Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/BhU3QhMatjWXAo2XE3U93zLSGHGcBEGZrrd617gMap4z/0/323830343a373663383a3a2f33322d3332203d3e20323731313334.roa
File:                     323830343a373663383a3a2f33322d3332203d3e20323731313334.roa (raw, json)
Hash identifier:          0YAa6RNT3Nf5xMlL42trg/h485mR+bwmH0+lA8lzQOI=
Subject key identifier:   99:B1:E3:59:6D:82:F4:59:46:79:72:7B:A5:97:99:09:3A:7B:DA:03
Certificate issuer:       /CN=33043F790D6A918A5EB28C4B3D04D8805609D0B7
Certificate serial:       6D1F896F8A91244D8AA93C3B8DA8FC34CEBF9300
Authority key identifier: 33:04:3F:79:0D:6A:91:8A:5E:B2:8C:4B:3D:04:D8:80:56:09:D0:B7
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/33043F790D6A918A5EB28C4B3D04D8805609D0B7.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/BhU3QhMatjWXAo2XE3U93zLSGHGcBEGZrrd617gMap4z/0/323830343a373663383a3a2f33322d3332203d3e20323731313334.roa
Signing time:             Sat 10 Jun 2023 22:26:12 +0000
ROA not before:           Sat 10 Jun 2023 22:21:12 +0000
ROA not after:            Sat 08 Jun 2024 22:26:12 +0000
asID:                     271134
IP address blocks:        2804:76c8::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6d:1f:89:6f:8a:91:24:4d:8a:a9:3c:3b:8d:a8:fc:34:ce:bf:93:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=33043F790D6A918A5EB28C4B3D04D8805609D0B7
        Validity
            Not Before: Jun 10 22:21:12 2023 GMT
            Not After : Jun  8 22:26:12 2024 GMT
        Subject: CN=99B1E3596D82F4594679727BA59799093A7BDA03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:e9:0c:bc:49:cc:9d:27:19:69:83:0b:03:aa:
                    55:f3:aa:77:1d:5d:ce:d6:6f:32:61:28:0f:ef:2c:
                    44:10:89:88:f4:7a:4d:40:26:17:94:d0:1b:90:b7:
                    de:04:05:a4:32:b6:c0:70:e9:f7:a6:62:00:a1:97:
                    68:b4:8f:06:c1:f5:89:61:42:08:28:29:4a:23:ca:
                    fa:5f:ce:5d:35:74:bc:fc:63:66:fd:50:94:78:8e:
                    d6:a0:3f:53:ca:b5:01:9b:9c:36:af:de:e1:70:d6:
                    87:d1:0b:b3:19:08:5c:bf:05:4f:d2:f9:e4:fe:30:
                    d5:3a:0a:9a:6f:1e:6a:b6:c3:5f:e1:52:ea:c0:05:
                    a3:47:82:d8:85:71:39:6e:c7:b3:cc:d0:56:45:35:
                    03:17:46:98:9d:a0:fe:c3:eb:8a:3e:54:99:88:65:
                    17:40:ae:87:ce:de:53:65:d6:6f:21:03:9f:ff:c0:
                    b9:69:c1:13:6a:07:bb:50:11:4b:de:f6:73:67:23:
                    3b:c9:bc:ac:16:42:a8:cb:24:5f:f3:1b:42:1c:f4:
                    a0:ef:02:e1:c6:fe:f0:c5:22:4b:2c:ac:69:c6:b8:
                    0f:ca:33:2f:b8:6b:00:e6:82:0f:be:48:b8:2d:b0:
                    39:6e:73:4b:fb:82:db:d9:41:94:85:ea:57:32:69:
                    b8:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:B1:E3:59:6D:82:F4:59:46:79:72:7B:A5:97:99:09:3A:7B:DA:03
            X509v3 Authority Key Identifier:
                keyid:33:04:3F:79:0D:6A:91:8A:5E:B2:8C:4B:3D:04:D8:80:56:09:D0:B7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/BhU3QhMatjWXAo2XE3U93zLSGHGcBEGZrrd617gMap4z/0/33043F790D6A918A5EB28C4B3D04D8805609D0B7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/33043F790D6A918A5EB28C4B3D04D8805609D0B7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/BhU3QhMatjWXAo2XE3U93zLSGHGcBEGZrrd617gMap4z/0/323830343a373663383a3a2f33322d3332203d3e20323731313334.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:76c8::/32

    Signature Algorithm: sha256WithRSAEncryption
         2d:4f:fe:ad:38:7d:d5:84:7f:ca:15:75:0d:89:35:e0:fd:89:
         39:3e:31:5e:d3:ba:8d:9c:61:7c:c7:06:48:54:87:ff:92:3d:
         73:7a:cd:a7:a2:c4:4a:66:75:6b:cf:76:6d:33:58:7c:ef:df:
         8f:47:bd:da:76:70:71:48:fc:1d:35:d8:99:6b:1c:47:07:83:
         be:7a:fe:41:df:4b:e1:79:ce:d4:03:46:ca:3f:d0:9d:67:d8:
         e0:d2:f3:3d:ea:08:76:ed:31:61:e1:75:e9:0f:4e:c0:f5:59:
         f8:7a:99:c0:4e:cd:e9:24:82:80:1b:15:fb:3c:5c:ff:aa:08:
         a7:4d:9e:2a:25:6f:44:d2:44:b2:58:33:49:f1:0c:3e:a0:b8:
         90:24:d6:28:ae:0c:bd:4c:d0:6c:dc:b1:18:9f:41:c2:c0:9e:
         1e:af:7d:65:34:ed:20:13:87:35:60:3d:5c:4d:9c:21:15:72:
         f2:75:86:13:4a:b4:43:46:9d:14:3f:81:8e:ce:04:4d:07:2d:
         ac:64:f1:5f:2f:5d:15:78:f1:93:14:e2:e4:2a:3b:4d:4a:8d:
         4a:2a:51:fd:92:bb:7d:09:18:11:04:ad:b9:8f:98:1b:36:4b:
         6e:95:c4:8c:f6:cb:80:39:e0:f3:b8:10:4a:da:13:67:78:87:
         cc:4a:bd:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:20 2024 by rpki-client on console-fra.rpki-client.org