Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/AAUQYsCDY5sRffgb9jtqMdkBcGvKRAURpKcBocfgZn3c/0/323830343a6363633a3a2f33332d3333203d3e20323632383237.roa
File:                     323830343a6363633a3a2f33332d3333203d3e20323632383237.roa (raw, json)
Hash identifier:          dlcv70TR9lWvm2rYvPS6ujEjqR06za2+OF5IesBRb+s=
Subject key identifier:   5F:D0:6D:26:A1:40:F7:4C:7D:B5:0E:EA:15:20:5C:F5:EC:82:A9:CB
Certificate issuer:       /CN=DADE0C80639BA985F0F9357586063522E5D2116B
Certificate serial:       6CFF61FED094DE85BDCAFA3EBC0A4594DC0BA5BE
Authority key identifier: DA:DE:0C:80:63:9B:A9:85:F0:F9:35:75:86:06:35:22:E5:D2:11:6B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/DADE0C80639BA985F0F9357586063522E5D2116B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/AAUQYsCDY5sRffgb9jtqMdkBcGvKRAURpKcBocfgZn3c/0/323830343a6363633a3a2f33332d3333203d3e20323632383237.roa
Signing time:             Thu 15 Feb 2024 13:52:33 +0000
ROA not before:           Thu 15 Feb 2024 13:47:33 +0000
ROA not after:            Thu 13 Feb 2025 13:52:33 +0000
asID:                     262827
IP address blocks:        2804:ccc::/33 maxlen: 33

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:ff:61:fe:d0:94:de:85:bd:ca:fa:3e:bc:0a:45:94:dc:0b:a5:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DADE0C80639BA985F0F9357586063522E5D2116B
        Validity
            Not Before: Feb 15 13:47:33 2024 GMT
            Not After : Feb 13 13:52:33 2025 GMT
        Subject: CN=5FD06D26A140F74C7DB50EEA15205CF5EC82A9CB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:49:40:aa:60:0d:34:2f:16:93:fd:a3:51:60:
                    64:4c:ee:97:94:9d:69:9c:89:11:ff:3e:a3:bc:1f:
                    ce:26:48:79:9a:ed:f9:2b:f3:38:a3:9e:f8:b9:4a:
                    9b:88:42:a2:cc:38:2a:ec:3b:4f:2f:39:b0:53:42:
                    e4:cc:6f:41:f2:24:22:ea:92:c4:dc:8d:d4:e8:69:
                    77:81:d4:93:cb:8c:8d:39:f2:dc:94:bd:26:80:b1:
                    a6:4b:e1:fa:8c:bc:b6:02:1f:49:8d:49:5b:18:2c:
                    63:0a:1c:96:5a:e7:d5:f4:b8:bc:8e:f2:d1:0d:a4:
                    ce:43:ff:d3:5d:21:b2:e5:14:b1:49:39:2a:dd:b3:
                    19:51:70:80:6e:50:ac:3b:9f:2a:bc:86:f0:7a:a4:
                    e6:24:ad:58:a4:dd:4e:f8:6f:a0:05:4c:63:f3:4a:
                    3a:d5:37:f7:b0:b4:bc:98:f7:54:05:d2:a0:07:97:
                    51:1a:49:45:26:e4:2f:01:af:e0:68:eb:33:8b:a7:
                    78:9b:85:b6:a5:7b:e5:3a:cc:b1:4e:15:94:ba:2e:
                    5c:46:5d:7b:e9:13:11:ce:72:40:e8:85:16:1e:9a:
                    67:fa:05:4b:01:46:b0:eb:97:70:dd:16:27:f2:75:
                    68:fa:59:0c:91:96:79:59:37:a7:96:00:df:1f:22:
                    64:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:D0:6D:26:A1:40:F7:4C:7D:B5:0E:EA:15:20:5C:F5:EC:82:A9:CB
            X509v3 Authority Key Identifier:
