Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa
File:                     3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa (raw, json)
Hash identifier:          BhtSE+XFKNEkz83uCR2FY9bAL3O8qomy6d3fFC7XAyM=
Subject key identifier:   61:2B:A7:50:4A:B5:40:32:59:9B:C0:F2:03:44:80:4E:67:E9:6C:67
Certificate issuer:       /CN=7258464143C44D8129F40A067027439DBCFB626B
Certificate serial:       3921EAD88726D8BC30894491751948DBF5A7392C
Authority key identifier: 72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa
Signing time:             Thu 04 Jan 2024 22:56:57 +0000
ROA not before:           Thu 04 Jan 2024 22:51:57 +0000
ROA not after:            Thu 02 Jan 2025 22:56:57 +0000
asID:                     263887
IP address blocks:        138.204.128.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            39:21:ea:d8:87:26:d8:bc:30:89:44:91:75:19:48:db:f5:a7:39:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7258464143C44D8129F40A067027439DBCFB626B
        Validity
            Not Before: Jan  4 22:51:57 2024 GMT
            Not After : Jan  2 22:56:57 2025 GMT
        Subject: CN=612BA7504AB54032599BC0F20344804E67E96C67
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:5e:68:b8:cf:6b:98:3a:d6:8c:20:39:4b:b8:
                    85:f6:be:0e:2e:23:e0:0a:31:ab:6d:57:ac:be:81:
                    5e:6f:f8:75:29:d7:98:99:b5:f8:e6:d6:53:9e:1d:
                    ec:55:91:42:d4:51:99:dd:4d:4b:63:a8:fb:5b:2a:
                    90:9c:40:9f:7e:80:39:8f:d0:82:11:21:00:c5:4e:
                    f2:68:08:76:95:7a:21:bd:b8:07:97:1c:d5:27:5f:
                    d8:51:6b:65:e3:ae:1c:01:cc:21:51:7c:6d:51:10:
                    a3:74:70:38:78:3d:8b:8a:f8:4c:65:ce:52:a3:ea:
                    f9:4f:94:ec:66:f4:93:0a:35:21:29:d5:bc:9a:1c:
                    cf:a3:d9:8a:af:6c:a0:a3:56:5b:ca:40:b7:13:5c:
                    ca:16:76:0e:c4:38:13:84:1b:e3:52:a4:53:52:93:
                    ee:3a:90:1b:6d:f8:fa:4d:a2:b0:42:62:43:ef:da:
                    ea:b1:24:b2:4b:70:fb:fa:f1:43:5d:87:ee:8a:a8:
                    8c:e1:7b:a3:47:95:35:88:de:ff:6e:41:96:65:88:
                    e6:0d:05:5d:b2:ca:24:62:3c:f7:8e:51:82:a6:00:
                    23:3b:c0:e3:3a:10:6f:0c:db:78:5c:2a:9f:2e:f7:
                    38:e1:7e:f8:47:b9:a0:1b:0a:e8:7d:7e:2c:3c:03:
                    99:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:2B:A7:50:4A:B5:40:32:59:9B:C0:F2:03:44:80:4E:67:E9:6C:67
            X509v3 Authority Key Identifier:
                keyid:72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/7258464143C44D8129F40A067027439DBCFB626B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.204.128.0/24

    Signature Algorithm: sha256WithRSAEncryption
