Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa
File:                     323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa (raw, json)
Hash identifier:          OMh7JitXCBG26IRidR5oDpwFHudDX1qYCoFiZhzrhVo=
Subject key identifier:   19:DB:5D:0E:2B:3D:11:6B:78:06:6E:A6:3C:B6:A2:CA:EF:B8:0B:E3
Certificate issuer:       /CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
Certificate serial:       7B712BA6B3639C8549D45D1A78F21A9481BDA05C
Authority key identifier: C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa
Signing time:             Wed 03 Apr 2024 13:30:51 +0000
ROA not before:           Wed 03 Apr 2024 13:25:51 +0000
ROA not after:            Wed 02 Apr 2025 13:30:51 +0000
asID:                     268726
IP address blocks:        2804:59cc:c000::/34 maxlen: 34

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:71:2b:a6:b3:63:9c:85:49:d4:5d:1a:78:f2:1a:94:81:bd:a0:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
        Validity
            Not Before: Apr  3 13:25:51 2024 GMT
            Not After : Apr  2 13:30:51 2025 GMT
        Subject: CN=19DB5D0E2B3D116B78066EA63CB6A2CAEFB80BE3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:b3:29:2e:89:49:26:32:f4:19:a8:41:dc:ed:
                    ee:53:5a:25:c4:57:df:ae:ac:15:0b:e4:d4:d9:57:
                    6f:ea:e3:51:09:00:70:84:32:22:54:b1:a7:67:e6:
                    01:7c:6a:11:e4:f4:4b:09:85:f7:af:60:fa:c4:21:
                    e0:d2:dc:d5:d3:99:40:54:72:b3:4e:5b:42:8e:b3:
                    56:2a:3e:c2:fa:a0:be:3a:f4:c0:07:8a:9e:ce:37:
                    19:55:9b:e8:df:cb:38:c4:17:51:d8:3b:f3:1e:06:
                    72:53:c9:f3:f3:5c:df:91:f8:30:b0:2b:3e:1c:63:
                    4f:96:6b:2c:d2:d8:1e:d3:02:63:10:27:59:29:48:
                    83:e2:11:1f:6d:9b:31:35:69:78:01:f8:78:5f:ec:
                    a1:83:18:fe:32:8f:19:66:20:81:00:a7:df:a2:a3:
                    e5:3c:12:1f:4b:8a:61:df:6b:3a:3a:c0:77:0b:4f:
                    12:d0:3e:e1:d3:9a:4b:aa:05:18:7a:bd:f3:5f:ae:
                    f6:5e:e6:ba:a3:5b:20:7f:f3:7a:21:67:c2:cb:b8:
                    97:17:6f:b8:50:78:9f:82:e9:d6:85:28:60:ec:b8:
                    aa:46:aa:28:0d:ea:87:3a:ef:8b:21:02:7e:c8:73:
                    0b:a7:61:3a:86:44:36:61:19:69:30:95:d5:8b:af:
                    17:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:DB:5D:0E:2B:3D:11:6B:78:06:6E:A6:3C:B6:A2:CA:EF:B8:0B:E3
            X509v3 Authority Key Identifier:
                keyid:C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:59cc:c000::/34

    Signature Algorithm: sha256WithRSAEncryption
         7a:aa:be:2a:36:70:50:40:66:93:c1:05:78:1f:49:b5:07:c8:
