Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/8nXd7ng5DAKV78tnHVxwJAqDLLLhwvYnTo7E8SFvT6rV/0/3230302e37312e37322e302f32322d3234203d3e20323636323136.roa
File:                     3230302e37312e37322e302f32322d3234203d3e20323636323136.roa (raw, json)
Hash identifier:          kelYD2pmKnjfKVtB7yWWyQU7Y0EMM55eZ0NiaBAlLgs=
Subject key identifier:   7D:D0:40:E5:4C:7E:52:4A:AB:18:D6:5E:17:94:98:9E:C8:CA:B9:7A
Certificate issuer:       /CN=EA3A7BB80CD32604CE43FD275FAF887EB33DF512
Certificate serial:       6949E6F4C9AC4ACF92FB1DAFC252E1ED91A93885
Authority key identifier: EA:3A:7B:B8:0C:D3:26:04:CE:43:FD:27:5F:AF:88:7E:B3:3D:F5:12
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EA3A7BB80CD32604CE43FD275FAF887EB33DF512.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/8nXd7ng5DAKV78tnHVxwJAqDLLLhwvYnTo7E8SFvT6rV/0/3230302e37312e37322e302f32322d3234203d3e20323636323136.roa
Signing time:             Sun 11 Feb 2024 22:56:12 +0000
ROA not before:           Sun 11 Feb 2024 22:51:12 +0000
ROA not after:            Sun 09 Feb 2025 22:56:12 +0000
asID:                     266216
IP address blocks:        200.71.72.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:49:e6:f4:c9:ac:4a:cf:92:fb:1d:af:c2:52:e1:ed:91:a9:38:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EA3A7BB80CD32604CE43FD275FAF887EB33DF512
        Validity
            Not Before: Feb 11 22:51:12 2024 GMT
            Not After : Feb  9 22:56:12 2025 GMT
        Subject: CN=7DD040E54C7E524AAB18D65E1794989EC8CAB97A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:01:94:2d:8c:36:1d:04:cd:a4:54:33:77:39:
                    41:4a:ee:b6:bd:8a:35:ce:a5:15:de:51:24:62:b5:
                    bb:00:00:af:c2:9e:80:cf:d6:ad:b4:f6:a2:69:64:
                    4e:06:fb:f8:da:9e:9e:02:f4:0a:02:73:c3:5d:4c:
                    0d:00:a4:2d:ea:cd:e8:75:3e:1b:a2:d9:5b:18:e6:
                    cd:43:b9:7b:ff:ef:ca:37:71:c1:bc:d7:72:53:6d:
                    87:49:ed:14:9d:1a:f6:56:17:14:48:22:e4:53:64:
                    a6:b1:a9:e8:eb:5d:03:45:8a:47:c0:02:12:84:09:
                    3b:dd:c5:bf:67:21:e6:52:7d:5f:2a:8e:c1:0d:42:
                    19:bc:8d:23:5d:0f:fd:72:22:1d:d0:38:b7:2d:e6:
                    8f:8d:3e:00:31:e9:14:92:95:38:eb:38:0e:48:df:
                    09:fa:c5:5b:f8:c2:02:ca:37:2d:d4:e0:ca:33:18:
                    d3:ed:28:65:e4:58:5b:63:99:b6:88:bc:f2:ab:a4:
                    8e:7b:35:a1:71:cd:21:dd:85:56:0d:07:ec:8a:6a:
                    a1:fb:7d:97:d2:49:20:69:ec:9d:0d:81:84:28:ac:
                    09:5e:16:57:de:59:b7:e0:1f:1f:57:35:18:fe:aa:
                    2c:34:41:f8:de:2f:26:0e:9c:6e:ad:a1:70:ea:ae:
                    51:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:D0:40:E5:4C:7E:52:4A:AB:18:D6:5E:17:94:98:9E:C8:CA:B9:7A
            X509v3 Authority Key Identifier:
                keyid:EA:3A:7B:B8:0C:D3:26:04:CE:43:FD:27:5F:AF:88:7E:B3:3D:F5:12

