Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/H6SCuP4sb64xsrsBu4woAeqV3mF4XktwJRPZET6P54Mu/0/3133312e3130302e32342e302f32322d3234203d3e203533313037.roa
File:                     3133312e3130302e32342e302f32322d3234203d3e203533313037.roa (raw, json)
Hash identifier:          bl9z6JXbGt093IP5tCIBhibowT9vj+KvdKZVf1sHn8A=
Subject key identifier:   D1:E2:7E:2A:42:6A:A7:6C:A7:C2:21:21:90:35:EA:7B:DD:5A:3C:74
Certificate issuer:       /CN=419A2E42DF188ACEF915C715DAE3757B6ACA80C1
Certificate serial:       04ACF8DAEF9F5C52EC4F5E975D8FD1D868A10B8F
Authority key identifier: 41:9A:2E:42:DF:18:8A:CE:F9:15:C7:15:DA:E3:75:7B:6A:CA:80:C1
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/419A2E42DF188ACEF915C715DAE3757B6ACA80C1.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/H6SCuP4sb64xsrsBu4woAeqV3mF4XktwJRPZET6P54Mu/0/3133312e3130302e32342e302f32322d3234203d3e203533313037.roa
Signing time:             Tue 09 Apr 2024 18:14:57 +0000
ROA not before:           Tue 09 Apr 2024 18:09:57 +0000
ROA not after:            Tue 08 Apr 2025 18:14:57 +0000
asID:                     53107
IP address blocks:        131.100.24.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:ac:f8:da:ef:9f:5c:52:ec:4f:5e:97:5d:8f:d1:d8:68:a1:0b:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=419A2E42DF188ACEF915C715DAE3757B6ACA80C1
        Validity
            Not Before: Apr  9 18:09:57 2024 GMT
            Not After : Apr  8 18:14:57 2025 GMT
        Subject: CN=D1E27E2A426AA76CA7C221219035EA7BDD5A3C74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:38:b5:fa:2c:e6:dd:18:60:a4:4c:f5:52:a9:
                    98:5b:bb:68:6d:8e:6f:dc:3a:a8:46:ac:84:4e:8a:
                    96:05:8a:1a:79:ce:ef:f9:21:55:db:a7:a0:b4:e2:
                    7b:47:6e:ac:8b:e0:33:c1:76:4e:39:62:9b:8d:9a:
                    58:ce:c2:c1:c2:4c:4c:55:a2:be:4c:3f:24:6d:e1:
                    d0:30:f4:f5:ae:dc:f7:46:d3:a5:c5:a3:69:9d:3c:
                    52:93:be:9a:c5:30:4d:98:12:d9:22:0d:01:29:52:
                    e5:51:ed:6c:f5:c1:bd:9a:37:f3:e7:c3:bc:ef:8e:
                    58:25:e3:4e:ab:a0:0c:65:7b:0f:3e:42:55:c5:15:
                    61:ac:1d:1f:91:cd:35:f3:1f:9e:ff:04:b7:ef:3b:
                    05:b3:3e:d7:15:4e:c2:c5:88:a6:b9:c4:d2:f9:20:
                    c5:ba:7c:3b:28:4c:76:9b:4a:4c:e4:46:1a:16:61:
                    d0:f0:c3:6a:2f:38:5d:8d:17:3d:8f:45:e7:cd:c0:
                    7b:fe:d4:bd:56:68:66:7b:ec:e2:36:33:28:4e:14:
                    be:3d:ad:3b:49:b3:99:1e:d9:ac:d7:5f:8f:58:3e:
                    11:d5:19:38:1c:e5:a0:9e:05:13:db:70:04:14:50:
                    d9:1a:7e:bc:8c:5c:d3:d8:4b:02:74:af:59:43:ae:
                    7e:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:E2:7E:2A:42:6A:A7:6C:A7:C2:21:21:90:35:EA:7B:DD:5A:3C:74
            X509v3 Authority Key Identifier:
                keyid:41:9A:2E:42:DF:18:8A:CE:F9:15:C7:15:DA:E3:75:7B:6A:CA:80:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/H6SCuP4sb64xsrsBu4woAeqV3mF4XktwJRPZET6P54Mu/0/419A2E42DF188ACEF915C715DAE3757B6ACA80C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/419A2E42DF188ACEF915C715DAE3757B6ACA80C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/H6SCuP4sb64xsrsBu4woAeqV3mF4XktwJRPZET6P54Mu/0/3133312e3130302e32342e302f32322d3234203d3e203533313037.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  131.100.24.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2e:d5:98:6c:ad:f8:4f:2c:c6:08:e1:8c:4f:16:f9:08:56:09:
         bd:c4:64:75:e5:b6:e9:b8:d7:b9:66:5f:e2:ef:c2:92:2a:10:
         1e:27:09:72:c1:16:66:98:43:bf:17:0b:a4:f2:3e:e8:5d:63:
         a8:f4:f8:1c:9f:5a:ac:97:d7:2a:2e:3c:83:68:1b:d0:12:de:
         4e:8d:78:cf:ec:d1:4e:ac:b7:ae:a5:8a:a9:ec:27:bf:75:48:
         f4:eb:31:ed:16:28:7a:34:91:a5:95:ff:93:df:6e:82:1e:a3:
         8d:3f:57:47:57:f7:b9:67:7f:a6:bc:ba:02:e9:16:2b:a7:8c:
         5c:8b:7a:ab:7e:da:dc:28:84:ab:6d:60:75:9e:22:5c:19:44:
         e5:e0:31:5e:72:42:fa:b9:4d:67:d8:3b:5c:94:61:02:61:8f:
         53:00:fc:0e:c1:cc:2a:d9:af:22:7b:38:91:98:56:ff:4f:f3:
         5b:a3:86:ac:a1:d3:8c:92:98:44:15:ad:7e:8b:8c:1d:bd:ee:
         e3:fd:8d:81:8a:0b:23:90:92:cc:0f:0b:b9:4a:9f:6a:b3:f4:
         cf:12:b6:5b:a5:e0:c1:01:5f:d2:40:b8:64:7a:82:54:96:f6:
         15:25:76:86:18:5d:0c:74:df:eb:c1:08:b3:dc:8f:f5:a9:90:
         49:2d:31:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:57 2024 by rpki-client on console-fra.rpki-client.org