Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32342d3234203d3e20323633323536.roa
File:                     3137302e3234372e3230302e302f32342d3234203d3e20323633323536.roa (raw, json)
Hash identifier:          qeUpU99MYozfpABO+9DCWP5KETzv6zDB1iByaL6COnw=
Subject key identifier:   E5:EA:77:61:3B:87:20:1D:9F:54:51:74:FA:D9:54:EC:B0:94:77:DB
Certificate issuer:       /CN=0156B956215AE4C7F951D9FABA7689B0C1830680
Certificate serial:       6FADD7066139A85F5B53A65D944C486ADBA523A2
Authority key identifier: 01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32342d3234203d3e20323633323536.roa
Signing time:             Fri 23 May 2025 16:53:06 +0000
ROA not before:           Fri 23 May 2025 16:48:06 +0000
ROA not after:            Fri 22 May 2026 16:53:06 +0000
asID:                     263256
IP address blocks:        170.247.200.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6f:ad:d7:06:61:39:a8:5f:5b:53:a6:5d:94:4c:48:6a:db:a5:23:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0156B956215AE4C7F951D9FABA7689B0C1830680
        Validity
            Not Before: May 23 16:48:06 2025 GMT
            Not After : May 22 16:53:06 2026 GMT
        Subject: CN=E5EA77613B87201D9F545174FAD954ECB09477DB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:de:3d:94:5d:81:28:2e:8d:e2:07:e0:0f:66:
                    66:5b:89:0e:15:c4:91:d5:2c:47:0e:4e:a1:90:a8:
                    a5:12:35:8c:1f:ba:7b:a9:d5:2a:fc:35:29:6b:24:
                    21:c3:ec:9a:74:45:03:3a:01:79:22:30:75:ce:a6:
                    1f:f6:42:00:4b:99:ab:92:9f:8f:e9:61:c9:5c:6b:
                    36:c2:f9:a3:44:5a:b4:51:ea:5c:40:6c:87:27:31:
                    cc:3c:87:bf:0b:47:17:4c:57:87:d5:b6:3d:1d:be:
                    5c:c0:26:ff:96:67:d6:20:89:ad:57:46:cd:59:0c:
                    61:77:3c:16:a0:26:e8:7b:a1:ba:bb:f5:1e:32:5b:
                    5e:45:6e:02:28:fd:bc:36:a4:7f:c5:df:50:e3:d3:
                    9f:06:08:63:32:b9:91:ff:7b:dc:e7:d7:f2:26:e4:
                    86:4a:aa:3e:e8:e0:33:cf:2a:7f:dd:ee:1b:33:d7:
                    2f:14:a4:54:71:a2:eb:23:61:13:4f:e4:33:9a:ff:
                    22:e9:8c:cd:6d:2f:ce:69:85:8d:d6:97:a5:52:5e:
                    e5:25:40:45:ec:dd:7b:51:5f:1b:72:e3:f5:f8:e3:
                    88:9c:e0:b4:3a:1b:2b:e7:cf:60:99:3b:70:b9:d8:
                    70:1b:97:0b:3b:6b:c2:ea:81:a3:31:dd:a1:3a:e7:
                    72:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:EA:77:61:3B:87:20:1D:9F:54:51:74:FA:D9:54:EC:B0:94:77:DB
            X509v3 Authority Key Identifier:
                keyid:01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/0156B956215AE4C7F951D9FABA7689B0C1830680.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3137302e3234372e3230302e302f32342d3234203d3e20323633323536.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.247.200.0/24

    Signature Algorithm: sha256WithRSAEncryption
         55:e4:e8:54:04:77:3d:82:1e:20:7c:2f:a5:e5:24:21:96:a7:
         4a:7e:3d:b2:ff:62:77:03:7f:e7:c4:ce:1d:8e:c4:32:da:15:
         03:e4:cf:0d:9c:19:24:e1:cd:af:a7:fe:1b:e7:c4:6e:8a:72:
         f3:14:c3:c9:41:97:2b:03:a1:42:53:ee:0a:47:ad:97:01:f8:
         de:9b:f7:5b:81:28:e6:5d:fa:7c:40:22:ea:d1:d9:22:d0:74:
         1b:5d:82:6b:38:a4:1a:5d:3a:2a:b9:32:3e:d1:5e:43:79:13:
         b1:e6:7b:67:7b:eb:79:5f:7d:94:cd:04:ed:da:76:80:39:b5:
         5a:f0:ad:6a:5f:af:24:5d:de:63:92:c9:cd:83:3b:c2:38:6b:
         33:95:46:33:53:68:33:23:95:1f:1a:d9:bb:33:2d:00:da:48:
         e9:08:6c:d1:73:3f:aa:c1:17:29:1f:1d:33:93:dc:d9:c1:f5:
         a7:2b:c4:d2:58:35:bc:c7:ae:c2:0d:1b:57:6f:e4:a7:8e:f7:
         3d:4a:f1:ee:ce:63:c4:14:fb:18:f6:af:8c:10:2d:1c:5b:e5:
         e3:01:86:fe:6f:03:c6:c6:64:68:9f:cb:1d:bb:ac:13:6f:e5:
         48:15:0a:82:d8:7e:e5:b3:81:10:4b:17:a4:db:14:97:90:96:
         d1:01:5d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 06:42:30 2025 by rpki-client