Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e31302e302f32332d3233203d3e20323633323536.roa
File:                     3139382e35382e31302e302f32332d3233203d3e20323633323536.roa (raw, json)
Hash identifier:          RFKUBBZErXr6hRv4Tly+Tgg5TEqX3D1OC16rKgg7svE=
Subject key identifier:   61:7C:01:17:DC:D9:C1:BB:7B:F4:AF:CC:70:8F:78:ED:CD:50:A4:BF
Certificate issuer:       /CN=0156B956215AE4C7F951D9FABA7689B0C1830680
Certificate serial:       6D58549CB78A7D6C8CD1B3D4BF016381288BF4A5
Authority key identifier: 01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e31302e302f32332d3233203d3e20323633323536.roa
Signing time:             Fri 23 May 2025 16:53:06 +0000
ROA not before:           Fri 23 May 2025 16:48:06 +0000
ROA not after:            Fri 22 May 2026 16:53:06 +0000
asID:                     263256
IP address blocks:        198.58.10.0/23 maxlen: 23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6d:58:54:9c:b7:8a:7d:6c:8c:d1:b3:d4:bf:01:63:81:28:8b:f4:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0156B956215AE4C7F951D9FABA7689B0C1830680
        Validity
            Not Before: May 23 16:48:06 2025 GMT
            Not After : May 22 16:53:06 2026 GMT
        Subject: CN=617C0117DCD9C1BB7BF4AFCC708F78EDCD50A4BF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:0f:c5:c9:4d:22:47:92:ef:03:81:d6:2e:f8:
                    c8:0f:c8:72:ab:5b:80:fe:f6:19:08:bb:04:87:a6:
                    44:00:8f:b5:61:6e:0a:26:27:da:cb:81:2b:f8:8d:
                    b3:ce:c3:ab:18:90:fa:8c:77:7a:64:0e:30:e1:4d:
                    a7:20:d2:b9:00:c5:17:95:2d:eb:33:a9:c8:4d:ef:
                    26:ae:a4:1f:6e:f8:61:c0:6e:16:6d:93:40:f3:5d:
                    63:8f:13:17:4b:05:da:eb:e7:4f:cd:f5:74:0e:a7:
                    0d:8c:59:2d:b0:f2:ee:0f:57:30:19:6c:27:de:52:
                    ff:d9:45:f0:88:78:7d:eb:54:69:5f:3e:48:ed:f3:
                    5c:0b:af:9d:5d:16:16:b3:bb:96:65:cf:8f:b9:8d:
                    e9:9d:ca:39:d0:30:80:e7:86:d6:bb:a3:8c:d2:0a:
                    5a:30:dd:5d:9a:69:9d:24:95:d9:48:21:d8:b1:f2:
                    21:a1:a7:de:28:a2:35:bf:0b:cb:fa:46:30:99:43:
                    87:09:1c:28:63:12:12:f7:e8:c3:f9:37:89:28:d5:
                    6e:a7:40:d1:b3:b3:46:29:33:ab:09:d7:b5:95:e8:
                    5e:b0:11:5d:a4:1e:f9:ab:7d:34:b7:d9:26:b5:91:
                    11:f3:2a:2a:d0:24:f4:0d:57:f4:1a:97:d6:19:3c:
                    5f:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:7C:01:17:DC:D9:C1:BB:7B:F4:AF:CC:70:8F:78:ED:CD:50:A4:BF
            X509v3 Authority Key Identifier:
                keyid:01:56:B9:56:21:5A:E4:C7:F9:51:D9:FA:BA:76:89:B0:C1:83:06:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/0156B956215AE4C7F951D9FABA7689B0C1830680.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0156B956215AE4C7F951D9FABA7689B0C1830680.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e31302e302f32332d3233203d3e20323633323536.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  198.58.10.0/23

    Signature Algorithm: sha256WithRSAEncryption
         67:ca:e5:63:2d:75:48:ec:bb:31:ef:cf:16:9e:92:5b:8b:4c:
         0c:98:80:3a:8f:3a:f7:85:74:9b:f4:62:c0:49:a5:94:38:d5:
         97:15:53:8d:05:3c:5b:df:5d:09:fc:67:97:8c:4d:2f:5c:f1:
         4b:b3:e3:d8:3a:bc:21:6f:3b:56:5c:e8:30:1b:7d:68:ed:b4:
         d2:90:9f:35:ca:03:f7:40:8e:51:79:d2:ad:da:b2:93:c4:32:
         c7:5b:7e:f0:89:84:53:08:97:38:55:a7:43:cb:80:a7:0c:7f:
         91:ac:ef:b1:c0:2b:3b:0d:4a:11:dd:12:76:8c:06:40:48:4b:
         17:be:79:ef:fb:29:95:b7:4e:b2:70:b6:84:a6:fd:2b:8c:9e:
         e2:88:ff:16:6a:83:19:c7:c4:89:e0:ea:d2:fa:e2:c6:05:3b:
         cb:d0:db:81:db:48:22:5d:d1:13:17:e4:17:0f:40:04:f7:a7:
         7c:36:d8:ef:72:82:f0:48:cd:05:18:2e:6d:22:85:b2:0e:24:
         b4:d1:65:fc:e9:83:a5:af:ff:48:17:80:98:a1:07:b2:ec:0d:
         74:12:8e:97:73:bc:af:83:f1:10:7d:74:07:bd:4a:c9:36:8c:
         54:a5:77:f3:9e:77:a0:e5:b1:a0:f9:6c:34:41:96:56:d2:67:
         ec:5c:86:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 02:24:46 2025 by rpki-client