:ab:97:1b:
                    0a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:27:2C:77:38:0A:F9:7F:48:AE:B2:25:6B:92:9F:B2:7B:0A:A7:76
            X509v3 Authority Key Identifier:
                keyid:81:88:77:B3:9D:32:BF:83:24:8D:22:BD:29:D1:62:AD:22:43:D9:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/818877B39D32BF83248D22BD29D162AD2243D97A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/818877B39D32BF83248D22BD29D162AD2243D97A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/323830343a316234343a3a2f33322d3332203d3e203631373137.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:1b44::/32

    Signature Algorithm: sha256WithRSAEncryption
         92:dc:c7:76:6b:21:ba:45:97:72:09:e1:3a:60:25:59:79:78:
         02:a3:92:c6:2b:34:e9:25:9b:61:7a:59:ce:ba:00:56:9b:c9:
         16:b2:26:24:18:f8:33:35:e4:06:e2:1a:d2:66:d3:78:3e:ca:
         51:b4:ff:2b:12:e6:51:9c:ac:80:35:59:f1:5e:9d:e9:0f:a2:
         e0:74:55:39:c4:b3:2a:56:36:ef:54:15:40:1a:e0:56:e5:ef:
         a9:07:92:d8:69:f1:75:b5:0c:7a:3c:de:0d:a6:10:f8:c4:93:
         b9:f4:70:d5:1f:dc:f8:ae:d8:e3:39:77:d4:7e:cf:53:72:a5:
         d3:f5:e3:db:3d:af:c3:02:74:73:fc:fc:83:a9:19:07:83:69:
         a4:94:3d:94:3e:57:07:73:70:1d:62:cc:a0:61:ca:e0:f4:fc:
         4b:2e:80:3a:0d:fd:49:d1:01:e4:eb:48:94:05:ca:1d:13:58:
         e9:7d:99:43:c2:e1:43:b5:af:a0:ab:cd:bb:06:49:9b:ba:c1:
         12:33:92:8c:63:18:f1:98:74:50:f8:9c:22:cc:b0:40:3d:ce:
         ad:6d:84:a0:53:bd:e7:1a:56:49:d6:aa:4c:94:11:9a:96:13:
         62:dc:39:0e:7d:22:fb:24:9a:53:b7:36:83:5b:de:09:2b:0b:
         78:8b:53:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 17:27:20 2024 by rpki-client on console-ams.rpki-client.org