Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138372e302f32342d3234203d3e20323638373236.roa
File:                     34352e3137312e3138372e302f32342d3234203d3e20323638373236.roa (raw, json)
Hash identifier:          SuNCmTwd2mrKILIQV7xZV4nPnrDpkGlZANmt2/tLocc=
Subject key identifier:   3D:1E:5E:22:2B:DB:7A:94:61:0D:56:66:C9:10:46:2D:F7:F3:CE:59
Certificate issuer:       /CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
Certificate serial:       1466C627FEE5678AEED1EDAE29D6E53B71D3D36F
Authority key identifier: C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138372e302f32342d3234203d3e20323638373236.roa
Signing time:             Wed 03 Apr 2024 13:30:53 +0000
ROA not before:           Wed 03 Apr 2024 13:25:53 +0000
ROA not after:            Wed 02 Apr 2025 13:30:53 +0000
asID:                     268726
IP address blocks:        45.171.187.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:66:c6:27:fe:e5:67:8a:ee:d1:ed:ae:29:d6:e5:3b:71:d3:d3:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C6A2521E13521DFA520C40EC85BF7155050CA33B
        Validity
            Not Before: Apr  3 13:25:53 2024 GMT
            Not After : Apr  2 13:30:53 2025 GMT
        Subject: CN=3D1E5E222BDB7A94610D5666C910462DF7F3CE59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:4b:d7:ce:4a:09:ab:51:24:3a:97:f9:74:79:
                    29:e3:fd:57:ef:3f:b4:91:1f:e5:69:64:4c:70:52:
                    df:a5:0f:02:20:8a:d3:6d:31:30:53:8e:c1:6a:f2:
                    da:8d:20:df:28:29:0a:b7:7f:a7:7b:ef:c9:5c:35:
                    59:ac:e3:71:48:6e:f5:77:d6:6c:d2:8f:39:ba:c4:
                    c9:2f:61:5a:0a:82:06:fb:39:8c:12:ee:20:a0:56:
                    79:6c:85:bc:f3:f5:7d:2a:4e:8c:b2:e9:06:4a:81:
                    f8:2c:ab:05:fd:66:29:11:93:f3:4f:35:16:46:a2:
                    24:f0:18:89:fd:a0:30:fc:3e:9e:40:13:f9:aa:16:
                    c9:48:87:0d:3c:dc:f6:26:98:42:07:78:24:d3:a5:
                    2e:f5:dd:18:05:a0:e1:1d:52:02:e7:4d:b4:f1:8a:
                    2d:4c:8e:4a:fe:a6:94:e8:d1:57:df:f1:02:32:f7:
                    7c:ce:ef:95:d1:74:e1:cf:28:cc:11:65:e4:c9:94:
                    12:e0:cb:5e:7a:11:ac:d9:2b:bf:62:b4:c1:5a:ee:
                    34:39:3d:d0:5d:e5:39:e2:e1:fe:86:15:b5:a4:f7:
                    46:8e:3e:a7:94:5a:bc:ed:84:8b:cb:73:03:c9:90:
                    fc:21:92:4f:22:96:0a:70:02:79:83:a0:c0:6e:6e:
                    f9:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:1E:5E:22:2B:DB:7A:94:61:0D:56:66:C9:10:46:2D:F7:F3:CE:59
            X509v3 Authority Key Identifier:
                keyid:C6:A2:52:1E:13:52:1D:FA:52:0C:40:EC:85:BF:71:55:05:0C:A3:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6A2521E13521DFA520C40EC85BF7155050CA33B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/34352e3137312e3138372e302f32342d3234203d3e20323638373236.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.171.187.0/24

    Signature Algorithm: sha256WithRSAEncryption
         03:f3:21:84:0a:bc:ba:06:16:88:a6:3e:90:fc:a7:2b:69:87:
         9a:aa:bf:f5:21:bb:9a:28:d1:6c:fe:99:5a:93:25:7f:44:8a:
         fa:ac:e5:b7:92:10:ff:9a:dc:8f:0b:85:df:47:30:94:3f:0d:
         e6:b7:40:5d:52:9e:5c:ce:d5:d4:b0:63:45:bc:b1:5f:e1:02:
         7b:f6:56:67:4f:ed:9e:08:25:f8:cf:09:6f:e9:4a:1d:e2:44:
         5d:af:a2:34:65:d4:e8:c7:c2:db:ad:41:47:92:e3:a2:4e:28:
         d6:27:97:eb:93:bc:09:a4:76:6e:71:9e:92:8b:e4:ea:8b:cc:
         c6:fa:d7:1b:4f:b8:ea:7a:90:60:b9:d7:f3:fe:e0:97:32:8a:
         23:d6:e6:5e:a7:53:6a:d9:08:a3:7f:9a:98:6c:3b:47:0b:10:
         ad:79:1e:09:7b:13:77:a9:7e:2d:9d:2c:f5:86:32:1c:f9:8b:
         f1:c6:74:d1:31:cf:58:92:56:5a:21:d4:db:b3:50:10:93:c8:
         c0:98:e6:f3:83:60:7d:45:1e:92:97:26:cb:b3:53:92:e0:1b:
         31:07:c8:ac:99:48:01:b7:ae:5c:f1:12:40:af:77:82:ab:2a:
         9d:02:b5:9e:61:8a:40:a0:17:90:12:41:41:c1:94:1e:b6:d3:
         6e:38:97:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:47 2024 by rpki-client on console-ams.rpki-client.org