Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/BKZpT4mAJ6B2ztjyWUk3jgQnY4FNixzSGoLWGzfuNaew/0/323830343a346134383a3a2f33322d3332203d3e20323637323239.roa
File:                     323830343a346134383a3a2f33322d3332203d3e20323637323239.roa (raw, json)
Hash identifier:          MJZs/ynej/oNHl8Y255nbR+mR7hkK+59QAKD34aswCU=
Subject key identifier:   C3:F7:C5:D8:04:3D:24:E4:72:E5:12:3C:5C:69:BC:01:74:0E:7C:8C
Certificate issuer:       /CN=53895AED87F30E6ED53DB01B9DC68CA237B687F2
Certificate serial:       505D42415E03AFAEBB8D1EE772306F9BC310E950
Authority key identifier: 53:89:5A:ED:87:F3:0E:6E:D5:3D:B0:1B:9D:C6:8C:A2:37:B6:87:F2
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/53895AED87F30E6ED53DB01B9DC68CA237B687F2.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/BKZpT4mAJ6B2ztjyWUk3jgQnY4FNixzSGoLWGzfuNaew/0/323830343a346134383a3a2f33322d3332203d3e20323637323239.roa
Signing time:             Fri 02 Feb 2024 14:20:05 +0000
ROA not before:           Fri 02 Feb 2024 14:15:05 +0000
ROA not after:            Fri 31 Jan 2025 14:20:05 +0000
asID:                     267229
IP address blocks:        2804:4a48::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            50:5d:42:41:5e:03:af:ae:bb:8d:1e:e7:72:30:6f:9b:c3:10:e9:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53895AED87F30E6ED53DB01B9DC68CA237B687F2
        Validity
            Not Before: Feb  2 14:15:05 2024 GMT
            Not After : Jan 31 14:20:05 2025 GMT
        Subject: CN=C3F7C5D8043D24E472E5123C5C69BC01740E7C8C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:64:9c:b1:4c:c0:1d:4b:43:64:08:07:2c:2c:
                    6b:c4:07:cf:95:fe:80:92:d7:16:3a:36:12:c6:d4:
                    71:a6:2b:b9:09:62:ad:a7:b1:00:df:fc:73:0c:9a:
                    69:36:d0:9a:53:7c:48:1f:54:7a:ee:2c:0b:e9:14:
                    62:86:68:1d:cf:f2:b4:22:4f:0d:a4:c3:e9:f6:7e:
                    50:99:2c:c2:2a:01:58:3c:34:8f:41:7e:5f:8f:ef:
                    2e:66:c0:57:12:f9:24:78:73:ec:7b:6c:84:04:a6:
                    ac:1c:92:d4:78:11:10:20:3a:a3:66:f1:50:46:30:
                    cb:ca:62:3b:63:e9:7c:4a:cb:e9:90:b9:08:19:89:
                    87:8d:5e:3e:6b:de:7c:e3:6d:c0:42:6d:56:6d:c7:
                    c6:6a:5e:91:f8:9e:02:f4:cf:14:0a:ea:91:13:31:
                    fa:a0:53:b8:bc:e9:53:ad:bd:02:95:f3:39:19:97:
                    71:bf:24:2e:06:9e:48:94:e0:6b:b5:37:90:26:bb:
                    63:8e:d1:a5:09:4d:e1:e1:35:0a:ec:b5:95:1d:ad:
                    11:9b:9a:b0:7b:66:90:a7:49:fb:53:8b:5f:51:ff:
                    9c:90:32:b6:94:d0:97:3a:4a:76:08:82:8c:81:cf:
                    cc:6f:e1:aa:7c:38:b6:36:be:78:12:d0:1d:c8:da:
                    03:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:F7:C5:D8:04:3D:24:E4:72:E5:12:3C:5C:69:BC:01:74:0E:7C:8C
            X509v3 Authority Key Identifier:
                keyid:53:89:5A:ED:87:F3:0E:6E:D5:3D:B0:1B:9D:C6:8C:A2:37:B6:87:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/BKZpT4mAJ6B2ztjyWUk3jgQnY4FNixzSGoLWGzfuNaew/0/53895AED87F30E6ED53DB01B9DC68CA237B687F2.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/53895AED87F30E6ED53DB01B9DC68CA237B687F2.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/BKZpT4mAJ6B2ztjyWUk3jgQnY4FNixzSGoLWGzfuNaew/0/323830343a346134383a3a2f33322d3332203d3e20323637323239.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:4a48::/32

    Signature Algorithm: sha256WithRSAEncryption
         4f:d3:8a:2b:98:fb:44:cc:07:54:85:67:aa:56:96:b4:7c:91:
         e0:12:c0:df:94:8b:9d:eb:a7:1a:c2:6a:aa:20:31:79:b8:6c:
         33:a4:30:ac:39:1b:08:bc:98:ed:bd:98:04:41:72:6a:b7:66:
         cd:31:d8:06:a4:81:dc:bf:f7:bc:6b:e6:65:c7:a3:2d:2e:25:
         12:6d:38:4e:4e:15:c4:21:e1:b0:bc:07:84:57:3b:a6:31:62:
         9b:77:56:67:fb:60:e9:9e:36:d1:02:f3:ea:38:25:41:44:a5:
         7b:76:68:5c:9d:6d:c9:9b:cf:77:d1:eb:7f:15:b5:9f:0e:e5:
         80:e6:58:12:b9:23:66:17:fa:ea:bb:36:61:eb:68:66:92:17:
         72:a7:c8:51:af:14:b9:7a:de:05:24:2e:37:3d:bd:c5:80:8a:
         58:d6:aa:b6:4d:3a:94:a5:ee:33:37:04:00:fc:29:14:79:af:
         c7:5c:13:7e:4c:db:7d:3c:47:e2:c8:56:dc:17:46:86:7f:ca:
         29:af:36:b1:ef:ef:64:a3:fb:25:e8:43:06:9c:7d:2a:e5:98:
         a9:7b:6f:58:ba:65:c0:64:f6:07:86:ce:45:6a:f2:10:11:ca:
         ec:12:7a:58:56:8c:64:f4:dc:98:c6:2d:a5:1c:47:45:e5:50:
         6f:c6:0a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:52 2024 by rpki-client on console-ams.rpki-client.org