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/8nXd7ng5DAKV78tnHVxwJAqDLLLhwvYnTo7E8SFvT6rV/0/EA3A7BB80CD32604CE43FD275FAF887EB33DF512.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EA3A7BB80CD32604CE43FD275FAF887EB33DF512.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/8nXd7ng5DAKV78tnHVxwJAqDLLLhwvYnTo7E8SFvT6rV/0/3230302e37312e37322e302f32322d3234203d3e20323636323136.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.71.72.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8c:fd:ec:3d:6a:28:0e:05:97:d4:a7:1a:ea:41:ee:e6:3f:e9:
         8d:40:36:19:a4:f9:9c:c1:f2:ab:86:c7:5d:90:51:83:0c:8a:
         1c:38:6d:23:38:f0:f4:47:b8:28:0b:8a:35:5a:ae:af:70:32:
         33:9b:07:5d:1b:f9:b6:00:54:1d:44:6a:4d:c8:64:c8:b8:41:
         52:97:c5:66:31:44:e3:3e:1e:d7:3c:ac:12:59:11:50:37:0a:
         68:43:f1:eb:88:a9:dd:8b:0c:4c:a8:2d:56:f5:9d:2f:63:94:
         72:bf:56:ae:74:e2:03:90:76:7c:6a:cb:4d:df:5b:ab:c2:b8:
         db:82:96:a2:52:ed:58:8b:69:f6:3f:7d:35:1f:fa:69:d0:83:
         96:12:9e:80:6e:cc:b4:01:90:52:5b:f4:d0:c2:b4:a4:b6:aa:
         92:bf:cc:ba:49:c3:5a:a7:7c:88:de:67:cf:80:ab:43:98:fe:
         88:93:10:b7:de:4b:48:14:1d:6a:6b:d1:1a:56:3e:95:d8:76:
         76:79:da:4d:65:31:de:98:ca:2c:9b:fd:86:16:13:be:67:47:
         3c:66:17:c6:a6:18:b2:39:34:31:e0:a2:f8:d3:06:fa:33:f6:
         a6:1f:04:8f:d0:c3:6a:3e:1b:b7:81:23:0e:d8:b7:48:96:d3:
         69:5d:85:3e
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUaUnm9MmsSs+S+x2vwlLh7ZGpOIUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUEzQTdCQjgwQ0QzMjYwNENFNDNGRDI3NUZBRjg4N0VC
MzNERjUxMjAeFw0yNDAyMTEyMjUxMTJaFw0yNTAyMDkyMjU2MTJaMDMxMTAvBgNV
BAMTKDdERDA0MEU1NEM3RTUyNEFBQjE4RDY1RTE3OTQ5ODlFQzhDQUI5N0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfAZQtjDYdBM2kVDN3OUFK7ra9
ijXOpRXeUSRitbsAAK/CnoDP1q209qJpZE4G+/janp4C9AoCc8NdTA0ApC3qzeh1
Phui2VsY5s1DuXv/78o3ccG813JTbYdJ7RSdGvZWFxRIIuRTZKaxqejrXQNFikfA
AhKECTvdxb9nIeZSfV8qjsENQhm8jSNdD/1yIh3QOLct5o+NPgAx6RSSlTjrOA5I
3wn6xVv4wgLKNy3U4MozGNPtKGXkWFtjmbaIvPKrpI57NaFxzSHdhVYNB+yKaqH7
fZfSSSBp7J0NgYQorAleFlfeWbfgHx9XNRj+qiw0QfjeLyYOnG6toXDqrlE9AgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUfdBA5Ux+UkqrGNZeF5SYnsjKuXowHwYDVR0j
BBgwFoAU6jp7uAzTJgTOQ/0nX6+IfrM99RIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOG5YZDduZzVEQUtWNzh0bkhWeHdKQXFETExMaHd2WW5UbzdFOFNGdlQ2
clYvMC9FQTNBN0JCODBDRDMyNjA0Q0U0M0ZEMjc1RkFGODg3RUIzM0RGNTEyLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0VBM0E3QkI4MENEMzI2MDRD
RTQzRkQyNzVGQUY4ODdFQjMzREY1MTIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhuWGQ3bmc1REFLVjc4dG5IVnh3SkFxRExMTGh3dlluVG83RThTRnZUNnJWLzAv
MzIzMDMwMmUzNzMxMmUzNzMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM2
MzIzMTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCyEdIMA0GCSqGSIb3DQEBCwUAA4IBAQCM/ew9aigO
BZfUpxrqQe7mP+mNQDYZpPmcwfKrhsddkFGDDIocOG0jOPD0R7goC4o1Wq6vcDIz
mwddG/m2AFQdRGpNyGTIuEFSl8VmMUTjPh7XPKwSWRFQNwpoQ/HriKndiwxMqC1W
9Z0vY5Ryv1audOIDkHZ8astN31urwrjbgpaiUu1Yi2n2P301H/pp0IOWEp6Absy0
AZBSW/TQwrSktqqSv8y6ScNap3yI3mfPgKtDmP6IkxC33ktIFB1qa9EaVj6V2HZ2
edpNZTHemMosm/2GFhO+Z0c8ZhfGphiyOTQx4KL40wb6M/amHwSP0MNqPhu3gSMO
2LdIltNpXYU+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:05 2024 by rpki-client on console-ams.rpki-client.org