Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa
File:                     34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa (raw, json)
Hash identifier:          nWQluWFN3pliS/fvNFYp2UJ9UHu1+BY3y6xtnjP0ytk=
Subject key identifier:   D7:F7:84:38:82:8D:60:8A:C0:D6:78:0A:EB:30:F0:4A:3B:6E:67:F7
Certificate issuer:       /CN=FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB
Certificate serial:       2E0ECE4034E571214AA2AAE22E7E11BE20F5ED7F
Authority key identifier: FA:32:1B:BC:67:AA:82:64:80:7B:FB:31:73:CC:E7:C3:CE:5B:96:AB
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa
Signing time:             Tue 06 Feb 2024 12:05:59 +0000
ROA not before:           Tue 06 Feb 2024 12:00:59 +0000
ROA not after:            Tue 04 Feb 2025 12:05:59 +0000
asID:                     268057
IP address blocks:        45.168.109.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:0e:ce:40:34:e5:71:21:4a:a2:aa:e2:2e:7e:11:be:20:f5:ed:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB
        Validity
            Not Before: Feb  6 12:00:59 2024 GMT
            Not After : Feb  4 12:05:59 2025 GMT
        Subject: CN=D7F78438828D608AC0D6780AEB30F04A3B6E67F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:a4:cb:c8:04:1e:08:d9:a4:64:90:0c:d7:35:
                    26:b9:2b:17:e2:f7:7a:cd:ec:15:d2:ce:32:44:a0:
                    e7:08:86:0c:e8:52:b2:32:52:0b:d7:08:c4:76:12:
                    9c:7b:59:5b:77:55:9d:0a:00:2c:dc:0c:37:4b:19:
                    69:64:5d:7e:34:2f:41:0c:fe:74:88:63:ef:6f:ec:
                    29:f5:a1:0d:c2:df:06:6b:18:c4:d8:1a:a7:56:da:
                    d6:9d:72:7e:86:4f:36:b9:98:a8:1a:51:e5:1c:a2:
                    5f:1f:ef:df:ce:63:89:0f:25:f3:6f:a9:50:3b:26:
                    e2:46:c6:33:09:0c:f4:17:81:fc:2f:e7:19:83:e7:
                    48:eb:21:c1:43:34:a5:8d:e4:a0:9a:3c:d7:f9:af:
                    94:19:71:13:9f:cd:5e:10:1b:e5:61:78:f7:4e:ac:
                    b8:4b:ae:96:d3:bd:40:aa:79:81:f6:3e:c0:13:5c:
                    3b:b7:50:b2:99:b4:82:99:90:3b:63:e5:50:bd:23:
                    9d:a3:78:f6:61:e5:6f:e2:05:10:03:e1:cf:17:0c:
                    83:11:ad:c2:90:66:d2:af:5f:b8:05:9c:44:ba:46:
                    8c:05:05:08:60:c8:4e:d7:90:0e:69:5d:5d:05:30:
                    9a:92:ab:bc:60:38:fd:af:d9:3b:7a:34:f5:99:60:
                    0b:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:F7:84:38:82:8D:60:8A:C0:D6:78:0A:EB:30:F0:4A:3B:6E:67:F7
            X509v3 Authority Key Identifier:
                keyid:FA:32:1B:BC:67:AA:82:64:80:7B:FB:31:73:CC:E7:C3:CE:5B:96:AB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.168.109.0/24

    Signature Algorithm: sha256WithRSAEncryption
         91:6c:35:28:4c:5b:12:d7:2e:76:4e:e9:07:d4:d0:bf:1e:07:
         b4:22:82:dd:36:91:bd:1e:eb:7d:9f:f0:78:3b:6c:08:5b:5a:
         52:4e:10:9c:a1:40:73:a7:41:61:52:b9:e7:c6:fe:b1:da:ab:
         e7:09:74:e6:2e:b6:09:c6:4b:16:dc:98:3b:64:9c:a3:35:de:
         cc:88:8c:b4:5f:2c:57:a2:74:16:a6:72:7b:f6:8f:9a:6d:32:
         7d:36:4d:bf:dd:78:29:8e:8f:6a:4f:00:79:1c:d8:c8:51:b3:
         a4:a5:19:7f:9b:c3:69:03:8f:f8:ac:c5:f1:86:22:d9:d0:e9:
         2f:49:4f:21:6b:6c:6c:53:67:3a:4f:54:de:0d:83:6e:f9:79:
         63:30:fc:d2:1a:91:6f:3f:20:14:2b:a1:2e:2a:44:ff:10:38:
         e3:ef:79:33:4a:4e:1e:9e:24:3f:6a:2a:b2:f5:57:06:5d:f0:
         76:b5:a8:08:43:1a:bc:56:94:50:ce:22:37:a4:ee:85:df:cf:
         c4:f6:26:8f:83:58:36:b8:09:d9:79:c9:ab:52:b4:2c:06:d2:
         3b:21:ab:c5:57:37:a3:25:cc:a2:40:f4:8d:82:ce:c0:69:67:
         5e:23:cd:0c:6b:80:05:41:9c:bd:96:e5:c1:f6:69:92:bc:7d:
         05:78:f6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:52 2024 by rpki-client on console-ams.rpki-client.org