Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/A6hEn1ZVU4nCZQEMzq1FnZmy7einPyALGTgjrS8ympiL/0/3138372e34392e31362e302f32302d3230203d3e203238313339.roa
File:                     3138372e34392e31362e302f32302d3230203d3e203238313339.roa (raw, json)
Hash identifier:          xnIe9dP5ul7QV3NmjHt6KUDEWtCjwT5RqyiUYJqPEVo=
Subject key identifier:   F7:16:4E:97:91:D5:0B:18:5D:C6:D2:33:BC:AE:2A:04:CE:D0:77:C6
Certificate issuer:       /CN=FD6C82072A7D65129B2FD29C80AD0A70771EF91F
Certificate serial:       2FF1B2332E83683EB24BCB2DEF4839DB3A8D3497
Authority key identifier: FD:6C:82:07:2A:7D:65:12:9B:2F:D2:9C:80:AD:0A:70:77:1E:F9:1F
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FD6C82072A7D65129B2FD29C80AD0A70771EF91F.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/A6hEn1ZVU4nCZQEMzq1FnZmy7einPyALGTgjrS8ympiL/0/3138372e34392e31362e302f32302d3230203d3e203238313339.roa
Signing time:             Mon 31 Jul 2023 18:14:37 +0000
ROA not before:           Mon 31 Jul 2023 18:09:37 +0000
ROA not after:            Mon 29 Jul 2024 18:14:37 +0000
asID:                     28139
IP address blocks:        187.49.16.0/20 maxlen: 20

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2f:f1:b2:33:2e:83:68:3e:b2:4b:cb:2d:ef:48:39:db:3a:8d:34:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FD6C82072A7D65129B2FD29C80AD0A70771EF91F
        Validity
            Not Before: Jul 31 18:09:37 2023 GMT
            Not After : Jul 29 18:14:37 2024 GMT
        Subject: CN=F7164E9791D50B185DC6D233BCAE2A04CED077C6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:fc:47:38:5c:f3:a8:88:1d:ad:db:4f:80:9a:
                    13:0a:09:25:43:c2:e4:35:d6:f1:99:ef:38:97:a2:
                    64:fc:22:d8:ed:aa:6a:ec:5b:31:9e:e3:89:7b:d1:
                    64:14:79:9b:11:6f:96:74:93:f8:b6:a0:47:ae:9c:
                    5c:02:dd:0e:96:84:bf:67:82:36:e0:75:c4:f8:61:
                    b4:dc:d2:16:bf:1a:ab:9a:62:35:72:aa:a3:e7:39:
                    40:e9:ae:f5:c1:4e:bb:b4:f6:88:05:fe:94:4e:34:
                    4c:3f:5d:99:03:ba:65:79:fd:3b:e6:57:bd:39:c8:
                    ea:14:79:ca:8e:03:df:f0:f1:68:5d:40:e4:25:97:
                    b1:50:65:b6:c2:82:9b:8c:65:8d:ec:51:d4:a3:35:
                    e5:c8:91:ea:22:34:7c:ca:75:0c:d4:7c:24:24:1a:
                    aa:6e:23:03:77:f2:8b:e4:cf:b2:be:11:eb:62:01:
                    83:4d:bd:64:30:fb:a0:da:c1:2f:cc:b6:3b:bb:14:
                    95:4c:6c:90:cb:00:b8:f6:ff:d6:5c:0e:6c:65:5e:
                    90:fe:d1:65:ce:8b:99:3c:6a:ec:c0:40:7d:f2:a0:
                    ce:11:dc:29:b2:01:b8:a3:e7:92:b6:80:8b:af:52:
                    20:9c:94:9b:e7:6c:b6:82:3c:82:34:54:28:3b:bd:
                    ce:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:16:4E:97:91:D5:0B:18:5D:C6:D2:33:BC:AE:2A:04:CE:D0:77:C6
            X509v3 Authority Key Identifier:
                keyid:FD:6C:82:07:2A:7D:65:12:9B:2F:D2:9C:80:AD:0A:70:77:1E:F9:1F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/A6hEn1ZVU4nCZQEMzq1FnZmy7einPyALGTgjrS8ympiL/0/FD6C82072A7D65129B2FD29C80AD0A70771EF91F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FD6C82072A7D65129B2FD29C80AD0A70771EF91F.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/A6hEn1ZVU4nCZQEMzq1FnZmy7einPyALGTgjrS8ympiL/0/3138372e34392e31362e302f32302d3230203d3e203238313339.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  187.49.16.0/20

    Signature Algorithm: sha256WithRSAEncryption
         c2:6c:80:91:4b:ca:c3:0d:ff:33:b9:81:a2:13:15:7b:e8:2a:
         0e:8d:98:6a:7a:75:b0:dd:92:cb:71:cf:5c:09:e0:5c:96:4b:
         c6:f9:f7:c3:db:7a:fe:6f:b5:d6:39:c8:67:ad:d7:97:48:f5:
         34:1f:0d:0c:e0:82:d4:2d:fb:9b:bf:50:d7:8d:f3:31:d0:d8:
         bc:5b:88:7e:a3:bb:9b:83:90:f0:4b:a0:b7:8b:8c:93:b8:21:
         2c:23:f2:1a:c8:a6:dd:e8:d5:70:cd:05:5f:c3:cf:57:ee:67:
         03:1a:47:41:12:97:22:27:12:de:6f:54:86:47:d4:13:29:9d:
         c5:2b:f2:06:44:3a:6b:ac:ee:97:35:59:ad:d4:d7:c5:87:1c:
         87:b8:b0:54:3e:48:ef:77:74:d3:ac:89:67:29:d6:d7:de:dc:
         69:c2:f8:20:6e:6b:f9:3a:62:2a:5e:43:b0:fd:ba:d2:dd:2d:
         be:59:52:28:fd:ad:d0:73:9a:72:b7:e5:19:22:f3:1c:bf:3a:
         71:07:52:fa:08:c1:3a:01:16:13:e6:10:17:f2:dd:df:a6:8b:
         b3:e3:8c:92:98:3d:21:d3:ab:07:89:c0:43:fd:89:e4:36:48:
         f7:a3:68:9e:dc:ec:15:53:1c:2b:e4:74:83:ca:55:5f:38:e2:
         78:bb:34:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:10 2024 by rpki-client on console-fra.rpki-client.org