         32:c8:1d:88:7a:50:5f:a6:2f:ef:5a:fe:ed:52:79:43:59:d6:
         0f:f0:6b:b4:22:f3:00:6b:41:3f:86:f2:66:3a:8d:22:98:db:
         e0:41:22:68:30:15:5a:7d:61:0a:07:ba:db:27:9f:1f:45:f4:
         a6:de:5d:1b:4c:cc:b8:75:c3:74:81:9e:47:7c:d4:cd:5c:b5:
         63:1a:31:c0:32:e5:dc:04:14:e1:4c:7d:4c:ff:50:f5:56:d1:
         e7:41:44:3a:cf:b0:a1:0b:6b:1a:19:7c:13:a1:a1:a3:61:14:
         51:9f:b6:c9:34:ac:2e:df:f3:66:32:5e:d2:2b:a3:ce:db:3f:
         27:3b:c8:57:0d:0e:8b:a8:74:f2:59:cf:0e:15:e7:eb:ca:15:
         f5:99:93:85:34:ed:ec:ad:52:01:e6:9e:13:0c:2d:f4:6d:ca:
         3d:74:fe:a5:0a:19:04:c6:29:5c:c3:6c:e3:79:a0:f3:c9:64:
         7e:5b:c8:9e:dc:8c:d2:35:e2:3e:38:a0:96:a8:f0:8b:fa:f2:
         1b:28:58:b7:a5:35:a5:52:97:b5:b5:43:88:8c:a6:da:69:39:
         be:c8:49:2b:8a:9c:9d:66:04:55:b3:7f:45:1b:2d:79:21:c2:
         2d:b2:dc:20
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUe3ErprNjnIVJ1F0aePIalIG9oFwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzZBMjUyMUUxMzUyMURGQTUyMEM0MEVDODVCRjcxNTUw
NTBDQTMzQjAeFw0yNDA0MDMxMzI1NTFaFw0yNTA0MDIxMzMwNTFaMDMxMTAvBgNV
BAMTKDE5REI1RDBFMkIzRDExNkI3ODA2NkVBNjNDQjZBMkNBRUZCODBCRTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsykuiUkmMvQZqEHc7e5TWiXE
V9+urBUL5NTZV2/q41EJAHCEMiJUsadn5gF8ahHk9EsJhfevYPrEIeDS3NXTmUBU
crNOW0KOs1YqPsL6oL469MAHip7ONxlVm+jfyzjEF1HYO/MeBnJTyfPzXN+R+DCw
Kz4cY0+WayzS2B7TAmMQJ1kpSIPiER9tmzE1aXgB+Hhf7KGDGP4yjxlmIIEAp9+i
o+U8Eh9LimHfazo6wHcLTxLQPuHTmkuqBRh6vfNfrvZe5rqjWyB/83ohZ8LLuJcX
b7hQeJ+C6daFKGDsuKpGqigN6oc674shAn7IcwunYTqGRDZhGWkwldWLrxdzAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUGdtdDis9EWt4Bm6mPLaiyu+4C+MwHwYDVR0j
BBgwFoAUxqJSHhNSHfpSDEDshb9xVQUMozswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRVh0YmRYZWVSemtmRzloa05GZDJ2cWRkUXdUNFJkdm9Gd203WnZIdGF1
MkEvMC9DNkEyNTIxRTEzNTIxREZBNTIwQzQwRUM4NUJGNzE1NTA1MENBMzNCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0M2QTI1MjFFMTM1MjFERkE1
MjBDNDBFQzg1QkY3MTU1MDUwQ0EzM0IuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0VYdGJkWGVlUnprZkc5aGtORmQydnFkZFF3VDRSZHZvRndtN1p2SHRhdTJBLzAv
MzIzODMwMzQzYTM1Mzk2MzYzM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk
M2UyMDMyMzYzODM3MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEWczAMA0GCSqGSIb3DQEBCwUA
A4IBAQB6qr4qNnBQQGaTwQV4H0m1B8gyyB2IelBfpi/vWv7tUnlDWdYP8Gu0IvMA
a0E/hvJmOo0imNvgQSJoMBVafWEKB7rbJ58fRfSm3l0bTMy4dcN0gZ5HfNTNXLVj
GjHAMuXcBBThTH1M/1D1VtHnQUQ6z7ChC2saGXwToaGjYRRRn7bJNKwu3/NmMl7S
K6PO2z8nO8hXDQ6LqHTyWc8OFefryhX1mZOFNO3srVIB5p4TDC30bco9dP6lChkE
xilcw2zjeaDzyWR+W8ie3IzSNeI+OKCWqPCL+vIbKFi3pTWlUpe1tUOIjKbaaTm+
yEkripydZgRVs39FGy15IcItstwg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:47 2024 by rpki-client on console-ams.rpki-client.org