                keyid:DA:DE:0C:80:63:9B:A9:85:F0:F9:35:75:86:06:35:22:E5:D2:11:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/AAUQYsCDY5sRffgb9jtqMdkBcGvKRAURpKcBocfgZn3c/0/DADE0C80639BA985F0F9357586063522E5D2116B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/DADE0C80639BA985F0F9357586063522E5D2116B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/AAUQYsCDY5sRffgb9jtqMdkBcGvKRAURpKcBocfgZn3c/0/323830343a6363633a3a2f33332d3333203d3e20323632383237.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:ccc::/33

    Signature Algorithm: sha256WithRSAEncryption
         a4:df:32:16:77:82:ec:31:73:94:54:3f:12:ea:c9:66:c4:ac:
         49:5e:67:a9:f2:0e:04:a3:e7:6d:3c:a9:db:1f:a1:61:3b:c5:
         a6:f6:fb:64:f5:eb:16:49:a5:19:6a:c4:c1:62:9f:1d:53:1e:
         33:11:7c:fc:c2:fd:15:62:83:87:af:a4:57:16:46:98:f8:10:
         c7:ac:b5:cb:ac:6c:9c:20:08:6a:64:94:25:d8:4e:d0:5e:35:
         1b:1c:26:a6:f3:a5:2a:e4:29:11:f9:09:04:39:c6:47:35:1f:
         19:68:cd:80:df:c7:68:ca:d4:e1:09:7a:1d:b9:8b:4c:a9:7a:
         2c:5b:7b:3b:e6:f3:cf:17:e2:ea:da:24:5a:8c:e8:11:9a:e6:
         d3:31:e2:1d:c4:8d:9f:55:2f:5f:fe:cd:eb:d9:74:bf:3a:96:
         25:1c:e1:3f:f2:e8:54:a2:cd:9a:36:22:70:6c:d3:fb:2c:e3:
         0e:8a:d6:9e:30:cf:45:42:8b:e5:78:6e:6a:11:16:6c:1f:25:
         cb:4e:25:e9:47:ea:63:b4:4a:2b:4b:d2:03:17:91:3f:2a:ec:
         37:e5:eb:e8:b2:02:ff:42:6b:2a:cb:22:01:8d:da:21:54:4d:
         d8:a8:fc:c9:aa:69:f0:da:fc:8a:13:5a:33:24:a8:c3:b5:31:
         7c:47:e1:91
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUbP9h/tCU3oW9yvo+vApFlNwLpb4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREFERTBDODA2MzlCQTk4NUYwRjkzNTc1ODYwNjM1MjJF
NUQyMTE2QjAeFw0yNDAyMTUxMzQ3MzNaFw0yNTAyMTMxMzUyMzNaMDMxMTAvBgNV
BAMTKDVGRDA2RDI2QTE0MEY3NEM3REI1MEVFQTE1MjA1Q0Y1RUM4MkE5Q0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFSUCqYA00LxaT/aNRYGRM7peU
nWmciRH/PqO8H84mSHma7fkr8zijnvi5SpuIQqLMOCrsO08vObBTQuTMb0HyJCLq
ksTcjdToaXeB1JPLjI058tyUvSaAsaZL4fqMvLYCH0mNSVsYLGMKHJZa59X0uLyO
8tENpM5D/9NdIbLlFLFJOSrdsxlRcIBuUKw7nyq8hvB6pOYkrVik3U74b6AFTGPz
SjrVN/ewtLyY91QF0qAHl1EaSUUm5C8Br+Bo6zOLp3ibhbale+U6zLFOFZS6LlxG
XXvpExHOckDohRYemmf6BUsBRrDrl3DdFifydWj6WQyRlnlZN6eWAN8fImTzAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUX9BtJqFA90x9tQ7qFSBc9eyCqcswHwYDVR0j
BBgwFoAU2t4MgGObqYXw+TV1hgY1IuXSEWswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQUFVUVlzQ0RZNXNSZmZnYjlqdHFNZGtCY0d2S1JBVVJwS2NCb2NmZ1pu
M2MvMC9EQURFMEM4MDYzOUJBOTg1RjBGOTM1NzU4NjA2MzUyMkU1RDIxMTZCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0RBREUwQzgwNjM5QkE5ODVG
MEY5MzU3NTg2MDYzNTIyRTVEMjExNkIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0FBVVFZc0NEWTVzUmZmZ2I5anRxTWRrQmNHdktSQVVScEtjQm9jZmdabjNjLzAv
MzIzODMwMzQzYTYzNjM2MzNhM2EyZjMzMzMyZDMzMzMyMDNkM2UyMDMyMzYzMjM4
MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB
/wQSMBAwDgQCAAIwCAMGBygEDMwAMA0GCSqGSIb3DQEBCwUAA4IBAQCk3zIWd4Ls
MXOUVD8S6slmxKxJXmep8g4Eo+dtPKnbH6FhO8Wm9vtk9esWSaUZasTBYp8dUx4z
EXz8wv0VYoOHr6RXFkaY+BDHrLXLrGycIAhqZJQl2E7QXjUbHCam86Uq5CkR+QkE
OcZHNR8ZaM2A38doytThCXoduYtMqXosW3s75vPPF+Lq2iRajOgRmubTMeIdxI2f
VS9f/s3r2XS/OpYlHOE/8uhUos2aNiJwbNP7LOMOitaeMM9FQovleG5qERZsHyXL
TiXpR+pjtEorS9IDF5E/Kuw35evosgL/QmsqyyIBjdohVE3YqPzJqmnw2vyKE1oz
JKjDtTF8R+GR
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:11 2024 by rpki-client on console-fra.rpki-client.org