Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/323830343a6636383a3a2f33322d3332203d3e20323633353834.roa
File:                     323830343a6636383a3a2f33322d3332203d3e20323633353834.roa (raw, json)
Hash identifier:          khYtcqqBpRYu95+4jKFOc65vXhB4d2Gt5dwA5W1alAg=
Subject key identifier:   E5:C8:24:22:E7:D2:0C:41:90:31:70:E7:88:C1:1D:E5:2C:7C:C6:32
Certificate issuer:       /CN=F6AEB11F7E215BE673A18A560909D56BC79A87C0
Certificate serial:       7B614253B0A891AADD304739BFAB764E7034EC6B
Authority key identifier: F6:AE:B1:1F:7E:21:5B:E6:73:A1:8A:56:09:09:D5:6B:C7:9A:87:C0
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/323830343a6636383a3a2f33322d3332203d3e20323633353834.roa
Signing time:             Wed 06 Mar 2024 12:58:10 +0000
ROA not before:           Wed 06 Mar 2024 12:53:10 +0000
ROA not after:            Wed 05 Mar 2025 12:58:10 +0000
asID:                     263584
IP address blocks:        2804:f68::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:61:42:53:b0:a8:91:aa:dd:30:47:39:bf:ab:76:4e:70:34:ec:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F6AEB11F7E215BE673A18A560909D56BC79A87C0
        Validity
            Not Before: Mar  6 12:53:10 2024 GMT
            Not After : Mar  5 12:58:10 2025 GMT
        Subject: CN=E5C82422E7D20C41903170E788C11DE52C7CC632
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:a3:cf:43:4c:8c:3c:04:6e:bd:4b:8a:6a:d4:
                    62:62:d5:b4:eb:f7:1d:61:8d:7e:35:44:52:52:40:
                    a0:c6:e6:4f:4e:4b:69:2a:69:e5:17:4e:c5:92:1f:
                    46:40:2e:88:36:96:e9:4a:b9:1c:af:84:a8:b0:69:
                    7b:00:29:7e:0e:19:b6:6e:3c:b0:dc:9e:38:97:f3:
                    17:ff:b4:d3:55:ad:66:95:cc:2d:00:67:09:24:b6:
                    e1:02:cf:0f:f4:30:41:46:99:9d:2d:68:59:de:13:
                    f1:27:71:76:e8:58:b3:83:f9:a0:e9:25:20:ad:1b:
                    b5:84:e3:62:4a:31:2d:f7:74:70:ca:ba:99:1f:de:
                    6e:4f:3d:c9:bb:48:79:3e:6b:79:16:91:27:73:d4:
                    11:82:98:64:64:db:65:6f:d6:8c:bb:6b:51:bd:d5:
                    bf:f7:32:9e:58:2d:75:9c:9e:ca:6f:ea:0d:65:3c:
                    33:85:57:a5:4c:51:f3:28:a2:20:56:31:63:7e:08:
                    74:ae:f2:a3:0c:37:47:c1:99:9b:e2:15:f6:95:1e:
                    a2:d1:36:03:25:5d:01:70:6a:a6:87:a9:1e:51:e2:
                    14:77:91:12:b2:21:20:22:98:87:16:75:4d:a3:7a:
                    0f:a8:f4:98:f2:e9:cf:20:4c:53:5b:a8:77:09:16:
                    59:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:C8:24:22:E7:D2:0C:41:90:31:70:E7:88:C1:1D:E5:2C:7C:C6:32
            X509v3 Authority Key Identifier:
                keyid:F6:AE:B1:1F:7E:21:5B:E6:73:A1:8A:56:09:09:D5:6B:C7:9A:87:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F6AEB11F7E215BE673A18A560909D56BC79A87C0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/323830343a6636383a3a2f33322d3332203d3e20323633353834.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:f68::/32

    Signature Algorithm: sha256WithRSAEncryption
         88:ed:b1:0f:5e:95:3c:1b:a9:79:82:83:12:0d:3b:35:56:c2:
         8b:65:3b:32:9b:1b:54:5e:53:b4:22:ea:85:84:05:38:90:f2:
         01:a1:6b:4d:53:4c:f6:83:0f:cf:cf:13:bb:66:52:bb:34:fe:
         04:2f:f3:f5:64:55:85:6c:dc:c8:7c:54:38:0e:4d:2e:ea:bf:
         b1:77:e4:17:51:33:91:1b:f2:43:84:50:30:a8:30:7a:48:54:
         24:5d:45:e0:03:85:11:c3:d4:2c:f5:62:1a:98:4e:3b:6c:04:
         7d:d8:c1:e6:e9:28:cb:b5:26:2b:a7:85:40:b4:d7:ea:e7:84:
         ed:93:e5:3a:66:0f:90:01:85:7a:4d:3c:2b:d4:ce:4a:02:c6:
         a3:89:5e:25:77:d3:15:13:79:04:dc:ff:c6:b7:4c:15:0a:75:
         28:a1:4b:51:6c:55:ff:0c:49:c5:f3:0e:f1:c0:58:da:cd:58:
         b6:7f:b2:86:53:2b:8d:65:e3:6b:b5:08:ac:80:33:ff:3e:6a:
         cc:51:07:fc:9a:b4:b8:7c:b7:5d:ca:1a:72:6b:ac:b4:a4:9a:
         7e:d3:0b:b4:f9:67:a8:6c:83:ad:62:7d:79:72:f0:8b:b7:c4:
         40:e0:c3:51:0d:a3:8c:48:13:70:6b:45:ec:c4:a5:b7:28:e5:
         6b:df:4e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:52 2024 by rpki-client on console-fra.rpki-client.org