Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32322d3232203d3e20323633323536.roa
File:                     3137302e3234372e3230302e302f32322d3232203d3e20323633323536.roa (raw, json)
Hash identifier:          dc5yA08LbGRG121yZ85kHVr7QlJIiHtv6DJIiPk9kRw=
Subject key identifier:   01:A8:3D:36:E8:15:A7:A2:3B:4D:16:CC:C7:30:87:41:CD:66:41:1E
Certificate issuer:       /CN=0156B956215AE4C7F951D9FABA7689B0C1830680
Certificate serial:       1315702E61752E376472A4D98BE7036EC3959414
Authority key identifier: 01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32322d3232203d3e20323633323536.roa
Signing time:             Fri 23 May 2025 16:53:05 +0000
ROA not before:           Fri 23 May 2025 16:48:05 +0000
ROA not after:            Fri 22 May 2026 16:53:05 +0000
asID:                     263256
IP address blocks:        170.247.200.0/22 maxlen: 22
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:15:70:2e:61:75:2e:37:64:72:a4:d9:8b:e7:03:6e:c3:95:94:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0156B956215AE4C7F951D9FABA7689B0C1830680
        Validity
            Not Before: May 23 16:48:05 2025 GMT
            Not After : May 22 16:53:05 2026 GMT
        Subject: CN=01A83D36E815A7A23B4D16CCC7308741CD66411E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:59:83:04:93:c3:ef:f2:78:f1:11:ac:59:a1:
                    41:8c:ee:32:b0:7d:c8:09:d9:5c:78:19:21:ad:9b:
                    d5:96:4b:4a:d0:03:c0:22:35:1e:39:46:d8:c5:42:
                    64:6f:12:7e:72:4c:22:d5:35:69:f0:39:22:fd:63:
                    be:54:0d:a2:c9:a8:93:a8:63:e6:1a:80:c0:2c:2f:
                    8c:1b:08:b0:c5:8f:e9:9b:73:99:db:fc:39:e6:af:
                    30:3c:38:8b:54:6a:b9:32:1a:08:21:7c:1e:ce:df:
                    1d:65:4b:13:ed:bf:64:9d:57:9c:fc:58:3e:30:15:
                    0e:21:3d:ea:98:5c:60:02:fd:db:5a:04:a7:f1:ca:
                    4b:a9:98:49:85:30:cc:4b:8e:13:e7:63:f4:00:aa:
                    4d:02:a6:71:6e:77:8c:b8:ab:e0:58:66:32:0c:71:
                    f0:f1:76:63:ad:fb:d3:10:72:65:84:9f:e9:f0:ae:
                    7e:56:fe:6b:5f:6e:40:c5:7f:24:1b:14:29:bd:a1:
                    6f:88:a1:be:34:cb:09:f7:da:b8:ef:e0:78:7e:7e:
                    0b:4f:08:30:7f:c1:5a:37:22:ae:c4:a9:3f:21:f3:
                    8f:68:b1:da:ff:69:f0:7f:bf:18:cf:30:b0:39:d7:
                    c3:b8:74:27:5f:26:95:6e:09:31:ca:a6:5c:10:47:
                    b0:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:A8:3D:36:E8:15:A7:A2:3B:4D:16:CC:C7:30:87:41:CD:66:41:1E
            X509v3 Authority Key Identifier:
                keyid:01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/0156B956215AE4C7F951D9FABA7689B0C1830680.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32322d3232203d3e20323633323536.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.247.200.0/22

    Signature Algorithm: sha256WithRSAEncryption
         23:da:5f:1c:a6:54:3c:a7:f9:ef:23:4c:08:f6:86:57:6e:81:
         70:7d:c5:98:2a:c9:8a:99:75:3e:36:bc:17:95:b5:a6:7f:bb:
         b0:d6:2e:f5:b6:17:6c:d1:f4:bd:6e:6f:c5:91:15:59:fd:75:
         ee:7b:e4:d0:8b:7f:f6:82:dd:fa:51:1f:3a:bf:f3:cd:7a:51:
         ba:cc:13:a6:e8:4e:e2:92:43:28:18:92:87:b8:f7:8d:fe:57:
         14:7b:c2:35:a0:c2:f0:bb:ac:e9:af:6f:63:83:f9:dd:93:ce:
         a6:3a:ef:24:6b:f7:62:66:77:8c:20:b3:c4:a0:5b:99:31:71:
         8b:57:87:c1:49:f8:71:a4:c8:7b:91:75:a0:49:3b:fc:65:76:
         07:da:1e:cc:61:9b:ab:a3:60:4a:7a:2c:e9:90:d3:6b:d5:64:
         2d:22:95:d7:34:a7:e4:17:44:a3:c3:04:0f:a6:63:c3:93:9e:
         59:4e:f7:3c:67:f7:31:ac:57:e9:63:e0:58:43:0d:1e:41:66:
         3b:35:b0:65:57:d4:8c:5f:24:e1:da:b2:90:55:47:2d:6f:79:
         48:70:27:cf:1d:fa:a9:7c:94:02:5a:2c:96:0a:83:9e:8d:b6:
         fd:6a:23:44:35:92:4e:ee:52:a5:ac:6e:cc:52:ec:17:26:3e:
         e7:29:fa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 02:24:40 2025 by rpki-client