Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EXZwJLeBDNAyQuGhnTvSckqSmq79QuXgB463RoNymcv1/0/3137302e302e3231362e302f32322d3232203d3e20323635313431.roa
File:                     3137302e302e3231362e302f32322d3232203d3e20323635313431.roa (raw, json)
Hash identifier:          1Ork/so3mRmaqFPQIY33OKOcuAsc16P7cSvSd1GcWkw=
Subject key identifier:   5F:8F:8F:15:1E:50:F5:88:4B:07:57:AC:46:9B:34:98:79:28:14:FF
Certificate issuer:       /CN=C50C0F5F7C229DF4C9B9D3F1E6485770288CA544
Certificate serial:       7F222CAFD7A23B53160304D34566AB0061602586
Authority key identifier: C5:0C:0F:5F:7C:22:9D:F4:C9:B9:D3:F1:E6:48:57:70:28:8C:A5:44
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C50C0F5F7C229DF4C9B9D3F1E6485770288CA544.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EXZwJLeBDNAyQuGhnTvSckqSmq79QuXgB463RoNymcv1/0/3137302e302e3231362e302f32322d3232203d3e20323635313431.roa
Signing time:             Thu 04 Jan 2024 15:21:53 +0000
ROA not before:           Thu 04 Jan 2024 15:16:53 +0000
ROA not after:            Thu 02 Jan 2025 15:21:53 +0000
asID:                     265141
IP address blocks:        170.0.216.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:22:2c:af:d7:a2:3b:53:16:03:04:d3:45:66:ab:00:61:60:25:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C50C0F5F7C229DF4C9B9D3F1E6485770288CA544
        Validity
            Not Before: Jan  4 15:16:53 2024 GMT
            Not After : Jan  2 15:21:53 2025 GMT
        Subject: CN=5F8F8F151E50F5884B0757AC469B3498792814FF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:26:cf:55:18:de:65:ea:09:ee:f6:47:89:52:
                    72:05:35:a3:05:f0:09:d8:42:b8:26:96:29:7f:2a:
                    75:c0:f9:d8:a7:ac:fe:3e:ac:5b:70:ed:c8:50:cc:
                    54:38:d6:89:08:39:51:9b:32:ed:c8:53:8f:29:47:
                    ab:d9:c2:b9:4e:72:a5:1f:86:84:e9:d3:f6:da:01:
                    6c:d0:1c:97:9b:d1:da:a5:74:e1:a9:9a:6f:14:18:
                    de:a7:84:dc:5d:de:fc:34:84:4e:59:46:5a:de:30:
                    10:82:06:54:39:19:e1:31:f0:d1:5a:5f:61:69:8f:
                    95:44:d0:50:fc:f6:18:cf:fd:da:73:91:a5:36:a8:
                    27:82:86:29:39:b4:b1:6a:aa:c3:06:18:6e:3d:17:
                    a9:d8:50:de:5c:07:6b:e2:6e:9b:7e:87:35:d1:96:
                    91:7b:d4:04:cf:40:33:8b:89:29:8b:92:a6:64:6a:
                    a6:09:a7:63:2e:ec:c3:83:60:9e:47:2e:f3:3e:bd:
                    b3:25:52:fe:fc:d4:66:20:0d:4d:04:11:54:c9:72:
                    2c:ec:55:ab:b8:3e:55:11:3b:aa:51:5f:0d:35:e3:
                    0f:a0:a8:7e:f7:da:26:46:6a:ca:33:c4:cd:e6:73:
                    95:93:83:c0:7c:da:ab:fe:b0:8a:b7:75:43:76:6e:
                    31:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:8F:8F:15:1E:50:F5:88:4B:07:57:AC:46:9B:34:98:79:28:14:FF
            X509v3 Authority Key Identifier:
                keyid:C5:0C:0F:5F:7C:22:9D:F4:C9:B9:D3:F1:E6:48:57:70:28:8C:A5:44

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EXZwJLeBDNAyQuGhnTvSckqSmq79QuXgB463RoNymcv1/0/C50C0F5F7C229DF4C9B9D3F1E6485770288CA544.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C50C0F5F7C229DF4C9B9D3F1E6485770288CA544.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EXZwJLeBDNAyQuGhnTvSckqSmq79QuXgB463RoNymcv1/0/3137302e302e3231362e302f32322d3232203d3e20323635313431.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.0.216.0/22

    Signature Algorithm: sha256WithRSAEncryption
         50:59:0a:d0:08:da:87:16:e0:a1:39:25:0f:0a:0d:b3:b7:99:
         5c:a6:23:14:1a:c1:6b:27:4e:75:1a:eb:ae:a2:c4:6f:0c:df:
         ae:a5:c4:e3:ee:2f:bf:5f:0d:dd:f1:61:83:1b:3c:7e:07:66:
         82:a5:06:da:94:ba:51:1a:cc:c0:49:1c:54:34:32:2d:84:be:
         0a:26:56:67:eb:2c:fc:04:30:fd:7f:b9:08:af:23:d3:5f:7e:
         5a:0f:70:42:82:64:bd:63:56:16:fe:98:33:8f:aa:bf:14:f3:
         30:5c:10:92:e3:8e:ad:e3:fd:91:7b:51:9f:5e:0e:b9:1a:ea:
         4a:17:bd:16:f9:8e:07:7b:d7:30:14:9e:9f:2d:99:65:01:90:
         c8:cb:e2:46:00:61:b8:55:17:32:6f:fa:f5:38:7a:7d:ee:a5:
         d2:d7:60:86:16:5b:f8:45:29:75:21:51:76:43:c7:03:b0:3a:
         cd:72:e9:5c:ea:18:1d:4a:77:6d:64:e1:bb:1b:8d:24:17:fe:
         73:87:a3:65:64:40:1d:ff:d7:20:e1:66:42:c0:4f:d6:69:ad:
         94:fb:dc:be:f3:1f:84:d4:cd:31:55:a4:c2:f5:48:99:d3:7d:
         a8:32:3c:94:68:cd:3a:2b:45:89:d6:48:37:14:8d:f9:8c:73:
         65:5b:35:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:39 2024 by rpki-client on console-fra.rpki-client.org