Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GBNuNLxTMdujHJgpckxebufj41zFQVBG7FbJxPNBVVCN/0/3137372e36362e382e302f32312d3234203d3e20323632343836.roa
File:                     3137372e36362e382e302f32312d3234203d3e20323632343836.roa (raw, json)
Hash identifier:          uVJqJp8NLTezDDJex81OhxBDzOSMbvxBTztaG0wRDOA=
Subject key identifier:   4D:6A:4F:BD:4D:97:FD:C6:FD:D4:27:80:3C:1B:D0:93:43:22:CA:4B
Certificate issuer:       /CN=80F94AC91E3134600C5F9A02C6A9FC26C83F0D2E
Certificate serial:       4F5C684C52C8E6444C64928FEBA173024F231FA0
Authority key identifier: 80:F9:4A:C9:1E:31:34:60:0C:5F:9A:02:C6:A9:FC:26:C8:3F:0D:2E
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/80F94AC91E3134600C5F9A02C6A9FC26C83F0D2E.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GBNuNLxTMdujHJgpckxebufj41zFQVBG7FbJxPNBVVCN/0/3137372e36362e382e302f32312d3234203d3e20323632343836.roa
Signing time:             Wed 27 Mar 2024 11:28:58 +0000
ROA not before:           Wed 27 Mar 2024 11:23:58 +0000
ROA not after:            Wed 26 Mar 2025 11:28:58 +0000
asID:                     262486
IP address blocks:        177.66.8.0/21 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:5c:68:4c:52:c8:e6:44:4c:64:92:8f:eb:a1:73:02:4f:23:1f:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80F94AC91E3134600C5F9A02C6A9FC26C83F0D2E
        Validity
            Not Before: Mar 27 11:23:58 2024 GMT
            Not After : Mar 26 11:28:58 2025 GMT
        Subject: CN=4D6A4FBD4D97FDC6FDD427803C1BD0934322CA4B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:98:0c:82:3b:31:98:ab:85:61:7d:d3:bb:08:
                    c8:05:26:94:6b:7a:cb:b8:ed:d2:dc:63:f4:4f:d5:
                    00:7d:79:b8:0e:54:16:32:b3:fd:9d:47:b3:bf:22:
                    94:bd:d2:68:86:8b:f4:f1:91:72:2d:1c:c7:7e:86:
                    24:ad:31:95:58:85:30:7c:bd:53:6f:e2:bf:ed:7a:
                    40:99:12:37:9b:da:ec:97:12:7c:63:a7:31:14:4c:
                    ad:77:0f:54:a7:da:50:08:0d:af:cc:56:e0:21:78:
                    63:83:4f:28:c3:0c:ae:d2:e4:d9:2b:06:fe:72:9f:
                    e7:f0:54:38:32:18:7a:fb:7c:04:b2:fb:8d:4d:a5:
                    82:cd:0d:49:73:31:80:0d:ca:83:58:2d:2f:dc:fc:
                    30:84:aa:f0:bd:59:39:be:e7:cf:49:9d:b3:26:c5:
                    b8:7d:65:20:87:57:a7:82:45:7f:38:2d:cb:80:29:
                    0b:7a:fb:d3:85:f2:b9:be:f2:c3:48:e0:86:3d:6c:
                    8f:0e:cc:41:c7:11:9e:f6:9c:6b:8d:c2:be:2f:be:
                    4a:88:61:e6:7c:e2:66:af:2e:0d:84:8b:70:50:71:
                    0b:6c:e7:7a:bf:70:6c:4a:7f:80:3a:81:54:0b:85:
                    72:ab:3b:aa:a9:12:20:3a:84:15:9c:d1:bd:d4:a2:
                    20:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:6A:4F:BD:4D:97:FD:C6:FD:D4:27:80:3C:1B:D0:93:43:22:CA:4B
            X509v3 Authority Key Identifier:
