Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/9zSNjeGwHxYZ17zj6dTwywjgHVMJyJbxH4DsXfTyMeyy/0/323830343a3261633a3a2f33322d3634203d3e203238333030.roa
File:                     323830343a3261633a3a2f33322d3634203d3e203238333030.roa (raw, json)
Hash identifier:          askpTqdr/MrhuY43FIQxFJT5oias5fDGk6Prr4k36OE=
Subject key identifier:   BF:12:83:1E:89:73:94:26:C8:9C:AE:EA:CF:5F:E6:44:F0:1A:4B:41
Certificate issuer:       /CN=5E836E5EC52C22563B2BB8EBC9932BF385D352A8
Certificate serial:       7BB9C86447997890BB8A6E71CB0FF81E35B90B48
Authority key identifier: 5E:83:6E:5E:C5:2C:22:56:3B:2B:B8:EB:C9:93:2B:F3:85:D3:52:A8
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/5E836E5EC52C22563B2BB8EBC9932BF385D352A8.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/9zSNjeGwHxYZ17zj6dTwywjgHVMJyJbxH4DsXfTyMeyy/0/323830343a3261633a3a2f33322d3634203d3e203238333030.roa
Signing time:             Thu 22 Feb 2024 20:58:30 +0000
ROA not before:           Thu 22 Feb 2024 20:53:30 +0000
ROA not after:            Thu 20 Feb 2025 20:58:30 +0000
asID:                     28300
IP address blocks:        2804:2ac::/32 maxlen: 64

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:b9:c8:64:47:99:78:90:bb:8a:6e:71:cb:0f:f8:1e:35:b9:0b:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5E836E5EC52C22563B2BB8EBC9932BF385D352A8
        Validity
            Not Before: Feb 22 20:53:30 2024 GMT
            Not After : Feb 20 20:58:30 2025 GMT
        Subject: CN=BF12831E89739426C89CAEEACF5FE644F01A4B41
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:4d:ae:a4:98:6c:3d:86:27:f3:1f:a1:e3:55:
                    ad:f1:15:37:cf:0f:aa:c7:a6:59:cd:5e:c4:69:35:
                    e9:5a:3c:65:18:f9:f1:e4:5b:86:91:e7:b2:ef:c4:
                    86:ae:d3:1a:eb:af:62:f2:da:24:72:d5:5a:60:6a:
                    d9:50:01:00:23:0b:fe:87:a8:60:3c:20:14:4c:16:
                    76:05:4c:2c:6f:50:96:00:12:01:0c:56:77:6e:ce:
                    cb:6b:57:24:e4:84:3b:51:e2:2c:a8:f6:11:15:45:
                    00:02:5d:26:ec:d3:f8:ff:68:b8:7b:00:32:27:0c:
                    2a:a0:e8:42:e2:e7:06:74:96:64:d7:7c:a0:ae:5a:
                    ac:ee:49:ea:d1:ce:43:63:cf:43:31:8c:a4:83:96:
                    b0:a3:92:b8:87:98:c0:75:6b:3a:7e:0c:aa:39:23:
                    45:4e:f1:14:7f:0d:4d:cc:83:12:37:32:65:8c:68:
                    72:e4:33:13:dd:22:8b:4f:68:fc:97:a1:6f:91:db:
                    13:fa:7a:46:10:78:57:76:1c:55:95:fe:c4:25:34:
                    15:fd:54:95:8d:7f:22:6b:3f:31:93:41:bc:c4:b7:
                    a0:8a:f1:de:7d:2f:a4:ad:48:da:c4:51:cb:51:f3:
                    b1:a1:16:ac:ec:c5:99:03:00:a5:8f:de:54:da:01:
                    ff:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:12:83:1E:89:73:94:26:C8:9C:AE:EA:CF:5F:E6:44:F0:1A:4B:41
            X509v3 Authority Key Identifier:
                keyid:5E:83:6E:5E:C5:2C:22:56:3B:2B:B8:EB:C9:93:2B:F3:85:D3:52:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/9zSNjeGwHxYZ17zj6dTwywjgHVMJyJbxH4DsXfTyMeyy/0/5E836E5EC52C22563B2BB8EBC9932BF385D352A8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/5E836E5EC52C22563B2BB8EBC9932BF385D352A8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/9zSNjeGwHxYZ17zj6dTwywjgHVMJyJbxH4DsXfTyMeyy/0/323830343a3261633a3a2f33322d3634203d3e203238333030.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:2ac::/32

    Signature Algorithm: sha256WithRSAEncryption
         3f:d4:dd:f6:3f:4a:07:b8:14:0c:97:e0:24:fb:70:51:76:2e:
         2b:bf:c2:fd:07:cf:ea:4d:53:7c:46:5a:6c:6f:7a:bb:ef:ad:
         91:c8:1b:42:d3:b7:c8:cf:c7:fc:cd:e5:32:14:d0:73:7d:ac:
         93:6c:5f:0a:ed:b9:73:eb:a3:f3:17:b1:21:dc:6e:84:64:5c:
         a6:09:83:d8:9c:41:08:10:15:f7:6f:e9:69:8f:6c:55:2f:9c:
         c0:f1:4e:5b:40:0b:9e:36:b7:6e:f5:65:7b:ee:e8:7e:a7:7c:
         20:f0:c4:16:7f:ea:8e:e5:d3:ab:08:2c:73:19:b5:fe:e7:fe:
         3c:91:7c:58:6a:60:67:58:2b:a9:2a:ba:f2:6f:0e:1e:d8:22:
         26:6f:d6:bc:14:57:55:89:b3:df:07:7f:dd:2b:bf:87:69:66:
         43:4e:75:81:77:09:99:92:1f:52:19:41:e2:dd:12:8b:a1:a3:
         08:6a:3d:d9:28:c3:a0:71:d5:57:c4:bf:5a:32:37:26:06:e4:
         b8:c1:5f:05:9a:71:a3:a2:b3:52:d0:99:33:83:43:b2:4e:46:
         fc:f6:00:54:af:c5:d3:8d:bc:4e:e7:a4:67:6c:11:2f:10:41:
         bc:8e:76:ec:57:8d:32:04:64:df:4b:9b:db:dd:9b:d3:6e:7f:
         1a:9e:b8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:25 2024 by rpki-client on console-ams.rpki-client.org