Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138352e302f32342d3234203d3e20323638373236.roa
File:                     34352e3137312e3138352e302f32342d3234203d3e20323638373236.roa (raw, json)
Hash identifier:          uaFfEFuuhhmTmX654nybH9UGvtMllSksJWnulhCUl6s=
Subject key identifier:   4F:B6:5F:12:63:78:6A:AD:30:B5:04:16:B0:38:F7:48:B0:E7:99:F5
Certificate issuer:       /CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
Certificate serial:       1B139D461728CF5A58C14E563126877846B9E177
Authority key identifier: C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138352e302f32342d3234203d3e20323638373236.roa
Signing time:             Wed 03 Apr 2024 13:30:53 +0000
ROA not before:           Wed 03 Apr 2024 13:25:53 +0000
ROA not after:            Wed 02 Apr 2025 13:30:53 +0000
asID:                     268726
IP address blocks:        45.171.185.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:13:9d:46:17:28:cf:5a:58:c1:4e:56:31:26:87:78:46:b9:e1:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
        Validity
            Not Before: Apr  3 13:25:53 2024 GMT
            Not After : Apr  2 13:30:53 2025 GMT
        Subject: CN=4FB65F1263786AAD30B50416B038F748B0E799F5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:a5:64:52:ec:23:45:08:4b:fe:13:28:aa:81:
                    f8:85:02:cc:64:b2:f8:89:f9:f9:c3:1c:05:5b:7c:
                    97:b2:2a:40:6f:a7:cf:0c:4c:af:55:a0:aa:9b:8c:
                    f9:15:54:e5:78:6b:62:b7:4f:40:63:12:e6:c7:da:
                    94:5c:6c:90:40:be:a0:cc:3c:82:9c:7c:31:2a:cc:
                    06:f2:fe:b3:cb:54:49:4a:b8:02:44:87:9a:ad:e7:
                    aa:47:6d:8d:4f:df:7e:60:94:81:95:b4:0f:0a:ea:
                    3d:f7:dc:4b:b0:b6:af:f6:f1:35:49:91:ab:ab:1c:
                    17:4a:41:c9:77:54:5b:68:2a:f1:00:78:40:c4:95:
                    cd:0f:b0:f9:be:c0:70:85:b9:e3:a4:b8:1a:0c:78:
                    25:18:9a:3c:22:c9:64:e5:a9:f1:0d:37:f5:10:ce:
                    68:59:12:59:5b:96:c9:dc:15:5d:8c:8b:8c:94:d4:
                    01:ad:12:ff:89:64:4a:82:14:1d:10:fb:c0:23:87:
                    6f:a2:2d:a9:20:35:da:43:e7:dd:0c:59:a1:98:34:
                    78:3c:1d:85:31:ac:a6:7d:21:3c:21:48:ff:31:1b:
                    b1:56:81:7b:da:c4:d5:d4:25:94:a8:42:7e:b7:13:
                    46:c2:46:ca:ab:b5:2a:6b:6c:0b:2a:07:00:6a:10:
                    89:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:B6:5F:12:63:78:6A:AD:30:B5:04:16:B0:38:F7:48:B0:E7:99:F5
            X509v3 Authority Key Identifier:
                keyid:C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138352e302f32342d3234203d3e20323638373236.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.171.185.0/24

    Signature Algorithm: sha256WithRSAEncryption
         21:2d:13:ba:de:9b:a7:2c:65:08:be:ed:12:a8:fe:55:fc:bf:
         dc:23:03:df:07:ef:15:a0:26:5d:03:a2:d5:b1:d1:12:6b:17:
         5f:29:91:c8:1f:b5:5b:38:c2:38:89:1e:30:eb:19:af:d8:2e:
         d0:ab:d4:4f:40:9f:d0:7e:38:f5:d1:44:81:64:ee:4e:76:e1:
         be:fa:92:cd:e8:0b:42:ec:c7:9d:6d:58:4f:50:1c:98:ad:d0:
         fa:60:1f:69:72:07:46:78:6b:0d:01:51:be:1a:da:22:af:61:
         8c:a9:2e:80:9c:37:b9:ba:a0:36:ca:ff:fd:ba:1c:a2:8f:d6:
         f2:e4:cf:32:d1:e7:f1:e5:d4:20:4c:3d:09:bb:72:58:2c:65:
         d2:fc:b5:5a:7c:2c:2d:c7:8e:31:93:fc:66:57:cb:f1:03:9f:
         79:03:47:9a:15:bb:3d:2d:37:fa:44:3a:30:2d:70:5d:d5:4d:
         ae:9e:07:7b:ab:54:ca:c1:46:3b:7f:d7:37:90:6d:61:4e:77:
         b5:58:a7:66:22:8d:04:58:fb:a4:cb:87:79:5a:bb:f8:ab:67:
         63:65:5b:ee:8c:7a:94:f7:d3:46:29:fc:dd:a3:b3:a6:7b:5f:
         8c:fc:c6:44:99:83:90:d5:a7:21:c1:fc:f1:2b:30:ed:46:3a:
         44:d6:aa:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:39 2024 by rpki-client on console-fra.rpki-client.org