Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32312d3234203d3e20323633353834.roa
File:                     3137372e3132392e3133362e302f32312d3234203d3e20323633353834.roa (raw, json)
Hash identifier:          QB57eARvWUHf/wJ21KKiyYFGLCCRM+qsS6ird2zx2OM=
Subject key identifier:   BA:3A:9D:82:B5:D6:82:C5:E4:3F:FA:FA:28:41:E2:74:10:EA:A4:92
Certificate issuer:       /CN=F6AEB11F7E215BE673A18A560909D56BC79A87C0
Certificate serial:       28CBC87B76C68BA1A0BCC27DA13D9A9ABE63393B
Authority key identifier: F6:AE:B1:1F:7E:21:5B:E6:73:A1:8A:56:09:09:D5:6B:C7:9A:87:C0
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32312d3234203d3e20323633353834.roa
Signing time:             Wed 06 Mar 2024 12:58:00 +0000
ROA not before:           Wed 06 Mar 2024 12:53:00 +0000
ROA not after:            Wed 05 Mar 2025 12:58:00 +0000
asID:                     263584
IP address blocks:        177.129.136.0/21 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            28:cb:c8:7b:76:c6:8b:a1:a0:bc:c2:7d:a1:3d:9a:9a:be:63:39:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F6AEB11F7E215BE673A18A560909D56BC79A87C0
        Validity
            Not Before: Mar  6 12:53:00 2024 GMT
            Not After : Mar  5 12:58:00 2025 GMT
        Subject: CN=BA3A9D82B5D682C5E43FFAFA2841E27410EAA492
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:f7:10:81:90:10:d7:92:43:88:62:2a:cc:a4:
                    ff:6e:d2:63:a5:48:0a:09:21:d3:62:13:0b:09:3e:
                    cf:15:b8:60:a7:e3:84:90:e8:99:60:5b:d3:aa:00:
                    e4:68:07:c5:86:c0:2e:94:99:fa:89:df:f5:2a:65:
                    92:99:54:10:08:05:d8:5b:a5:a1:50:1a:10:91:ea:
                    fb:32:8d:2d:73:e4:b3:3c:8d:95:52:4b:2d:cd:40:
                    c7:55:4b:bd:c0:7d:bd:c0:33:04:35:4a:c8:3f:87:
                    5c:ec:0e:ee:13:cc:92:ac:6a:ab:3b:6d:b1:28:7b:
                    39:50:f8:a0:c0:2b:06:6c:81:21:e9:0a:d2:71:b6:
                    a2:d9:1a:96:b6:75:07:65:b0:6c:86:68:84:11:06:
                    8d:97:81:62:2e:59:e0:31:7e:2f:1b:9a:15:43:4a:
                    11:7e:33:72:93:3b:dd:d1:3b:c9:70:be:9a:02:34:
                    41:81:d9:cf:34:07:4e:b2:90:a0:e6:26:cd:02:b0:
                    eb:e0:40:2c:db:59:ea:03:04:50:5d:97:d4:21:b8:
                    41:52:5a:df:9e:db:b5:9a:c4:cb:9f:6a:5a:10:61:
                    87:a6:0f:8e:c0:b9:7f:53:f6:51:18:1d:5e:aa:60:
                    a7:78:51:f5:59:3d:2e:ab:7d:5e:ab:10:c9:9f:f3:
                    f5:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:3A:9D:82:B5:D6:82:C5:E4:3F:FA:FA:28:41:E2:74:10:EA:A4:92
            X509v3 Authority Key Identifier:
                keyid:F6:AE:B1:1F:7E:21:5B:E6:73:A1:8A:56:09:09:D5:6B:C7:9A:87:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32312d3234203d3e20323633353834.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.129.136.0/21

    Signature Algorithm: sha256WithRSAEncryption
         1f:80:dc:aa:ab:52:6d:46:9d:11:5d:66:a2:af:66:e4:d9:ff:
         d1:9b:1e:55:24:8f:bf:15:b1:4a:54:6b:65:e2:85:13:f1:de:
         81:7d:a8:88:05:eb:1d:a7:c2:9b:8a:7c:d8:52:a8:00:36:be:
         61:5e:87:1b:7a:f7:c8:f1:a3:48:c7:ab:20:5b:eb:a4:24:3d:
         fd:c2:a4:8c:9c:94:82:de:78:87:75:fe:42:1e:8c:61:25:97:
         85:35:12:03:c2:a5:27:52:b3:ac:e0:e3:81:db:75:e1:13:1a:
         15:e4:99:ef:28:22:aa:73:86:a2:2a:01:e9:7d:b5:a6:89:b4:
         46:a9:7a:6c:19:26:8b:d9:04:6e:0a:32:71:9d:dc:9d:6e:c4:
         c5:23:1d:9c:a9:28:4a:60:c4:1c:83:a4:c5:70:4a:da:ca:5e:
         23:ec:0b:c3:b4:c2:2c:96:95:b6:9e:9c:32:f2:3b:b7:dc:65:
         51:1a:53:32:b9:7d:8d:57:58:34:33:d3:40:8d:64:98:08:d3:
         ab:7e:3d:33:91:7b:92:d4:f1:42:36:b0:1a:1d:11:bf:62:cc:
         85:f3:57:34:4f:2a:b4:de:b3:74:44:5d:02:65:ce:d5:44:b1:
         9d:08:e2:db:b5:c5:4b:08:74:2c:77:c1:6e:97:7a:0d:4b:ec:
         73:8b:ae:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:24 2024 by rpki-client on console-ams.rpki-client.org