Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/7ZexdsxgF49LD9Cm4XbcRQguNP57rREG15nHB3LHugzZ/0/323830343a376564383a3a2f33322d3438203d3e203238323332.roa
File:                     323830343a376564383a3a2f33322d3438203d3e203238323332.roa (raw, json)
Hash identifier:          BpYtwoOPwPM8HzJfZKiTErayuBdVPEDXgVUXyxfh8J4=
Subject key identifier:   69:7C:02:E7:7F:02:EF:3E:80:BC:12:FA:EF:17:96:0C:F7:FC:FA:BF
Certificate issuer:       /CN=9A6C850A6CFC6280C718D75F48315458AEB33DB5
Certificate serial:       7158095ED55FFE702AAE1466DA1749C21C42D1D9
Authority key identifier: 9A:6C:85:0A:6C:FC:62:80:C7:18:D7:5F:48:31:54:58:AE:B3:3D:B5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/9A6C850A6CFC6280C718D75F48315458AEB33DB5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/7ZexdsxgF49LD9Cm4XbcRQguNP57rREG15nHB3LHugzZ/0/323830343a376564383a3a2f33322d3438203d3e203238323332.roa
Signing time:             Thu 21 Sep 2023 11:28:49 +0000
ROA not before:           Thu 21 Sep 2023 11:23:49 +0000
ROA not after:            Thu 19 Sep 2024 11:28:49 +0000
asID:                     28232
IP address blocks:        2804:7ed8::/32 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:58:09:5e:d5:5f:fe:70:2a:ae:14:66:da:17:49:c2:1c:42:d1:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9A6C850A6CFC6280C718D75F48315458AEB33DB5
        Validity
            Not Before: Sep 21 11:23:49 2023 GMT
            Not After : Sep 19 11:28:49 2024 GMT
        Subject: CN=697C02E77F02EF3E80BC12FAEF17960CF7FCFABF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:8f:68:2b:66:54:0d:a6:10:b9:0b:43:75:40:
                    5d:42:d4:56:3f:55:6f:5c:b6:b6:88:e8:e8:f1:59:
                    f1:7b:24:80:90:62:4a:bf:25:68:bc:38:34:aa:a5:
                    4a:eb:0b:d9:6d:7d:0e:4f:23:77:86:28:61:af:00:
                    dc:90:ed:24:30:7a:cc:9d:7c:01:d1:6c:a1:15:33:
                    0a:10:cc:2d:47:02:7a:c5:01:58:eb:be:10:78:15:
                    40:e9:aa:0e:39:ac:a2:86:6c:89:6a:00:5c:28:40:
                    3b:53:e1:e8:63:65:b9:c4:42:d1:d0:29:33:58:51:
                    cb:51:c3:29:3e:06:8c:4b:a5:24:75:d8:04:4e:e8:
                    cb:ca:d6:fd:30:0d:09:40:d9:a9:fa:0c:28:fe:bb:
                    05:f4:4b:0d:5c:d5:65:f3:85:1c:44:55:3f:32:26:
                    70:10:16:25:8b:ab:62:8a:99:43:3a:4f:ef:a1:c2:
                    aa:84:67:63:4a:11:46:89:ab:61:a3:59:ad:80:f7:
                    d0:cf:17:c1:c4:12:16:1e:36:2c:7b:47:d2:a2:6a:
                    e5:c5:10:ef:32:8c:21:17:d4:9b:25:ed:75:bb:54:
                    f4:4e:ff:16:dd:ed:cd:14:c8:be:bd:e4:f4:b7:1c:
                    4f:12:3a:d3:96:58:09:69:20:6c:f6:62:58:ef:0c:
                    36:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:7C:02:E7:7F:02:EF:3E:80:BC:12:FA:EF:17:96:0C:F7:FC:FA:BF
            X509v3 Authority Key Identifier:
                keyid:9A:6C:85:0A:6C:FC:62:80:C7:18:D7:5F:48:31:54:58:AE:B3:3D:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/7ZexdsxgF49LD9Cm4XbcRQguNP57rREG15nHB3LHugzZ/0/9A6C850A6CFC6280C718D75F48315458AEB33DB5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/9A6C850A6CFC6280C718D75F48315458AEB33DB5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/7ZexdsxgF49LD9Cm4XbcRQguNP57rREG15nHB3LHugzZ/0/323830343a376564383a3a2f33322d3438203d3e203238323332.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:7ed8::/32

    Signature Algorithm: sha256WithRSAEncryption
         5f:9a:4a:92:5b:4a:23:c3:e8:45:d9:8b:35:83:23:b1:1c:4e:
         e9:a0:5b:4b:82:89:fc:3a:cf:85:e7:a8:ff:49:0d:1a:0a:fc:
         4d:e8:52:51:ad:4c:2b:1a:9c:8b:99:41:b9:84:f7:16:28:05:
         e0:d0:cb:fc:9d:5c:28:73:62:c7:9c:31:ad:3a:fe:4f:2a:91:
         29:26:55:83:06:d5:8f:02:a0:c8:71:06:5b:5a:3a:ac:2b:b6:
         5b:78:71:94:3f:ed:61:1e:19:9e:3a:3e:86:ba:b6:ac:4c:f0:
         66:f8:4b:4a:ef:d8:a1:7a:c0:b3:24:fd:cc:b6:a3:ef:2d:e8:
         6c:03:81:12:86:c2:ff:cd:eb:2a:10:89:f6:1e:6a:8e:e9:a2:
         1f:df:32:ba:13:4d:af:c9:0d:37:3d:fc:b5:c3:56:3e:42:0b:
         a8:6c:eb:6e:52:fe:e6:03:66:42:4d:d8:34:ee:41:8e:91:6b:
         14:9d:4e:1e:20:b1:8d:f1:25:6f:ef:3b:36:22:04:1f:82:cf:
         85:54:23:d5:e2:7d:fc:98:f8:1d:83:5c:b5:54:a1:24:7e:8a:
         b5:48:80:90:62:2a:a2:9d:c7:bf:3b:e4:79:d5:74:eb:7c:f6:
         1c:e3:d0:8d:57:4d:67:29:1f:9d:db:27:9f:3b:79:2f:ae:30:
         07:7a:73:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:54 2024 by rpki-client on console-fra.rpki-client.org