Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/83ujggwyaJUEG2Kpp4wKh6fBgByX2NP5GVT5qJ1P7KAP/2/323830343a323366303a3230303a3a2f34302d3430203d3e20323634313932.roa
File:                     323830343a323366303a3230303a3a2f34302d3430203d3e20323634313932.roa (raw, json)
Hash identifier:          c4GK5aCyBtaV1//8ZZQgcGhnNpMuwHvZhmjFd5kR/x8=
Subject key identifier:   59:87:51:C1:06:DD:F9:38:2A:C0:BE:5B:52:8D:66:F8:AA:CC:05:EE
Certificate issuer:       /CN=91B7E6716A44D048F1370CFA1A1700037F360F29
Certificate serial:       1E58E78797BBC6564B5F95E9C9720917CBEC2DFA
Authority key identifier: 91:B7:E6:71:6A:44:D0:48:F1:37:0C:FA:1A:17:00:03:7F:36:0F:29
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91B7E6716A44D048F1370CFA1A1700037F360F29.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/83ujggwyaJUEG2Kpp4wKh6fBgByX2NP5GVT5qJ1P7KAP/2/323830343a323366303a3230303a3a2f34302d3430203d3e20323634313932.roa
Signing time:             Thu 04 Apr 2024 12:38:13 +0000
ROA not before:           Thu 04 Apr 2024 12:33:13 +0000
ROA not after:            Thu 03 Apr 2025 12:38:13 +0000
asID:                     264192
IP address blocks:        2804:23f0:200::/40 maxlen: 40

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:58:e7:87:97:bb:c6:56:4b:5f:95:e9:c9:72:09:17:cb:ec:2d:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91B7E6716A44D048F1370CFA1A1700037F360F29
        Validity
            Not Before: Apr  4 12:33:13 2024 GMT
            Not After : Apr  3 12:38:13 2025 GMT
        Subject: CN=598751C106DDF9382AC0BE5B528D66F8AACC05EE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:f7:f2:9b:94:67:81:f9:48:29:8c:c2:72:5d:
                    ed:6d:14:9a:b3:13:08:0c:5e:85:88:df:4b:ee:a4:
                    50:b9:1a:39:b6:42:4f:1e:ce:e3:5f:78:15:1e:68:
                    6f:6e:86:16:d3:4a:6c:a5:ef:9d:c6:63:d1:9a:c3:
                    97:6f:90:ad:7b:cc:05:81:89:30:d7:4e:4a:45:2d:
                    bb:01:fd:6f:c7:f2:96:df:b6:9b:51:e3:09:aa:09:
                    2a:5d:66:4d:61:40:0b:20:06:fd:db:33:42:3b:3e:
                    38:72:d8:85:e4:e5:c6:1a:bd:a9:22:72:63:b6:21:
                    87:50:ca:41:95:a3:59:be:43:35:95:cb:83:1f:f8:
                    24:58:bd:62:ca:90:e1:0b:15:68:b1:ef:1f:6f:5d:
                    71:89:9a:6b:c7:6c:92:ed:19:6c:3b:0c:5b:08:fe:
                    17:4a:f7:de:0a:f7:74:2b:e0:a2:71:b9:c5:57:e6:
                    ec:f2:d7:13:90:5c:f8:35:06:2d:c6:21:a7:63:14:
                    a0:7b:c6:49:76:c4:5c:e9:db:fe:2e:71:0c:3e:62:
                    54:75:45:a2:32:dd:e6:a0:ca:ce:b7:00:7c:0d:38:
                    c1:e2:7e:2e:11:3c:ce:91:b3:fe:1f:46:08:86:3b:
                    ba:8b:c7:ee:78:b1:93:c6:26:aa:41:37:bc:c6:1e:
                    87:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:87:51:C1:06:DD:F9:38:2A:C0:BE:5B:52:8D:66:F8:AA:CC:05:EE
            X509v3 Authority Key Identifier:
                keyid:91:B7:E6:71:6A:44:D0:48:F1:37:0C:FA:1A:17:00:03:7F:36:0F:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/83ujggwyaJUEG2Kpp4wKh6fBgByX2NP5GVT5qJ1P7KAP/2/91B7E6716A44D048F1370CFA1A1700037F360F29.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91B7E6716A44D048F1370CFA1A1700037F360F29.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/83ujggwyaJUEG2Kpp4wKh6fBgByX2NP5GVT5qJ1P7KAP/2/323830343a323366303a3230303a3a2f34302d3430203d3e20323634313932.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:23f0:200::/40

    Signature Algorithm: sha256WithRSAEncryption
         30:36:1e:7f:6f:6e:56:1f:e0:4d:5f:fc:7d:10:1c:75:c7:42:
         16:dc:31:b0:8f:2d:09:4a:86:50:50:44:e2:35:7c:cc:1d:87:
         39:2e:0d:38:80:9d:d3:89:db:6b:cc:7b:8b:af:e7:1c:97:9e:
         15:5c:8a:85:e2:e0:aa:85:35:70:0a:cd:a0:ca:13:8f:5e:58:
         e4:05:58:e0:bf:c0:76:39:02:2b:a2:4f:b8:a4:36:28:89:75:
         d3:d5:87:18:3f:17:17:8c:01:4c:88:9b:62:11:bf:46:fd:11:
         58:27:b8:ae:8f:d3:d5:7a:5b:6d:d4:cf:88:4a:f7:29:86:07:
         49:fd:20:3f:92:3e:49:29:76:e4:1d:88:47:a1:fa:ca:52:9b:
         27:c5:df:33:66:2c:d0:d6:82:c6:41:9b:99:3e:4a:bc:7a:f5:
         66:e2:0f:10:fb:0f:bc:40:da:7b:08:2b:e5:b0:4c:f9:9b:56:
         a8:2e:a1:e7:a2:92:58:82:62:93:e8:38:42:7e:a1:10:cf:45:
         33:ca:67:bf:54:ac:0b:6d:6a:52:2e:06:e4:0c:5b:93:fe:57:
         29:dc:48:cf:bb:4d:ce:35:9b:da:1e:be:8d:b7:93:b7:a6:95:
         86:46:33:14:81:74:55:71:bf:d2:97:eb:e3:1d:5d:a2:a8:ae:
         a2:24:df:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 02:57:44 2024 by rpki-client on console-ams.rpki-client.org