Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa
File:                     3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa (raw, json)
Hash identifier:          r88Jv8u0nFZUiwZVLzSEmjlueDeSQfHoM+L69OgIr3o=
Subject key identifier:   59:C6:99:BA:14:5C:FB:F6:1C:90:8C:3D:A7:43:67:5F:09:6A:4C:78
Certificate issuer:       /CN=115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A
Certificate serial:       6A92034D0DFD31B03F45E946E815052C773C945F
Authority key identifier: 11:5B:D5:FA:AC:7A:C0:2C:56:D3:72:A4:7E:AF:DA:2B:67:C3:19:8A
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa
Signing time:             Tue 16 May 2023 17:34:04 +0000
ROA not before:           Tue 16 May 2023 17:29:04 +0000
ROA not after:            Tue 14 May 2024 17:34:04 +0000
asID:                     264091
IP address blocks:        143.208.128.0/22 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:92:03:4d:0d:fd:31:b0:3f:45:e9:46:e8:15:05:2c:77:3c:94:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A
        Validity
            Not Before: May 16 17:29:04 2023 GMT
            Not After : May 14 17:34:04 2024 GMT
        Subject: CN=59C699BA145CFBF61C908C3DA743675F096A4C78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:97:c3:fc:9a:90:4f:7e:2a:ff:73:2d:b2:0e:
                    aa:61:44:0e:f3:91:60:ec:e8:dc:7d:be:64:54:85:
                    2c:95:ca:a9:70:41:32:72:d9:b8:90:9f:cc:d7:4f:
                    51:a5:47:6b:25:eb:25:1e:bb:88:70:eb:3e:6c:fb:
                    23:34:32:26:c9:6d:b3:e3:21:a7:9c:36:ee:44:43:
                    86:e7:09:19:09:47:01:7e:7a:f6:ad:09:1b:ad:f6:
                    c9:e7:bf:79:5f:7a:82:5e:f1:5f:74:4b:f0:be:a4:
                    b4:c2:c1:01:04:59:d4:84:17:67:54:af:3e:9d:26:
                    d7:ca:f4:72:11:a2:3d:92:83:77:f5:95:0a:2d:1a:
                    0b:ed:2b:42:3e:23:db:15:74:13:b9:aa:f6:a5:64:
                    67:9e:77:4e:49:56:de:e1:4a:20:0c:c3:48:b0:c8:
                    cc:8d:51:e7:54:63:e3:5c:9c:70:a6:3e:bf:66:08:
                    4f:a1:0f:d3:3b:97:bb:4d:77:73:e6:3e:63:c4:85:
                    85:bd:91:7e:2c:9a:11:14:d4:91:9b:e5:27:eb:f2:
                    22:7a:96:15:6a:fd:16:09:96:54:d9:10:c9:cd:36:
                    30:3e:a0:21:92:c4:8c:ba:3a:9c:61:f0:86:47:0c:
                    e2:f2:ab:59:62:69:f2:a1:48:02:9e:db:1f:7a:b1:
                    d1:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:C6:99:BA:14:5C:FB:F6:1C:90:8C:3D:A7:43:67:5F:09:6A:4C:78
            X509v3 Authority Key Identifier:
                keyid:11:5B:D5:FA:AC:7A:C0:2C:56:D3:72:A4:7E:AF:DA:2B:67:C3:19:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  143.208.128.0/22

    Signature Algorithm: sha256WithRSAEncryption
         81:a8:e2:3b:2b:fd:05:cf:66:c9:4e:6f:08:1a:d2:70:0a:1c:
         43:d6:70:85:66:f2:78:ee:3f:59:d2:19:5a:d5:68:cc:4e:9b:
         cd:ed:8d:bd:8f:44:74:c2:24:35:a4:1d:09:d7:9d:2f:31:06:
         88:d9:b4:ed:80:98:04:a3:4a:aa:57:78:d9:ab:45:b9:16:6f:
         92:ac:10:ae:de:20:ae:eb:85:66:d6:c5:02:ee:a2:59:21:4d:
         d6:8a:91:7a:45:71:4a:39:02:1d:08:6d:c0:f5:42:45:a2:58:
         d8:b1:27:88:0e:7d:d7:9f:5b:00:4c:2d:80:76:c4:00:27:5c:
         33:b1:3a:0e:5b:d5:55:0e:2a:cc:e5:3d:36:28:a0:d9:83:5e:
         dd:64:6c:57:3a:59:d7:d0:96:fd:04:b6:a7:ce:65:13:80:1d:
         3a:6c:82:7b:5e:da:53:72:6b:70:d1:e2:11:0e:6f:fe:08:4b:
         7f:25:e0:3d:b0:bd:26:d9:9d:16:74:c2:91:71:11:cd:cb:ea:
         1b:cb:69:54:9d:86:5b:a5:31:90:ef:97:d8:c7:c8:e6:0f:bd:
         ad:32:b9:94:7f:a7:f5:ae:27:4d:be:47:c2:1e:c5:89:bd:2c:
         c4:d3:94:ee:dc:3f:62:73:e9:e6:9b:be:ed:17:e1:94:dc:18:
         e0:67:ed:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:52 2024 by rpki-client on console-ams.rpki-client.org