         53:51:c1:f8:56:17:2a:fc:0a:13:5d:21:08:5c:ef:01:f2:24:
         4a:9c:7c:b2:b4:bf:ec:13:67:9b:cf:1a:fc:df:b6:70:43:5f:
         b9:8e:f4:5f:8b:20:22:ba:f4:a3:bb:30:73:7c:30:ee:26:23:
         20:ca:d4:46:83:50:7c:c1:43:5e:a9:3e:3e:a2:46:bd:4d:e5:
         26:21:7d:15:2e:4c:da:0c:77:df:50:2c:37:30:89:2d:66:24:
         0c:ab:a0:11:36:4a:23:56:e2:31:98:fa:95:93:60:28:d9:34:
         5f:93:04:31:d6:11:9b:d8:44:8d:f1:fb:ab:a4:93:83:6f:1d:
         fb:49:ed:07:53:76:3d:5c:d7:22:7c:da:a5:27:ed:0b:d0:d6:
         6e:04:90:29:eb:8f:c6:f1:62:db:83:72:ac:5e:ac:c4:88:a6:
         d9:3a:1d:3d:b8:59:aa:9d:51:1a:97:65:9f:43:4f:3b:60:48:
         fc:f1:42:c7:57:d1:6d:96:b6:d0:9f:56:0e:f5:fa:8c:fe:4f:
         e1:57:49:64:b8:6d:dd:18:9f:27:79:c9:e2:8b:97:79:b2:9d:
         92:b3:41:81:4d:c0:67:bb:38:32:33:f6:28:78:20:71:01:fc:
         a0:f6:86:79:3a:c4:2d:8e:9f:c1:34:20:08:7b:c7:de:95:9f:
         f1:fc:e4:d9
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUOSHq2Icm2LwwiUSRdRlI2/WnOSwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI1ODQ2NDE0M0M0NEQ4MTI5RjQwQTA2NzAyNzQzOURC
Q0ZCNjI2QjAeFw0yNDAxMDQyMjUxNTdaFw0yNTAxMDIyMjU2NTdaMDMxMTAvBgNV
BAMTKDYxMkJBNzUwNEFCNTQwMzI1OTlCQzBGMjAzNDQ4MDRFNjdFOTZDNjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZXmi4z2uYOtaMIDlLuIX2vg4u
I+AKMattV6y+gV5v+HUp15iZtfjm1lOeHexVkULUUZndTUtjqPtbKpCcQJ9+gDmP
0IIRIQDFTvJoCHaVeiG9uAeXHNUnX9hRa2XjrhwBzCFRfG1REKN0cDh4PYuK+Exl
zlKj6vlPlOxm9JMKNSEp1byaHM+j2YqvbKCjVlvKQLcTXMoWdg7EOBOEG+NSpFNS
k+46kBtt+PpNorBCYkPv2uqxJLJLcPv68UNdh+6KqIzhe6NHlTWI3v9uQZZliOYN
BV2yyiRiPPeOUYKmACM7wOM6EG8M23hcKp8u9zjhfvhHuaAbCuh9fiw8A5mbAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUYSunUEq1QDJZm8DyA0SATmfpbGcwHwYDVR0j
BBgwFoAUclhGQUPETYEp9AoGcCdDnbz7YmswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRlFLU3Rta1NFTUZzZGdiTFlIeHNWSkVhRmtmb1pFVkxSeTQ5eDNHb3dE
SDIvMC83MjU4NDY0MTQzQzQ0RDgxMjlGNDBBMDY3MDI3NDM5REJDRkI2MjZCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzcyNTg0NjQxNDNDNDREODEy
OUY0MEEwNjcwMjc0MzlEQkNGQjYyNkIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZRS1N0bWtTRU1Gc2RnYkxZSHhzVkpFYUZrZm9aRVZMUnk0OXgzR293REgyLzAv
MzEzMzM4MmUzMjMwMzQyZTMxMzIzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzMzM4MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIrMgDANBgkqhkiG9w0BAQsFAAOCAQEAU1HB
+FYXKvwKE10hCFzvAfIkSpx8srS/7BNnm88a/N+2cENfuY70X4sgIrr0o7swc3ww
7iYjIMrURoNQfMFDXqk+PqJGvU3lJiF9FS5M2gx331AsNzCJLWYkDKugETZKI1bi
MZj6lZNgKNk0X5MEMdYRm9hEjfH7q6STg28d+0ntB1N2PVzXInzapSftC9DWbgSQ
KeuPxvFi24NyrF6sxIim2TodPbhZqp1RGpdln0NPO2BI/PFCx1fRbZa20J9WDvX6
jP5P4VdJZLht3RifJ3nJ4ouXebKdkrNBgU3AZ7s4MjP2KHggcQH8oPaGeTrELY6f
wTQgCHvH3pWf8fzk2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:04 2024 by rpki-client on console-ams.rpki-client.org