Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GqCiZyTFjrnhyuYEfcEzU8SSdg5pkMxChK4KLtQQsbB2/0/3137302e38342e342e302f32322d3234203d3e20323731303339.roa
File:                     3137302e38342e342e302f32322d3234203d3e20323731303339.roa (raw, json)
Hash identifier:          l5MSqtzGmKcnTXMbOYsycVKwrdgdw6TElee7DF9S4d4=
Subject key identifier:   5D:06:6C:92:D8:B6:94:8A:AC:4D:AC:E0:89:95:36:99:AB:2B:F2:9E
Certificate issuer:       /CN=49560F264813C444A114A1BFF4704926CAAD3807
Certificate serial:       4AE1778CDC53E7D29CAFC0AD7156AD176F71641A
Authority key identifier: 49:56:0F:26:48:13:C4:44:A1:14:A1:BF:F4:70:49:26:CA:AD:38:07
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/49560F264813C444A114A1BFF4704926CAAD3807.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GqCiZyTFjrnhyuYEfcEzU8SSdg5pkMxChK4KLtQQsbB2/0/3137302e38342e342e302f32322d3234203d3e20323731303339.roa
Signing time:             Mon 17 Jul 2023 16:51:18 +0000
ROA not before:           Mon 17 Jul 2023 16:46:18 +0000
ROA not after:            Mon 15 Jul 2024 16:51:18 +0000
asID:                     271039
IP address blocks:        170.84.4.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:e1:77:8c:dc:53:e7:d2:9c:af:c0:ad:71:56:ad:17:6f:71:64:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49560F264813C444A114A1BFF4704926CAAD3807
        Validity
            Not Before: Jul 17 16:46:18 2023 GMT
            Not After : Jul 15 16:51:18 2024 GMT
        Subject: CN=5D066C92D8B6948AAC4DACE089953699AB2BF29E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:4a:d7:12:0b:e2:64:bf:85:23:55:23:fe:e5:
                    79:03:5f:97:d4:d4:37:8a:6c:e3:cf:d3:d8:9b:3f:
                    ed:47:06:f4:81:81:16:b6:76:ba:46:05:9a:c0:ad:
                    dd:b5:0f:68:9e:ae:5f:d8:55:59:a2:f1:9e:c9:c3:
                    96:75:a3:56:5e:ea:8f:e6:ea:61:50:44:29:04:3f:
                    26:64:83:59:e0:1c:7b:72:f6:ea:30:69:9c:f0:e9:
                    e3:c5:d0:dc:fc:06:ef:ec:81:17:4a:9c:00:d6:b8:
                    01:08:74:ee:bf:d4:fe:9d:b5:63:ef:20:4f:4e:1c:
                    a4:38:16:81:ee:40:ec:0a:cf:f9:2d:4e:e1:2f:c7:
                    32:0d:ae:bc:26:e7:6b:34:bd:98:69:43:f7:74:f4:
                    51:0e:71:23:e2:94:b3:b6:df:f5:4e:53:bc:09:a6:
                    73:6c:ce:81:95:7e:9c:c6:29:53:ad:d7:c7:5f:74:
                    6f:c5:55:5d:eb:5d:b0:71:9d:b3:d4:0c:4f:7b:11:
                    55:f0:1f:c8:1a:cb:23:d3:26:18:cb:95:ec:a6:65:
                    3a:67:35:ee:e6:f3:bc:44:05:dd:af:5e:9f:07:90:
                    3e:7b:bc:98:92:13:4f:16:cf:ef:f2:1c:09:ca:f0:
                    fb:2c:55:83:12:e2:52:0b:d6:9c:96:d1:1c:d6:44:
                    9d:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:06:6C:92:D8:B6:94:8A:AC:4D:AC:E0:89:95:36:99:AB:2B:F2:9E
            X509v3 Authority Key Identifier:
