Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa
File:                     3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa (raw, json)
Hash identifier:          8BXgsXAIJcJJSuQJptczW705nWBb/TLbL9ZT8dYy7yg=
Subject key identifier:   3C:70:69:90:4A:93:23:00:6E:09:16:90:84:8E:4C:7F:94:0E:AF:D3
Certificate issuer:       /CN=7258464143C44D8129F40A067027439DBCFB626B
Certificate serial:       525CC63FAAFD6B0990A687BA8B838F34CDA77E3D
Authority key identifier: 72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa
Signing time:             Thu 04 Jan 2024 22:56:57 +0000
ROA not before:           Thu 04 Jan 2024 22:51:57 +0000
ROA not after:            Thu 02 Jan 2025 22:56:57 +0000
asID:                     263887
IP address blocks:        138.204.129.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:5c:c6:3f:aa:fd:6b:09:90:a6:87:ba:8b:83:8f:34:cd:a7:7e:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7258464143C44D8129F40A067027439DBCFB626B
        Validity
            Not Before: Jan  4 22:51:57 2024 GMT
            Not After : Jan  2 22:56:57 2025 GMT
        Subject: CN=3C7069904A9323006E091690848E4C7F940EAFD3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:f2:b1:88:f6:16:3a:cf:54:f8:b8:e1:fd:92:
                    e7:e5:ac:ee:1e:ad:9a:41:80:9e:66:50:95:aa:43:
                    f1:dd:8d:f2:b6:52:55:eb:49:c4:da:69:67:e2:cb:
                    ee:5e:f1:42:d2:72:1c:3b:6f:52:50:1a:68:1d:17:
                    18:6a:b6:f6:84:89:1c:e6:31:6c:df:e7:51:a1:81:
                    bd:e8:e4:23:09:56:86:51:f0:89:d6:78:41:40:17:
                    4d:a9:d3:28:30:41:5a:c4:c5:da:b7:b7:b1:bc:ad:
                    34:de:c1:72:5e:bf:f2:bb:c2:2c:ee:3e:a7:e2:ef:
                    18:5c:01:20:21:91:9e:cf:33:c4:38:dc:83:25:05:
                    9d:a4:15:37:7c:73:4e:fe:90:46:b1:f3:dd:a7:72:
                    9e:cb:78:02:32:26:09:52:9d:f9:67:e0:53:54:20:
                    2a:90:e9:87:14:19:9c:64:51:f0:c8:0a:a5:2f:c1:
                    6a:97:67:29:43:0c:35:38:a8:e2:af:22:bb:76:2e:
                    31:53:4c:1c:2f:c3:1c:c6:b0:b2:62:16:85:34:45:
                    c3:64:2a:f5:a2:f6:74:41:13:13:84:02:44:21:47:
                    2e:62:66:88:ae:f1:4c:a2:be:7b:30:f4:5e:36:65:
                    9e:b1:cc:66:fe:02:1c:72:59:e2:f2:61:32:ba:c2:
                    a2:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:70:69:90:4A:93:23:00:6E:09:16:90:84:8E:4C:7F:94:0E:AF:D3
            X509v3 Authority Key Identifier:
                keyid:72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/7258464143C44D8129F40A067027439DBCFB626B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.204.129.0/24

    Signature Algorithm: sha256WithRSAEncryption
