Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/6HZBFkYJRjcHt8BaJwjWG9pwUTZDK5pGz4QJTqZFSZJi/0/323830343a343030343a3a2f33322d3438203d3e20323635393238.roa
File:                     323830343a343030343a3a2f33322d3438203d3e20323635393238.roa (raw, json)
Hash identifier:          7Lq7HTzJO1zbUEw9qTmw+Ef84WpX/zJC3I/B91J0LKo=
Subject key identifier:   4D:87:1F:87:34:9C:F0:6B:53:2F:21:47:11:8E:CC:95:2F:22:6E:A4
Certificate issuer:       /CN=A37F949C9D7092C43D6C2162D98F3EFFC398E477
Certificate serial:       3A5A5F83DA7127C0F4EFEB29E92A8E9EF551BA20
Authority key identifier: A3:7F:94:9C:9D:70:92:C4:3D:6C:21:62:D9:8F:3E:FF:C3:98:E4:77
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/A37F949C9D7092C43D6C2162D98F3EFFC398E477.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/6HZBFkYJRjcHt8BaJwjWG9pwUTZDK5pGz4QJTqZFSZJi/0/323830343a343030343a3a2f33322d3438203d3e20323635393238.roa
Signing time:             Fri 16 Feb 2024 23:40:21 +0000
ROA not before:           Fri 16 Feb 2024 23:35:21 +0000
ROA not after:            Fri 14 Feb 2025 23:40:21 +0000
asID:                     265928
IP address blocks:        2804:4004::/32 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:5a:5f:83:da:71:27:c0:f4:ef:eb:29:e9:2a:8e:9e:f5:51:ba:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A37F949C9D7092C43D6C2162D98F3EFFC398E477
        Validity
            Not Before: Feb 16 23:35:21 2024 GMT
            Not After : Feb 14 23:40:21 2025 GMT
        Subject: CN=4D871F87349CF06B532F2147118ECC952F226EA4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:c9:96:14:89:9e:af:63:04:f5:3e:98:98:3c:
                    16:91:ac:c5:c0:9f:74:ba:f3:eb:14:31:f2:f5:63:
                    ec:1b:ac:3f:56:bf:4f:d3:65:35:86:1e:26:23:6d:
                    dd:53:fe:c7:ad:b1:7c:b7:a8:d2:53:73:76:2c:51:
                    e5:11:c0:2f:e1:8a:e8:bf:ab:22:05:1d:c7:d4:ea:
                    af:79:d2:b7:ac:ae:ab:10:d3:34:da:63:e3:09:d5:
                    e7:1f:5a:31:21:c9:32:de:e0:5a:b4:cc:a4:8c:26:
                    93:d9:47:8a:a7:c3:9d:0e:6c:6e:e9:96:a8:dd:d3:
                    c7:99:4e:9e:7c:14:98:44:1f:6e:24:d1:e4:bf:db:
                    14:85:a8:b3:72:8c:3f:8f:52:0a:0b:b9:9c:fa:c2:
                    a1:fc:6d:7e:86:95:4d:9c:d0:c0:ae:44:84:d4:0d:
                    1f:c8:70:b7:e3:2d:14:0e:98:79:96:03:77:4f:4e:
                    77:17:36:fb:6a:a4:f5:37:91:dd:21:1e:04:a0:56:
                    ef:d2:37:76:f9:5f:c5:36:fa:e6:54:eb:20:e1:1e:
                    3a:60:57:d0:04:d0:1d:46:91:89:4e:2c:5c:fa:52:
                    db:4a:5d:34:5c:65:1c:b4:1e:4c:e9:2d:98:db:3d:
                    45:39:71:ef:c1:fb:0f:a4:31:8c:a9:c7:35:54:e3:
                    36:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:87:1F:87:34:9C:F0:6B:53:2F:21:47:11:8E:CC:95:2F:22:6E:A4
            X509v3 Authority Key Identifier:
                keyid:A3:7F:94:9C:9D:70:92:C4:3D:6C:21:62:D9:8F:3E:FF:C3:98:E4:77

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/6HZBFkYJRjcHt8BaJwjWG9pwUTZDK5pGz4QJTqZFSZJi/0/A37F949C9D7092C43D6C2162D98F3EFFC398E477.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/A37F949C9D7092C43D6C2162D98F3EFFC398E477.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/6HZBFkYJRjcHt8BaJwjWG9pwUTZDK5pGz4QJTqZFSZJi/0/323830343a343030343a3a2f33322d3438203d3e20323635393238.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:4004::/32

    Signature Algorithm: sha256WithRSAEncryption
         12:2f:ce:0c:9b:47:a3:cf:f8:4b:fe:c6:0e:56:e5:25:b3:a0:
         6c:35:1d:4d:05:fc:d2:5b:c0:9b:84:e3:2b:8d:6e:ee:76:eb:
         7d:3f:e0:ea:56:82:45:85:b9:c1:28:75:18:9d:05:fb:47:d1:
         61:5b:0e:00:45:fc:e0:b5:61:ad:de:94:08:6a:fa:d7:37:2a:
         d7:e4:0f:39:ca:8b:3c:92:1a:c2:96:51:b5:db:ea:c9:07:21:
         40:4d:30:93:2f:64:e9:98:30:1d:0a:62:89:75:f2:1f:9f:d3:
         c9:59:e1:bb:1d:85:22:d4:b3:fb:57:5a:66:7b:19:27:8d:2c:
         84:2e:07:35:6f:55:11:97:1d:24:b5:06:da:39:5b:8d:a9:95:
         47:69:bb:be:71:ec:2d:3c:f0:d3:57:71:40:65:4d:b1:c9:a7:
         81:44:a2:3d:bb:bb:38:59:ee:e7:03:96:ba:37:48:59:0f:e0:
         10:00:9f:0f:5f:74:12:cb:dd:29:54:6b:41:a2:62:97:4d:28:
         07:d0:67:da:c2:ee:49:d4:d6:b4:94:ec:05:33:ff:95:14:bf:
         86:a2:3a:5f:37:27:59:c8:11:20:5c:47:cf:07:26:68:ac:d7:
         e3:8f:f2:b5:8f:0d:84:b5:ef:e5:89:af:be:58:2f:da:85:bc:
         a6:8f:8c:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:46 2024 by rpki-client on console-fra.rpki-client.org