Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa
File:                     323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa (raw, json)
Hash identifier:          5wkQm8aLuD3c1aRWEeaeH/Xl3ul2yK7mcVVM+qYVXe0=
Subject key identifier:   0A:6D:A7:6C:7F:15:D0:25:13:86:7D:54:F6:A7:A0:FB:24:44:4C:2C
Certificate issuer:       /CN=7258464143C44D8129F40A067027439DBCFB626B
Certificate serial:       7E63092A89F9C87B1AA9DFC7C57BF9B5F27F27B7
Authority key identifier: 72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa
Signing time:             Thu 04 Jan 2024 22:56:57 +0000
ROA not before:           Thu 04 Jan 2024 22:51:57 +0000
ROA not after:            Thu 02 Jan 2025 22:56:57 +0000
asID:                     263887
IP address blocks:        2804:2740:8000::/33 maxlen: 33

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:63:09:2a:89:f9:c8:7b:1a:a9:df:c7:c5:7b:f9:b5:f2:7f:27:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7258464143C44D8129F40A067027439DBCFB626B
        Validity
            Not Before: Jan  4 22:51:57 2024 GMT
            Not After : Jan  2 22:56:57 2025 GMT
        Subject: CN=0A6DA76C7F15D02513867D54F6A7A0FB24444C2C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:ae:ab:d8:4f:55:a8:98:a0:f3:29:cc:6f:34:
                    5f:93:fd:1c:0b:d8:de:e7:7e:dd:f6:4b:78:28:ad:
                    64:cd:39:74:85:b5:63:a2:ed:4c:4d:1d:b0:58:c1:
                    84:69:05:c3:d0:29:fb:e2:bf:06:c0:da:98:08:4b:
                    9a:b5:37:1f:73:d5:5d:ad:04:f8:16:6c:77:1c:3e:
                    f8:e5:2e:d0:cf:11:f8:88:34:40:19:18:31:f0:db:
                    01:5f:2c:80:ff:93:94:2e:41:4a:85:e4:88:7a:b4:
                    fb:13:50:3d:39:c1:a1:e8:fe:fb:d0:4a:41:b9:1c:
                    2c:a6:3d:c6:48:d3:9d:10:8e:35:4e:1c:4e:4b:af:
                    97:f4:32:44:0e:e8:2d:8f:56:1f:96:99:ec:25:2e:
                    e2:9b:70:4a:c3:e9:e4:29:0b:f2:98:3f:44:ef:8c:
                    69:2d:8f:0c:3f:d2:08:7d:68:73:94:9c:8f:25:2d:
                    cb:81:fb:8a:33:97:b6:1b:63:ac:c9:98:f0:89:46:
                    f5:4d:9e:18:64:77:b8:64:fd:43:74:d4:27:f3:80:
                    02:fd:75:d7:1f:22:95:c6:70:c4:87:05:7e:92:74:
                    98:c9:9a:0d:cc:c2:d0:95:de:52:87:9e:4c:4e:51:
                    a9:79:8c:9e:cd:46:98:61:c7:da:98:76:f1:61:54:
                    39:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:6D:A7:6C:7F:15:D0:25:13:86:7D:54:F6:A7:A0:FB:24:44:4C:2C
            X509v3 Authority Key Identifier:
                keyid:72:58:46:41:43:C4:4D:81:29:F4:0A:06:70:27:43:9D:BC:FB:62:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/7258464143C44D8129F40A067027439DBCFB626B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7258464143C44D8129F40A067027439DBCFB626B.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:2740:8000::/33

    Signature Algorithm: sha256WithRSAEncryption
         79:13:c7:62:2e:16:8e:b9:2d:13:1e:1f:42:1f:8a:14:7c:a1:
         a6:66:b5:9d:fe:24:8a:0b:3d:c5:c7:d9:f5:fb:17:a4:bc:9f:
         51:8f:51:30:91:71:a5:20:3f:d1:c3:1c:82:55:f4:73:ee:cf:
         61:4e:87:96:d1:6a:fd:0e:2d:ba:a0:45:9f:4f:3d:0c:f8:29:
         f2:97:86:18:54:cd:87:77:18:6f:21:0c:e6:67:33:44:5c:83:
         d5:44:14:10:2b:17:79:2f:a3:c6:bf:08:66:6e:97:8f:3f:b8:
         66:94:84:7a:9f:17:8f:e0:36:20:d9:81:49:42:e5:1e:21:92:
         b0:5b:bc:e6:26:a8:c7:f1:56:bf:d9:cb:55:b7:63:78:8e:45:
         9a:ef:78:44:be:f5:a9:9e:92:8f:5e:72:dd:9f:57:f5:54:08:
         06:db:dd:ef:62:15:e6:59:2a:79:05:35:31:90:6e:68:de:f1:
         bd:fd:97:e7:f7:a4:c3:cc:41:68:26:65:e2:d6:7d:8f:1d:b9:
         4c:f4:92:f5:94:06:f9:4e:81:17:a2:30:fe:a4:9d:c8:7b:28:
         1a:fc:5f:3e:c9:b3:c0:a8:a9:f3:5e:70:3b:fc:91:8b:1c:9a:
         d5:3d:83:0d:00:21:4e:93:e5:75:9f:3f:f0:a2:1b:06:c5:34:
         9f:99:14:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:46 2024 by rpki-client on console-fra.rpki-client.org