         79:4f:91:dc:cc:c9:85:7c:45:02:70:ea:6b:56:77:ea:f1:3c:
         ea:49:17:4f:71:c0:12:ba:b5:93:3a:56:0d:e8:b7:c9:cc:81:
         c4:80:fc:74:a6:67:4f:94:c4:68:6a:f4:00:59:e2:4e:dd:dc:
         37:77:15:80:97:a5:4c:5b:22:6d:80:da:fd:70:77:88:e2:6e:
         2b:04:0d:51:62:f0:6d:04:a2:e3:36:8d:41:ab:cf:cc:a7:1a:
         cb:3a:6d:94:0a:ef:ec:12:9c:27:b7:7a:b1:20:51:c0:42:90:
         c2:e8:30:87:16:67:f1:43:e7:64:ad:28:11:b1:22:21:c8:90:
         fc:5c:fa:11:5c:49:6c:4a:8a:cc:10:7c:ca:b8:b2:ae:c8:25:
         a6:98:38:ef:2b:d2:ef:bc:80:91:58:61:9f:49:08:04:2e:d0:
         12:a6:19:44:9c:bf:2e:81:5f:bd:f8:40:f9:1b:b2:c2:b9:f8:
         3f:93:ae:01:c6:19:d3:36:70:5c:2b:d6:54:53:49:4b:3f:ea:
         ca:20:17:41:60:3d:38:70:fc:bd:95:92:5c:a0:9b:d5:fc:6a:
         05:d4:b0:3f:50:bd:7a:95:f3:aa:32:28:73:8f:d1:8a:cd:75:
         f9:97:65:c4:e3:f9:c5:cd:3c:6e:02:ca:8e:00:27:b1:98:32:
         fb:27:f9:e3
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUUlzGP6r9awmQpoe6i4OPNM2nfj0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI1ODQ2NDE0M0M0NEQ4MTI5RjQwQTA2NzAyNzQzOURC
Q0ZCNjI2QjAeFw0yNDAxMDQyMjUxNTdaFw0yNTAxMDIyMjU2NTdaMDMxMTAvBgNV
BAMTKDNDNzA2OTkwNEE5MzIzMDA2RTA5MTY5MDg0OEU0QzdGOTQwRUFGRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg8rGI9hY6z1T4uOH9kuflrO4e
rZpBgJ5mUJWqQ/HdjfK2UlXrScTaaWfiy+5e8ULSchw7b1JQGmgdFxhqtvaEiRzm
MWzf51Ghgb3o5CMJVoZR8InWeEFAF02p0ygwQVrExdq3t7G8rTTewXJev/K7wizu
Pqfi7xhcASAhkZ7PM8Q43IMlBZ2kFTd8c07+kEax892ncp7LeAIyJglSnfln4FNU
ICqQ6YcUGZxkUfDICqUvwWqXZylDDDU4qOKvIrt2LjFTTBwvwxzGsLJiFoU0RcNk
KvWi9nRBExOEAkQhRy5iZoiu8Uyivnsw9F42ZZ6xzGb+AhxyWeLyYTK6wqLPAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUPHBpkEqTIwBuCRaQhI5Mf5QOr9MwHwYDVR0j
BBgwFoAUclhGQUPETYEp9AoGcCdDnbz7YmswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRlFLU3Rta1NFTUZzZGdiTFlIeHNWSkVhRmtmb1pFVkxSeTQ5eDNHb3dE
SDIvMC83MjU4NDY0MTQzQzQ0RDgxMjlGNDBBMDY3MDI3NDM5REJDRkI2MjZCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzcyNTg0NjQxNDNDNDREODEy
OUY0MEEwNjcwMjc0MzlEQkNGQjYyNkIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZRS1N0bWtTRU1Gc2RnYkxZSHhzVkpFYUZrZm9aRVZMUnk0OXgzR293REgyLzAv
MzEzMzM4MmUzMjMwMzQyZTMxMzIzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzMzM4MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIrMgTANBgkqhkiG9w0BAQsFAAOCAQEAeU+R
3MzJhXxFAnDqa1Z36vE86kkXT3HAErq1kzpWDei3ycyBxID8dKZnT5TEaGr0AFni
Tt3cN3cVgJelTFsibYDa/XB3iOJuKwQNUWLwbQSi4zaNQavPzKcayzptlArv7BKc
J7d6sSBRwEKQwugwhxZn8UPnZK0oEbEiIciQ/Fz6EVxJbEqKzBB8yriyrsglppg4
7yvS77yAkVhhn0kIBC7QEqYZRJy/LoFfvfhA+Ruywrn4P5OuAcYZ0zZwXCvWVFNJ
Sz/qyiAXQWA9OHD8vZWSXKCb1fxqBdSwP1C9epXzqjIoc4/Ris11+ZdlxOP5xc08
bgLKjgAnsZgy+yf54w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:04 2024 by rpki-client on console-ams.rpki-client.org