Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/HUcu1SCz63zDiEnhX5DG2uqwBFhc1vrtUDLzDdvwRbdC/0/323830343a363163303a633030303a3a2f33342d3334203d3e20323639323534.roa
File:                     323830343a363163303a633030303a3a2f33342d3334203d3e20323639323534.roa (raw, json)
Hash identifier:          Z7SUUdK5VJuPNbr1Ysj+XHML94eqKELGg2E8S1xFNiM=
Subject key identifier:   BA:59:B1:BC:4A:48:E5:2B:7F:3C:BF:D4:F5:D3:A4:7A:9D:00:40:A4
Certificate issuer:       /CN=4703DF576DCFAC4B11DA9AF278028714F3ECD9FC
Certificate serial:       0FB919AD8FEC008254132356DF269DB712FA9150
Authority key identifier: 47:03:DF:57:6D:CF:AC:4B:11:DA:9A:F2:78:02:87:14:F3:EC:D9:FC
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4703DF576DCFAC4B11DA9AF278028714F3ECD9FC.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/HUcu1SCz63zDiEnhX5DG2uqwBFhc1vrtUDLzDdvwRbdC/0/323830343a363163303a633030303a3a2f33342d3334203d3e20323639323534.roa
Signing time:             Tue 15 Aug 2023 14:31:22 +0000
ROA not before:           Tue 15 Aug 2023 14:26:22 +0000
ROA not after:            Tue 13 Aug 2024 14:31:22 +0000
asID:                     269254
IP address blocks:        2804:61c0:c000::/34 maxlen: 34

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:b9:19:ad:8f:ec:00:82:54:13:23:56:df:26:9d:b7:12:fa:91:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4703DF576DCFAC4B11DA9AF278028714F3ECD9FC
        Validity
            Not Before: Aug 15 14:26:22 2023 GMT
            Not After : Aug 13 14:31:22 2024 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:1b:af:d9:ca:88:ff:45:b2:83:46:b6:9f:7f:
                    99:c3:a4:e8:a4:a4:44:16:8c:68:26:d6:f2:c7:07:
                    e5:95:86:cd:fd:76:50:3f:56:4f:06:c3:10:06:1f:
                    6a:0e:fe:9f:1d:bf:09:94:5e:a2:4d:28:6e:f1:d3:
                    fe:33:d1:66:6d:2d:7b:61:ab:f0:46:77:f5:2b:40:
                    74:f5:e4:74:5d:79:c7:19:e7:cb:ca:2a:b5:5a:56:
                    65:44:5c:45:78:d9:72:7a:04:f8:d4:ce:87:1b:d0:
                    a8:1e:78:9a:55:03:5f:56:84:42:b3:be:9a:91:8a:
                    56:76:68:47:75:85:d7:ac:4e:1c:93:d3:32:46:02:
                    49:c4:e8:7d:85:f7:54:59:4f:cd:9a:a4:d2:04:40:
                    12:a6:78:ae:a9:9c:42:39:67:d8:1e:a6:40:32:24:
                    1a:67:7d:f0:5d:64:19:d1:5c:ad:97:4b:f4:f7:89:
                    d3:f8:b9:dc:1a:34:27:e6:ca:65:6b:ba:ec:32:dc:
                    d9:ea:23:6f:ff:8f:79:b1:1f:ba:b2:7b:62:af:cd:
                    e2:e5:58:a1:55:9d:a2:cf:6a:9d:09:40:e2:f1:b7:
                    f1:a0:4c:2c:45:1d:b1:d1:c9:c7:69:5e:af:5d:0b:
                    e5:b2:55:b7:ba:d0:7f:d9:d8:41:5f:5b:d7:12:01:
                    3e:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:59:B1:BC:4A:48:E5:2B:7F:3C:BF:D4:F5:D3:A4:7A:9D:00:40:A4
            X509v3 Authority Key Identifier:
                keyid:47:03:DF:57:6D:CF:AC:4B:11:DA:9A:F2:78:02:87:14:F3:EC:D9:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/HUcu1SCz63zDiEnhX5DG2uqwBFhc1vrtUDLzDdvwRbdC/0/4703DF576DCFAC4B11DA9AF278028714F3ECD9FC.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4703DF576DCFAC4B11DA9AF278028714F3ECD9FC.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/HUcu1SCz63zDiEnhX5DG2uqwBFhc1vrtUDLzDdvwRbdC/0/323830343a363163303a633030303a3a2f33342d3334203d3e20323639323534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:61c0:c000::/34

    Signature Algorithm: sha256WithRSAEncryption
         d7:31:c5:20:c6:d4:94:4a:3e:76:28:ea:39:65:bb:5c:5a:57:
         24:24:d5:7f:9a:cf:0f:e9:e5:3e:12:17:e5:f6:be:02:ce:e1:
         ec:1e:f1:46:91:9f:31:b4:69:14:38:3d:e0:cc:c9:0b:d7:3e:
         57:9b:26:e4:b7:91:3f:fb:5d:f4:3d:62:bc:29:52:56:0a:9a:
         28:7e:3b:6f:44:61:d5:87:9b:87:e0:7d:5e:84:8c:9c:3d:7d:
         d9:de:a8:63:75:61:cf:c8:cd:ca:6a:cd:78:13:f9:21:cf:df:
         84:ba:68:04:99:6e:c3:53:37:3a:cc:a7:35:5d:15:c2:4e:54:
         7b:21:ba:9f:86:87:da:9b:e5:79:81:37:71:15:ab:98:fe:e5:
         fa:6d:9c:44:ff:15:c9:77:6f:e8:a2:3c:a6:79:08:66:80:8d:
         c1:ca:1c:16:43:20:7c:00:ae:89:15:d1:ff:fa:84:6e:d4:ca:
         6a:77:d8:ee:f0:7f:14:70:09:51:57:e9:8a:2d:6a:b9:27:6b:
         f0:15:1e:48:7b:61:bf:27:01:b2:ff:64:f2:74:4c:d2:df:fc:
         85:9d:0e:9d:67:11:20:c8:f3:d3:54:1d:0c:43:e7:59:ce:ec:
         1f:cf:ca:fc:a1:71:18:bb:02:c6:ad:ea:ad:4e:8d:46:41:96:
         6e:6b:25:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:58 2024 by rpki-client on console-fra.rpki-client.org