Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/CQfZrt9GSoS2JtBju4RiQH1qBGk8GRsDySD5r5L28QxE/0/34352e3138362e35322e302f32332d3233203d3e20323639343131.roa
File:                     34352e3138362e35322e302f32332d3233203d3e20323639343131.roa (raw, json)
Hash identifier:          YENlPMagzC2CyRy6BzNw4iD/GfDYmttppzbyeWqdzf8=
Subject key identifier:   7D:04:34:C8:4E:2C:19:F0:CD:F9:97:4B:04:33:1A:EB:89:63:B9:A6
Certificate issuer:       /CN=100BA0134C785D84A913EF65B85A8B4973D0B2C5
Certificate serial:       3C278C8732424F9590C82C6AA1460BB816500FF0
Authority key identifier: 10:0B:A0:13:4C:78:5D:84:A9:13:EF:65:B8:5A:8B:49:73:D0:B2:C5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/100BA0134C785D84A913EF65B85A8B4973D0B2C5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/CQfZrt9GSoS2JtBju4RiQH1qBGk8GRsDySD5r5L28QxE/0/34352e3138362e35322e302f32332d3233203d3e20323639343131.roa
Signing time:             Tue 20 Jun 2023 14:04:34 +0000
ROA not before:           Tue 20 Jun 2023 13:59:34 +0000
ROA not after:            Tue 18 Jun 2024 14:04:34 +0000
asID:                     269411
IP address blocks:        45.186.52.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3c:27:8c:87:32:42:4f:95:90:c8:2c:6a:a1:46:0b:b8:16:50:0f:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=100BA0134C785D84A913EF65B85A8B4973D0B2C5
        Validity
            Not Before: Jun 20 13:59:34 2023 GMT
            Not After : Jun 18 14:04:34 2024 GMT
        Subject: CN=7D0434C84E2C19F0CDF9974B04331AEB8963B9A6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:55:15:59:a8:14:dd:a7:49:f8:dc:30:b5:6e:
                    0a:51:0e:06:6c:13:c6:6f:28:56:15:17:5a:20:5f:
                    5f:84:cf:21:67:27:ae:76:62:f8:11:47:72:1e:b8:
                    f9:d3:5c:a4:7b:5a:21:57:e0:19:3f:3e:e2:7d:31:
                    1d:53:6b:50:62:87:df:92:ce:55:4e:f1:60:34:38:
                    01:0b:a9:bf:3a:ce:58:1c:a4:07:00:eb:8e:c5:89:
                    f1:ce:db:b2:66:70:fc:cf:0e:a9:d9:0d:e3:96:2b:
                    95:7f:c4:83:38:fd:0d:ca:82:db:41:ca:a7:a1:51:
                    56:e8:3a:4a:52:f9:52:80:6e:30:b3:c5:c1:f1:c0:
                    3e:b8:a3:7c:d9:92:99:0e:8b:15:30:d7:06:fd:4a:
                    72:ff:3c:03:3a:63:cc:44:27:41:0c:7d:a7:07:fb:
                    84:7e:b1:61:1f:36:50:8b:c5:71:61:f2:81:41:11:
                    f5:7b:2d:7c:46:e2:d2:49:34:fa:9a:61:15:6c:0c:
                    3f:3b:00:d8:c6:9c:29:5c:fe:9f:95:8e:95:e1:05:
                    5e:0a:af:c1:d2:c3:80:17:de:2e:af:ad:b5:24:b2:
                    33:02:a3:e8:31:86:8d:e4:d3:4d:bc:cf:fe:70:54:
                    97:a4:e9:a1:c6:fb:48:64:c2:cf:d7:a2:63:5f:2a:
                    cf:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:04:34:C8:4E:2C:19:F0:CD:F9:97:4B:04:33:1A:EB:89:63:B9:A6
            X509v3 Authority Key Identifier:
                keyid:10:0B:A0:13:4C:78:5D:84:A9:13:EF:65:B8:5A:8B:49:73:D0:B2:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/CQfZrt9GSoS2JtBju4RiQH1qBGk8GRsDySD5r5L28QxE/0/100BA0134C785D84A913EF65B85A8B4973D0B2C5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/100BA0134C785D84A913EF65B85A8B4973D0B2C5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/CQfZrt9GSoS2JtBju4RiQH1qBGk8GRsDySD5r5L28QxE/0/34352e3138362e35322e302f32332d3233203d3e20323639343131.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.186.52.0/23

    Signature Algorithm: sha256WithRSAEncryption
         87:c9:fd:a7:7e:df:d5:48:9e:ad:2b:9f:04:42:26:00:4a:02:
         e6:2d:fe:77:e9:6a:88:9a:41:26:a8:ca:68:e3:f0:a9:08:e7:
         22:b4:8c:1a:6c:cb:27:fe:c9:58:cd:12:0d:43:45:5b:c3:df:
         bf:97:2a:b2:c4:de:a8:95:7a:37:90:e0:b5:3d:76:15:9e:35:
         1a:8a:a3:fb:51:75:f2:64:d7:fd:17:7d:bd:ac:a5:e0:97:9b:
         20:0f:dd:89:cd:9a:24:0b:07:58:40:a9:4c:ae:4d:b5:cd:ce:
         03:88:a3:c4:d4:1b:ef:e6:2f:3e:f0:c5:7d:0e:03:8a:f4:8d:
         69:76:a7:0a:99:63:7e:80:2e:7e:27:38:33:ea:ba:1a:15:19:
         35:73:c8:30:87:5c:e5:ff:b6:77:3d:fb:94:c9:92:b0:1e:4c:
         13:31:6f:22:ce:7d:2f:e1:ec:db:dd:20:43:29:07:9e:85:e6:
         93:45:e5:4b:05:d8:3a:3e:fd:9f:ff:21:2f:ce:e0:72:e1:5d:
         51:c9:e8:cb:7f:58:7a:17:bf:c7:b3:0a:87:b3:67:b4:be:a8:
         5f:71:55:41:cd:08:4d:18:6f:c6:75:7a:43:f5:d4:06:50:87:
         61:58:6a:b1:7b:3f:b2:d3:05:75:c3:8a:1e:24:bb:e8:23:90:
         b2:a0:be:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:05 2024 by rpki-client on console-ams.rpki-client.org