Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32332d3233203d3e20323636303636.roa
File:                     34352e342e3132342e302f32332d3233203d3e20323636303636.roa (raw, json)
Hash identifier:          dyHqJ3hXO7l44y6LCZOhImmfLjx8EGaaqIZzUHCqoCk=
Subject key identifier:   3D:80:4D:84:F2:07:D5:2B:16:CF:6E:FA:15:5D:AC:D4:15:03:04:DF
Certificate issuer:       /CN=D976D8643DDAC04E9DF4107DC27106249788AF8F
Certificate serial:       61A4636CD3BDAA61D31A1E77621EF1A3D7E87429
Authority key identifier: D9:76:D8:64:3D:DA:C0:4E:9D:F4:10:7D:C2:71:06:24:97:88:AF:8F
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32332d3233203d3e20323636303636.roa
Signing time:             Fri 20 Oct 2023 23:32:08 +0000
ROA not before:           Fri 20 Oct 2023 23:27:08 +0000
ROA not after:            Fri 18 Oct 2024 23:32:08 +0000
asID:                     266066
IP address blocks:        45.4.124.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            61:a4:63:6c:d3:bd:aa:61:d3:1a:1e:77:62:1e:f1:a3:d7:e8:74:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D976D8643DDAC04E9DF4107DC27106249788AF8F
        Validity
            Not Before: Oct 20 23:27:08 2023 GMT
            Not After : Oct 18 23:32:08 2024 GMT
        Subject: CN=3D804D84F207D52B16CF6EFA155DACD4150304DF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:cd:6d:ec:4a:c8:6a:36:28:fd:1d:e4:c0:9e:
                    1f:ac:56:8a:7f:4b:5f:1d:91:27:9d:03:f0:74:91:
                    b6:76:ed:c0:a6:26:62:fb:f8:c7:0c:e7:ed:f2:5a:
                    fb:92:75:99:f8:c0:f1:56:81:4d:59:b9:a1:24:3d:
                    ac:5c:97:0c:02:3c:02:ca:0c:9b:5b:52:df:4c:57:
                    af:73:79:75:97:d5:8f:bc:0a:3c:7e:f9:26:cd:88:
                    4c:de:5b:04:60:64:2d:94:2d:f4:3f:d1:ee:bd:01:
                    b0:fa:dd:e3:5c:c8:2e:1a:2c:f6:47:3b:74:61:b2:
                    2b:62:0c:d8:e8:f4:28:8b:10:cf:d6:26:fe:da:58:
                    19:99:2b:7e:9d:4f:32:99:53:d1:59:5c:e8:11:b6:
                    ad:0e:04:2e:c5:97:0c:b6:b8:56:b3:98:88:1f:59:
                    8b:4c:58:fd:bc:fe:fd:14:48:44:ed:33:af:bb:2f:
                    5c:75:0e:f6:e9:ac:78:04:ee:3b:22:23:58:0b:72:
                    c1:a0:80:88:e8:6f:c9:4a:ea:1c:60:05:52:0f:82:
                    64:08:bd:c7:92:af:d6:ec:fd:0b:0d:e1:a7:f0:80:
                    bc:27:45:4d:ab:b2:1e:5b:17:bd:f1:01:9c:3e:a5:
                    37:85:8f:65:d7:db:7a:55:4a:29:88:f0:9a:bf:13:
                    80:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:80:4D:84:F2:07:D5:2B:16:CF:6E:FA:15:5D:AC:D4:15:03:04:DF
            X509v3 Authority Key Identifier:
                keyid:D9:76:D8:64:3D:DA:C0:4E:9D:F4:10:7D:C2:71:06:24:97:88:AF:8F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32332d3233203d3e20323636303636.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.4.124.0/23

    Signature Algorithm: sha256WithRSAEncryption
         17:df:84:b4:87:9d:41:cc:da:1e:59:4c:91:ab:bf:d9:19:0b:
         6b:61:6a:aa:63:16:bb:0c:5f:7f:0f:71:27:e6:cd:a2:a6:5d:
         cc:ea:f1:71:7a:c6:a8:c8:25:e6:9b:03:ab:4d:67:9e:1f:7e:
         00:44:4a:11:2f:48:e9:6b:e8:45:13:82:ab:05:7a:cb:e6:96:
         2f:1c:07:b1:05:f9:ab:90:3d:3f:2b:96:52:d8:78:2f:ca:49:
         1c:80:2c:29:16:53:67:63:e5:4c:32:bb:3c:96:99:5e:3a:11:
         9b:c0:90:f2:5f:74:e9:fe:b9:19:dc:30:e1:9b:9b:ee:a6:2c:
         65:b7:8b:d8:6b:a3:84:a7:de:f1:3a:ae:73:b3:8b:71:ed:e5:
         d5:eb:90:be:eb:a6:68:77:9a:0f:b8:1c:b1:6c:ec:e2:c4:74:
         78:4d:5c:e3:36:cb:45:3f:61:42:e0:0b:92:fc:d7:be:31:8f:
         7a:ee:0f:f5:1b:04:9e:c1:92:07:b2:62:6f:4e:d1:13:ad:78:
         56:1e:bf:31:0f:c3:af:ae:f8:43:c5:f4:ef:c8:ba:e7:52:98:
         e4:02:df:cd:22:c1:21:4e:3b:46:ae:a1:e0:0d:8a:22:82:46:
         ec:99:a6:f0:91:c8:9f:14:e1:d2:9d:de:68:7f:74:a1:80:b7:
         62:71:9e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:52 2024 by rpki-client on console-ams.rpki-client.org