Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231362e302f32342d3234203d3e20323633343832.roa
File:                     3139312e3234322e3231362e302f32342d3234203d3e20323633343832.roa (raw, json)
Hash identifier:          cDNWbvmL2gc3MxYaUi4GTv08zhoFKGS32qBVXqiSmG8=
Subject key identifier:   8B:D7:45:5F:5F:8A:7B:E9:86:4B:52:46:35:46:BD:9E:B5:CB:A2:69
Certificate issuer:       /CN=03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA
Certificate serial:       647C49CB29E8EF01B4D7A15694049E96F3981877
Authority key identifier: 03:DC:B6:B8:38:7A:87:A1:45:BD:DF:97:F7:8E:03:59:EC:4F:D3:FA
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231362e302f32342d3234203d3e20323633343832.roa
Signing time:             Tue 28 Mar 2023 12:18:24 +0000
ROA not before:           Tue 28 Mar 2023 12:13:24 +0000
ROA not after:            Tue 26 Mar 2024 12:18:24 +0000
asID:                     263482
IP address blocks:        191.242.216.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:7c:49:cb:29:e8:ef:01:b4:d7:a1:56:94:04:9e:96:f3:98:18:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA
        Validity
            Not Before: Mar 28 12:13:24 2023 GMT
            Not After : Mar 26 12:18:24 2024 GMT
        Subject: CN=8BD7455F5F8A7BE9864B52463546BD9EB5CBA269
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:8f:fc:ac:6a:63:76:55:04:6a:f7:79:02:64:
                    30:04:dc:a6:95:b7:4f:a4:28:8e:02:09:93:15:db:
                    33:75:ff:fb:8a:72:81:54:3b:9d:39:f3:f8:dc:51:
                    df:11:50:35:3d:79:15:fa:ef:51:b4:20:f4:01:a0:
                    6d:49:7a:67:52:fe:55:50:26:c8:c8:29:7b:35:d6:
                    d6:48:c8:c0:12:5c:99:cf:90:84:f4:05:8d:c0:f5:
                    95:cf:82:f6:7f:41:3d:b0:d9:e7:e5:1e:8e:8f:a4:
                    13:df:e6:cc:5f:0a:08:dc:0a:16:44:75:c2:aa:0d:
                    eb:45:8f:17:63:e9:77:f2:55:b0:6d:5c:42:fe:20:
                    8a:36:21:49:2d:ab:77:6d:c9:d5:00:51:ca:90:7d:
                    27:67:ec:49:ff:d6:67:45:1f:34:4c:3a:ee:5a:1c:
                    89:56:a6:63:60:27:9e:9e:ce:38:98:01:9f:d0:30:
                    dd:6e:d1:79:21:09:c5:61:ae:90:2f:f8:bd:27:8c:
                    b4:4c:bf:1f:9a:b5:fb:6f:52:4e:4f:1c:74:fa:ee:
                    0a:66:e5:eb:b8:ff:a9:7c:f4:d0:9f:e2:f0:e9:d0:
                    ea:87:29:28:7e:42:df:28:13:e0:a1:ad:b9:6f:18:
                    5d:c8:a7:c9:db:b3:34:c1:75:06:38:96:fb:7e:aa:
                    32:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:D7:45:5F:5F:8A:7B:E9:86:4B:52:46:35:46:BD:9E:B5:CB:A2:69
            X509v3 Authority Key Identifier:
                keyid:03:DC:B6:B8:38:7A:87:A1:45:BD:DF:97:F7:8E:03:59:EC:4F:D3:FA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231362e302f32342d3234203d3e20323633343832.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  191.242.216.0/24

    Signature Algorithm: sha256WithRSAEncryption
         36:45:b2:50:59:1a:2a:0c:52:cd:51:f4:d2:bb:de:ff:4e:c3:
         fc:be:31:06:33:ae:c3:c0:18:3d:a0:6b:c2:e8:4e:d2:99:ba:
         de:b5:d3:44:d0:ca:8a:e2:c3:fb:1a:94:a1:ad:ab:da:a4:8f:
         08:98:57:ae:6e:f5:3c:96:01:3f:ed:26:9b:73:17:01:f0:36:
         db:1b:e9:59:53:f8:10:54:20:e7:89:fc:13:13:25:be:b6:e8:
         3e:6b:d7:43:67:85:3d:53:f8:ca:52:43:da:d0:17:7e:02:0a:
         ab:c3:ac:ac:db:ee:c1:42:0f:d1:d7:7b:34:12:13:2a:4e:b3:
         ea:ea:3f:17:2d:54:86:73:e1:f6:c5:87:fc:cf:d7:f5:ee:70:
         56:19:23:04:0e:dd:72:4d:37:34:c6:50:fa:33:bc:2f:a3:08:
         be:8e:e9:d1:70:a2:43:19:9d:bf:93:29:f8:58:6b:8c:70:3e:
         91:17:9c:2f:d0:80:07:48:0a:3b:b5:e9:70:57:c4:5e:65:66:
         0c:77:e4:1a:86:47:9c:e5:56:fb:9f:09:f5:f5:c1:4a:1a:ed:
         42:8f:51:d0:31:c3:b0:11:ea:37:9c:35:ec:e2:5a:06:31:f5:
         af:27:a1:13:46:1e:8b:ea:c0:66:97:70:6f:f6:9f:5d:6e:2a:
         7c:3d:6e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:24 2024 by rpki-client on console-ams.rpki-client.org