Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa
File:                     3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa (raw, json)
Hash identifier:          SOIRloRVNNp/NaH9T65qDM4nnsJDxYV4NUinqWFKCys=
Subject key identifier:   FA:DF:AB:56:FD:82:B6:67:91:A4:C8:E1:DE:66:E4:6F:6D:A4:28:D4
Certificate issuer:       /CN=03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA
Certificate serial:       58344E4EAA5178A00486D78701ED457A0CAA2EC6
Authority key identifier: 03:DC:B6:B8:38:7A:87:A1:45:BD:DF:97:F7:8E:03:59:EC:4F:D3:FA
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa
Signing time:             Tue 28 Mar 2023 12:18:25 +0000
ROA not before:           Tue 28 Mar 2023 12:13:25 +0000
ROA not after:            Tue 26 Mar 2024 12:18:25 +0000
asID:                     263482
IP address blocks:        191.242.217.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            58:34:4e:4e:aa:51:78:a0:04:86:d7:87:01:ed:45:7a:0c:aa:2e:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA
        Validity
            Not Before: Mar 28 12:13:25 2023 GMT
            Not After : Mar 26 12:18:25 2024 GMT
        Subject: CN=FADFAB56FD82B66791A4C8E1DE66E46F6DA428D4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:c0:92:07:dc:fd:77:90:75:a7:65:ee:0c:d7:
                    1d:e7:d2:20:1a:0e:9a:3c:be:c7:06:d4:3f:64:21:
                    db:90:30:af:32:68:50:b0:9e:fb:31:f0:a3:9f:0c:
                    0e:f9:65:af:74:23:99:c2:ce:4e:da:57:51:21:b6:
                    9c:3e:7f:2a:2c:ee:0d:d6:ea:80:2e:77:0f:32:d7:
                    75:1f:2e:da:be:f7:58:56:f8:c6:a6:3a:45:a9:de:
                    aa:85:45:39:16:41:16:7a:e2:9a:37:2e:df:7d:6f:
                    7c:95:fd:c6:70:64:49:48:40:6b:34:53:a7:55:e4:
                    36:b0:97:9d:d6:24:af:fc:bc:3a:2d:7f:0f:23:ac:
                    2d:a6:48:a7:a1:a9:05:07:84:27:45:63:03:b9:ff:
                    ad:f3:e5:3e:70:18:07:58:d1:69:68:79:b6:58:e1:
                    51:be:0b:ef:58:e9:5b:76:28:de:26:dc:6f:20:5e:
                    a3:9d:be:3d:69:67:01:b6:cd:81:a5:fc:f4:ca:92:
                    dd:a4:94:ea:e9:71:4b:ba:95:ae:fb:27:82:02:24:
                    f2:66:4a:41:8b:70:eb:df:2d:ab:f8:d9:ea:f1:d5:
                    18:1d:58:20:f6:69:39:8c:4e:23:7a:d2:8f:9c:f3:
                    ee:c4:57:89:12:2d:80:6a:86:d7:34:41:74:3e:d3:
                    e9:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:DF:AB:56:FD:82:B6:67:91:A4:C8:E1:DE:66:E4:6F:6D:A4:28:D4
            X509v3 Authority Key Identifier:
                keyid:03:DC:B6:B8:38:7A:87:A1:45:BD:DF:97:F7:8E:03:59:EC:4F:D3:FA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/03DCB6B8387A87A145BDDF97F78E0359EC4FD3FA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  191.242.217.0/24

    Signature Algorithm: sha256WithRSAEncryption
         34:99:55:b4:ae:45:50:e7:b8:b2:10:38:5d:67:32:57:d8:57:
         af:58:e2:2c:32:a1:d3:f4:fb:e7:24:38:89:86:92:22:d0:ae:
         05:07:fc:76:c4:b1:4c:38:e0:8a:21:bc:f5:76:a2:e2:7d:b4:
         0d:64:9d:f1:d6:1c:fd:7e:cb:d6:8b:9f:ec:aa:be:64:7a:d3:
         19:cc:1e:f4:7d:f4:36:01:63:41:e0:c0:f5:01:20:40:6d:38:
         52:0a:3b:21:b2:66:fa:b2:25:c2:38:5b:7c:5a:c1:56:55:39:
         b9:a8:78:a8:96:f8:dc:10:fe:14:b8:d5:85:67:fe:24:57:fd:
         2b:a6:96:40:c2:4c:bb:b7:ec:5f:78:9b:93:66:89:95:ad:c5:
         ae:49:e4:0d:18:9e:63:66:0e:8f:2d:50:fd:3e:a6:91:32:f0:
         fa:2e:78:76:dc:27:28:e2:97:d6:b1:ca:bf:3c:77:7a:4a:ba:
         b3:f2:3b:1a:a7:8a:3b:f1:34:0a:bf:6a:12:63:ca:5c:f5:04:
         ff:c2:a4:06:fe:e5:2c:25:12:c8:7f:d2:38:ee:e6:81:02:85:
         e6:6d:07:c3:e7:d8:0e:46:b5:08:df:8c:f0:82:6b:d3:b8:51:
         b1:3e:b1:8b:dc:ba:c3:c4:99:ad:1d:2e:82:51:0d:b1:df:14:
         89:f7:ae:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:24 2024 by rpki-client on console-ams.rpki-client.org