                keyid:80:F9:4A:C9:1E:31:34:60:0C:5F:9A:02:C6:A9:FC:26:C8:3F:0D:2E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GBNuNLxTMdujHJgpckxebufj41zFQVBG7FbJxPNBVVCN/0/80F94AC91E3134600C5F9A02C6A9FC26C83F0D2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/80F94AC91E3134600C5F9A02C6A9FC26C83F0D2E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GBNuNLxTMdujHJgpckxebufj41zFQVBG7FbJxPNBVVCN/0/3137372e36362e382e302f32312d3234203d3e20323632343836.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.66.8.0/21

    Signature Algorithm: sha256WithRSAEncryption
         87:05:a0:b1:3d:c8:5b:c1:6a:9e:77:b2:c0:32:46:8a:98:72:
         52:47:6f:70:25:52:43:e2:71:09:e2:77:b1:07:49:46:b1:75:
         53:aa:1d:a7:68:0e:e8:cc:50:8c:2c:f6:2d:99:66:8c:40:3d:
         59:1b:8b:d6:a6:fb:f0:ca:ae:e5:31:0f:42:59:e3:fb:cc:4a:
         15:20:95:13:19:68:a2:2a:cf:1e:87:69:78:41:4a:59:f1:d9:
         f8:3b:9d:5c:9f:43:82:91:89:04:4b:f0:06:04:71:cd:02:86:
         4a:1e:d1:21:c3:ca:d7:51:a7:74:cc:50:6f:9a:56:90:15:d2:
         a2:40:50:24:93:f7:65:d3:fd:e2:ea:58:a0:ce:9f:44:fc:35:
         f7:e0:15:3c:ce:9a:9b:5b:d9:12:cd:4c:5f:52:19:6e:1c:ec:
         ac:db:36:0d:9d:ac:d6:46:ee:37:a9:ff:da:f2:51:cf:d4:ec:
         25:34:ba:19:2c:a5:6c:9f:ca:21:35:3c:c9:af:8a:30:29:95:
         6a:42:77:c6:ed:9a:40:25:cb:59:70:f8:a8:c9:46:70:63:7d:
         26:7d:ab:aa:31:b7:19:7d:87:49:46:56:61:d9:20:b7:ab:bd:
         12:eb:66:dc:ed:51:77:0f:0d:c5:61:0f:84:9e:63:52:7c:64:
         11:b4:15:1b
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUT1xoTFLI5kRMZJKP66FzAk8jH6AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODBGOTRBQzkxRTMxMzQ2MDBDNUY5QTAyQzZBOUZDMjZD
ODNGMEQyRTAeFw0yNDAzMjcxMTIzNThaFw0yNTAzMjYxMTI4NThaMDMxMTAvBgNV
BAMTKDRENkE0RkJENEQ5N0ZEQzZGREQ0Mjc4MDNDMUJEMDkzNDMyMkNBNEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrmAyCOzGYq4VhfdO7CMgFJpRr
esu47dLcY/RP1QB9ebgOVBYys/2dR7O/IpS90miGi/TxkXItHMd+hiStMZVYhTB8
vVNv4r/tekCZEjeb2uyXEnxjpzEUTK13D1Sn2lAIDa/MVuAheGODTyjDDK7S5Nkr
Bv5yn+fwVDgyGHr7fASy+41NpYLNDUlzMYANyoNYLS/c/DCEqvC9WTm+589JnbMm
xbh9ZSCHV6eCRX84LcuAKQt6+9OF8rm+8sNI4IY9bI8OzEHHEZ72nGuNwr4vvkqI
YeZ84mavLg2Ei3BQcQts53q/cGxKf4A6gVQLhXKrO6qpEiA6hBWc0b3UoiAlAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUTWpPvU2X/cb91CeAPBvQk0MiykswHwYDVR0j
BBgwFoAUgPlKyR4xNGAMX5oCxqn8Jsg/DS4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR0JOdU5MeFRNZHVqSEpncGNreGVidWZqNDF6RlFWQkc3RmJKeFBOQlZW
Q04vMC84MEY5NEFDOTFFMzEzNDYwMEM1RjlBMDJDNkE5RkMyNkM4M0YwRDJFLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzgwRjk0QUM5MUUzMTM0NjAw
QzVGOUEwMkM2QTlGQzI2QzgzRjBEMkUuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dCTnVOTHhUTWR1akhKZ3Bja3hlYnVmajQxekZRVkJHN0ZiSnhQTkJWVkNOLzAv
MzEzNzM3MmUzNjM2MmUzODJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMyMzYzMjM0
MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEA7FCCDANBgkqhkiG9w0BAQsFAAOCAQEAhwWgsT3IW8Fq
nneywDJGiphyUkdvcCVSQ+JxCeJ3sQdJRrF1U6odp2gO6MxQjCz2LZlmjEA9WRuL
1qb78Mqu5TEPQlnj+8xKFSCVExlooirPHodpeEFKWfHZ+DudXJ9DgpGJBEvwBgRx
zQKGSh7RIcPK11GndMxQb5pWkBXSokBQJJP3ZdP94upYoM6fRPw19+AVPM6am1vZ
Es1MX1IZbhzsrNs2DZ2s1kbuN6n/2vJRz9TsJTS6GSylbJ/KITU8ya+KMCmVakJ3
xu2aQCXLWXD4qMlGcGN9Jn2rqjG3GX2HSUZWYdkgt6u9Eutm3O1Rdw8NxWEPhJ5j
UnxkEbQVGw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:49 2024 by rpki-client on console-fra.rpki-client.org