Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
File:                     3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier:          MZ/BexGIgNQShiNyw2BP9vczTLTSR0joOjYpRhvdybQ=
Subject key identifier:   D1:3D:05:24:33:CB:FD:A3:4F:20:B5:5A:12:BB:73:88:BA:C9:C7:44
Certificate issuer:       /CN=E8D0AB3590AFD570B1D7BE8CA61A939D37E006F9
Certificate serial:       038342C710BF85663C8FF1B7D4F2E16BBFC7436D
Authority key identifier: E8:D0:AB:35:90:AF:D5:70:B1:D7:BE:8C:A6:1A:93:9D:37:E0:06:F9
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E8D0AB3590AFD570B1D7BE8CA61A939D37E006F9.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
Signing time:             Sun 19 Nov 2023 06:39:43 +0000
ROA not before:           Sun 19 Nov 2023 06:34:43 +0000
ROA not after:            Sun 17 Nov 2024 06:39:43 +0000
asID:                     263584
IP address blocks:        177.129.136.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:83:42:c7:10:bf:85:66:3c:8f:f1:b7:d4:f2:e1:6b:bf:c7:43:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E8D0AB3590AFD570B1D7BE8CA61A939D37E006F9
        Validity
            Not Before: Nov 19 06:34:43 2023 GMT
            Not After : Nov 17 06:39:43 2024 GMT
        Subject: CN=D13D052433CBFDA34F20B55A12BB7388BAC9C744
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:6f:c0:e3:92:84:a1:d7:e2:ec:a0:50:39:07:
                    f6:b5:b3:9b:7e:67:31:45:80:b0:1e:33:8c:52:75:
                    96:fd:91:1b:02:e4:69:dd:7a:e6:f3:d9:3b:e0:7b:
                    43:f0:7e:c9:a9:91:83:1e:ae:61:54:cb:16:02:4c:
                    ee:9a:26:c8:66:cc:49:8a:95:6d:aa:08:6f:70:5a:
                    29:62:7b:f9:ca:df:e3:33:b8:d9:38:78:a4:32:a4:
                    9c:ad:d3:60:da:3a:0d:42:25:52:45:6d:cb:bf:03:
                    ea:06:ae:78:f3:f8:7f:a1:26:37:8c:e5:5c:4f:91:
                    a4:fc:93:cf:be:0b:a0:bd:41:4a:71:1c:46:f7:91:
                    21:1d:1b:77:0c:b0:29:87:f6:80:34:ba:6a:42:bd:
                    43:1f:ce:86:a6:52:94:60:1d:99:70:e5:ad:15:47:
                    6e:2b:fa:21:ba:b0:40:43:f8:64:69:30:72:3d:fb:
                    17:29:de:dd:3f:2b:ec:39:b4:ea:8a:ba:40:e5:db:
                    31:06:fb:d6:d9:30:ca:7e:a7:b4:e5:a9:54:e0:26:
                    8d:6b:6d:d4:10:92:a0:98:36:d8:21:22:c0:24:c1:
                    40:67:fe:5a:e2:7f:b1:7d:38:d1:0d:21:34:71:59:
                    39:4a:73:90:0b:fd:47:c1:bf:d7:c1:35:c0:e7:5b:
                    be:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:3D:05:24:33:CB:FD:A3:4F:20:B5:5A:12:BB:73:88:BA:C9:C7:44
            X509v3 Authority Key Identifier:
                keyid:E8:D0:AB:35:90:AF:D5:70:B1:D7:BE:8C:A6:1A:93:9D:37:E0:06:F9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/E8D0AB3590AFD570B1D7BE8CA61A939D37E006F9.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E8D0AB3590AFD570B1D7BE8CA61A939D37E006F9.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.129.136.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3e:bf:87:26:0a:9c:8d:17:a9:0e:bb:9b:f6:13:63:4e:f2:0f:
         e2:21:55:fb:7b:92:cd:31:6e:5a:7c:64:6d:68:0e:55:41:4b:
         cf:04:f3:79:07:b6:e5:e4:0d:94:8e:c2:1f:40:af:b3:4d:3e:
         0b:c9:58:3a:e0:94:4d:a0:e9:88:29:11:aa:6d:2d:ef:6c:d7:
         40:8f:47:5c:dc:0a:d3:3d:2d:0a:ce:8b:b1:1b:91:6e:88:17:
         2e:6b:2d:4b:9a:fd:20:e0:8f:94:b2:a4:3c:0a:91:95:b6:d0:
         df:d3:69:05:cd:32:2a:b7:a6:c2:b4:b1:58:6f:76:2f:18:49:
         1a:08:ee:ed:87:c7:82:62:27:a2:65:87:91:7e:5f:a0:77:2a:
         97:76:dc:cd:8c:4c:8c:05:6d:29:9d:e0:c7:ad:75:15:b6:1f:
         a2:c0:eb:4a:ab:47:5b:1a:fd:a0:96:c3:45:14:5a:d5:38:5c:
         3b:d9:48:d8:64:d8:3c:87:49:55:57:28:54:ef:94:90:db:91:
         11:b7:51:81:88:6c:69:e5:27:9f:f7:c0:d5:f6:2d:4f:c8:a0:
         e7:24:27:dd:24:47:38:41:93:7a:8b:02:85:d1:83:64:de:0d:
         e7:92:29:38:3f:60:51:d2:55:5e:8f:b6:93:b3:9a:7c:db:ee:
         f1:c6:41:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:52 2024 by rpki-client on console-fra.rpki-client.org