Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa
File:                     3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa (raw, json)
Hash identifier:          LFqNe1jHAdjNC3g+WMmbjWLb5Ck1eI+MEY/npbrR9ho=
Subject key identifier:   17:E3:DC:77:8B:09:2F:41:4B:2C:7F:3F:BF:CA:9E:4D:B1:73:D8:2D
Certificate issuer:       /CN=7258464143C44D8129F40A067027439DBCFB626B
Certificate serial:       4FECE9618E69EC2EDF47B9D1F102B4C7DD9918D9
Authority key identifier: 72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa
Signing time:             Thu 04 Jan 2024 22:56:57 +0000
ROA not before:           Thu 04 Jan 2024 22:51:57 +0000
ROA not after:            Thu 02 Jan 2025 22:56:57 +0000
asID:                     263887
IP address blocks:        138.204.131.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:ec:e9:61:8e:69:ec:2e:df:47:b9:d1:f1:02:b4:c7:dd:99:18:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7258464143C44D8129F40A067027439DBCFB626B
        Validity
            Not Before: Jan  4 22:51:57 2024 GMT
            Not After : Jan  2 22:56:57 2025 GMT
        Subject: CN=17E3DC778B092F414B2C7F3FBFCA9E4DB173D82D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:16:09:8e:06:72:8d:ca:a3:4f:07:9b:b9:f4:
                    bf:31:37:35:6d:7b:5f:96:8c:a1:39:cc:28:df:b7:
                    92:ca:d1:4b:46:e6:f7:63:c7:c0:44:42:68:7d:2c:
                    33:96:14:1c:87:7f:b8:20:14:89:a9:a8:10:e6:44:
                    8e:cb:1f:05:b3:e5:81:2f:7c:96:8e:bf:51:a3:7a:
                    68:48:ba:37:26:f5:c0:07:4b:aa:c1:0e:b1:0e:b3:
                    d7:a3:ff:d8:bc:f8:9d:91:65:04:4f:d7:0e:c3:bc:
                    5e:b6:24:2f:18:42:bc:2a:85:ce:b4:e0:f1:3b:a2:
                    33:4c:b3:67:4a:cd:28:a0:8d:85:33:9e:f5:5d:90:
                    ec:2c:a7:cc:ce:2c:ce:df:6e:28:a2:6c:35:1e:f2:
                    c8:23:4a:87:86:0d:dc:b9:0c:85:d9:93:1d:ab:52:
                    05:46:1e:03:02:80:49:87:c0:d3:3e:61:3d:1d:cd:
                    d1:33:8e:82:57:90:a3:ac:9b:db:72:40:16:85:31:
                    2b:2b:17:f6:6a:00:38:e2:d9:dd:26:60:a2:35:5a:
                    aa:19:b0:65:91:f2:13:bd:9d:46:dc:ae:55:2a:f6:
                    30:eb:c6:c6:0f:70:60:b9:d9:83:6e:cb:43:1d:94:
                    24:4c:cc:0e:37:91:b0:d3:87:ca:40:ec:8f:47:df:
                    17:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:E3:DC:77:8B:09:2F:41:4B:2C:7F:3F:BF:CA:9E:4D:B1:73:D8:2D
            X509v3 Authority Key Identifier:
                keyid:72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/7258464143C44D8129F40A067027439DBCFB626B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.204.131.0/24

    Signature Algorithm: sha256WithRSAEncryption
         85:71:20:65:a5:3e:99:40:06:09:98:13:26:7e:5a:1a:05:88:
         2d:ec:28:4b:87:07:f8:47:32:9b:a5:e6:a6:e8:a5:7a:e0:e5:
         51:c0:f9:1d:c0:8d:1c:51:a4:0d:aa:0a:cc:f0:3a:45:bc:ac:
         0b:79:54:3c:52:1d:30:96:6e:02:0e:d6:17:3b:dc:f1:38:e7:
         71:a7:df:ac:74:13:d5:3d:ab:c9:a5:76:8e:0c:1d:2c:0b:eb:
         7f:f8:56:d1:de:1c:c2:d0:12:95:59:e3:28:52:11:0b:6a:7b:
         64:30:ff:f3:57:9c:a1:35:66:9f:ed:4b:ac:a9:09:d8:51:d0:
         8d:a0:92:5f:f7:0b:51:e6:7d:4a:96:95:5e:2d:f3:7b:76:19:
         67:d0:62:e9:ff:01:db:b1:99:96:7a:9d:97:e4:8f:b9:c4:fc:
         f7:ea:39:ae:cd:cf:d0:6d:e6:3d:2b:70:e3:71:f3:b4:4f:76:
         63:95:a1:38:ba:d8:17:ac:e3:14:4e:bb:c6:bd:b7:65:e5:8b:
         41:a6:d6:51:3f:c2:99:96:f0:c3:99:d1:10:5f:97:f4:a9:1f:
         48:82:0b:da:a5:07:97:a2:9d:ba:d9:78:16:4a:51:e1:a6:4e:
         17:e2:23:de:a3:ee:63:01:8d:9d:89:1a:26:e2:fc:f3:67:a5:
         b9:14:94:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:04 2024 by rpki-client on console-ams.rpki-client.org