                keyid:49:56:0F:26:48:13:C4:44:A1:14:A1:BF:F4:70:49:26:CA:AD:38:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GqCiZyTFjrnhyuYEfcEzU8SSdg5pkMxChK4KLtQQsbB2/0/49560F264813C444A114A1BFF4704926CAAD3807.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/49560F264813C444A114A1BFF4704926CAAD3807.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GqCiZyTFjrnhyuYEfcEzU8SSdg5pkMxChK4KLtQQsbB2/0/3137302e38342e342e302f32322d3234203d3e20323731303339.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.84.4.0/22

    Signature Algorithm: sha256WithRSAEncryption
         47:73:d3:01:0b:bc:bf:61:9c:5f:85:2e:fd:b9:c1:01:19:22:
         77:49:ea:b2:9b:7f:d6:b8:c1:0b:cb:d9:6a:c2:3a:42:22:f6:
         6e:bd:76:28:26:9e:40:52:8d:37:98:f9:22:c9:02:62:57:27:
         c6:e3:42:cf:7c:a5:74:30:8e:97:a1:61:a4:2e:12:39:1c:cd:
         43:25:8c:ce:b8:c6:58:99:9d:26:63:5a:eb:59:d8:69:b4:29:
         79:a5:44:89:03:05:b0:12:11:eb:d5:75:84:12:8e:a9:2f:0f:
         32:20:25:52:66:c4:51:9a:e3:f6:11:90:2f:a4:11:68:1c:d0:
         13:d5:f8:a3:63:2e:68:0d:66:a3:e6:df:a6:69:f4:f1:fb:2a:
         de:0a:98:1f:da:58:fe:e2:22:c4:4f:43:29:db:fd:f2:d5:e8:
         bc:15:35:cd:47:b9:fb:b4:fa:1b:27:79:5f:00:c2:ae:bd:74:
         7c:c1:1d:e6:65:ba:01:29:1d:8b:9a:0f:54:cb:2e:17:d2:76:
         13:a9:dd:b1:68:30:e3:2c:13:90:fd:3d:bb:ad:99:54:e8:c6:
         e0:7e:a1:34:5b:8e:2a:c7:2d:5c:e8:91:bc:0b:69:3b:ba:c3:
         3c:ad:cc:92:6f:ce:02:35:e7:87:94:be:3f:b2:e0:fc:ee:41:
         ee:d5:dc:9c
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUSuF3jNxT59Kcr8CtcVatF29xZBowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDk1NjBGMjY0ODEzQzQ0NEExMTRBMUJGRjQ3MDQ5MjZD
QUFEMzgwNzAeFw0yMzA3MTcxNjQ2MThaFw0yNDA3MTUxNjUxMThaMDMxMTAvBgNV
BAMTKDVEMDY2QzkyRDhCNjk0OEFBQzREQUNFMDg5OTUzNjk5QUIyQkYyOUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcStcSC+Jkv4UjVSP+5XkDX5fU
1DeKbOPP09ibP+1HBvSBgRa2drpGBZrArd21D2ierl/YVVmi8Z7Jw5Z1o1Ze6o/m
6mFQRCkEPyZkg1ngHHty9uowaZzw6ePF0Nz8Bu/sgRdKnADWuAEIdO6/1P6dtWPv
IE9OHKQ4FoHuQOwKz/ktTuEvxzINrrwm52s0vZhpQ/d09FEOcSPilLO23/VOU7wJ
pnNszoGVfpzGKVOt18dfdG/FVV3rXbBxnbPUDE97EVXwH8gayyPTJhjLleymZTpn
Ne7m87xEBd2vXp8HkD57vJiSE08Wz+/yHAnK8PssVYMS4lIL1pyW0RzWRJ3BAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUXQZskti2lIqsTazgiZU2masr8p4wHwYDVR0j
BBgwFoAUSVYPJkgTxEShFKG/9HBJJsqtOAcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR3FDaVp5VEZqcm5oeXVZRWZjRXpVOFNTZGc1cGtNeENoSzRLTHRRUXNi
QjIvMC80OTU2MEYyNjQ4MTNDNDQ0QTExNEExQkZGNDcwNDkyNkNBQUQzODA3LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzQ5NTYwRjI2NDgxM0M0NDRB
MTE0QTFCRkY0NzA0OTI2Q0FBRDM4MDcuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dxQ2laeVRGanJuaHl1WUVmY0V6VThTU2RnNXBrTXhDaEs0S0x0UVFzYkIyLzAv
MzEzNzMwMmUzODM0MmUzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzczMTMw
MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAqpUBDANBgkqhkiG9w0BAQsFAAOCAQEAR3PTAQu8v2Gc
X4Uu/bnBARkid0nqspt/1rjBC8vZasI6QiL2br12KCaeQFKNN5j5IskCYlcnxuNC
z3yldDCOl6FhpC4SORzNQyWMzrjGWJmdJmNa61nYabQpeaVEiQMFsBIR69V1hBKO
qS8PMiAlUmbEUZrj9hGQL6QRaBzQE9X4o2MuaA1mo+bfpmn08fsq3gqYH9pY/uIi
xE9DKdv98tXovBU1zUe5+7T6Gyd5XwDCrr10fMEd5mW6ASkdi5oPVMsuF9J2E6nd
sWgw4ywTkP09u62ZVOjG4H6hNFuOKsctXOiRvAtpO7rDPK3Mkm/OAjXnh5S+P7Lg
/O5B7tXcnA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:55 2024 by rpki-client on console-fra.rpki-client.org