Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/DWP6wz7xressoSBcgXKqmQoAWFf2fr8K6hSkf1QGvL9z/0/3230302e35332e36342e302f32322d3232203d3e20323731353034.roa
File:                     3230302e35332e36342e302f32322d3232203d3e20323731353034.roa (raw, json)
Hash identifier:          T3yrwrfmQ/DBZeMkPrH90envXFKDR6ycVwBP8unbHkY=
Subject key identifier:   32:3B:A4:DC:CC:12:9C:8C:06:DA:80:27:43:6F:ED:9C:2D:F0:59:5D
Certificate issuer:       /CN=10872CEC6BBF53B1A7F684D9A661A8978564FE7D
Certificate serial:       643117FD8499800F0EF9439AD0CE4F35A1166F5B
Authority key identifier: 10:87:2C:EC:6B:BF:53:B1:A7:F6:84:D9:A6:61:A8:97:85:64:FE:7D
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/10872CEC6BBF53B1A7F684D9A661A8978564FE7D.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/DWP6wz7xressoSBcgXKqmQoAWFf2fr8K6hSkf1QGvL9z/0/3230302e35332e36342e302f32322d3232203d3e20323731353034.roa
Signing time:             Tue 12 Mar 2024 08:08:52 +0000
ROA not before:           Tue 12 Mar 2024 08:03:52 +0000
ROA not after:            Tue 11 Mar 2025 08:08:52 +0000
asID:                     271504
IP address blocks:        200.53.64.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:31:17:fd:84:99:80:0f:0e:f9:43:9a:d0:ce:4f:35:a1:16:6f:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10872CEC6BBF53B1A7F684D9A661A8978564FE7D
        Validity
            Not Before: Mar 12 08:03:52 2024 GMT
            Not After : Mar 11 08:08:52 2025 GMT
        Subject: CN=323BA4DCCC129C8C06DA8027436FED9C2DF0595D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:89:af:ad:81:29:3a:27:b1:47:e1:46:47:20:
                    a7:89:f1:f4:d5:72:54:e6:1a:b6:f6:cf:1c:c8:86:
                    c1:a3:fd:9a:6b:cf:89:bc:4a:12:83:92:e6:cb:19:
                    02:d8:f2:07:b1:79:4e:78:5e:bf:c4:72:09:01:49:
                    ac:46:2c:91:e7:5b:49:d8:26:bb:ca:3a:e8:95:2d:
                    98:3b:cb:af:60:fe:8a:b0:34:3a:3d:1b:77:8a:fd:
                    6d:09:39:a4:c1:b0:5b:d6:6f:ee:e8:fe:5b:24:fc:
                    98:64:79:57:86:9a:f1:84:29:e3:ec:72:a4:61:bc:
                    7b:2d:f3:07:0b:28:e7:8c:b0:5f:1b:52:c3:2a:82:
                    b4:97:0e:bf:e3:49:8b:77:bc:5a:a6:9b:4c:0c:ad:
                    5c:c6:bf:51:b4:c2:57:62:ec:fa:a4:07:e6:9e:f0:
                    8d:54:19:fe:e4:8a:77:21:9e:cf:b1:d7:46:6b:71:
                    6b:60:10:c2:23:c8:bc:1d:83:de:6b:1d:43:f8:ef:
                    3e:10:0f:eb:8f:29:3b:94:95:28:34:f9:ef:e1:2c:
                    90:3e:06:1a:dd:7b:90:52:f5:8d:1a:fc:75:45:1a:
                    87:61:90:22:b6:db:e2:a3:9c:82:65:cd:b9:49:33:
                    ba:c4:39:d7:fa:fe:7e:f3:65:8e:c7:d7:2f:67:e6:
                    1e:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:3B:A4:DC:CC:12:9C:8C:06:DA:80:27:43:6F:ED:9C:2D:F0:59:5D
            X509v3 Authority Key Identifier:
                keyid:10:87:2C:EC:6B:BF:53:B1:A7:F6:84:D9:A6:61:A8:97:85:64:FE:7D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/DWP6wz7xressoSBcgXKqmQoAWFf2fr8K6hSkf1QGvL9z/0/10872CEC6BBF53B1A7F684D9A661A8978564FE7D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/10872CEC6BBF53B1A7F684D9A661A8978564FE7D.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/DWP6wz7xressoSBcgXKqmQoAWFf2fr8K6hSkf1QGvL9z/0/3230302e35332e36342e302f32322d3232203d3e20323731353034.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.53.64.0/22

    Signature Algorithm: sha256WithRSAEncryption
         9e:3a:de:bb:1b:d3:69:7c:4e:e7:f9:2d:2a:75:25:4a:f6:41:
         a9:fc:16:fb:d3:a4:8c:2c:be:33:b2:97:0c:e0:70:16:7e:a4:
         d8:b9:3c:5d:e6:42:70:c3:22:7d:25:23:5a:38:24:8f:66:b0:
         ba:b4:a0:40:e9:d7:49:15:2d:2a:0d:c4:bf:36:89:e8:f1:cd:
         3c:40:8e:b5:2c:9f:76:26:4c:48:86:ae:66:0f:d9:b5:65:52:
         b6:ce:3a:49:7f:46:85:2b:bf:d2:b1:e7:bf:79:fb:21:99:9a:
         0c:32:f0:64:18:1c:b5:a4:d6:09:64:52:f8:53:dc:f2:3d:61:
         74:91:2c:fb:3c:b5:c2:8a:52:eb:e4:c0:ce:c6:f8:0a:7d:d9:
         70:08:a1:9a:e6:d8:1c:54:8b:06:27:ec:7a:ea:8c:64:e8:74:
         25:6b:3e:c4:c5:50:69:3b:d6:12:13:60:be:95:97:3e:da:7b:
         96:de:bc:95:50:69:e4:a0:84:61:38:f1:43:7d:69:66:f1:da:
         34:78:be:ba:fe:71:fb:0a:0c:91:d9:9b:6d:a8:bd:45:91:db:
         a1:51:6b:82:06:3d:ed:b9:c6:06:3f:d0:e5:9c:d0:ed:52:ac:
         ad:03:13:58:c1:55:d5:d6:b7:5e:6a:a2:fd:a7:c4:d4:27:b6:
         7b:1f:2a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:27 2024 by rpki-client on console-ams.rpki-client.org