Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa
File:                     3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa (raw, json)
Hash identifier:          j8ffUH8kwZO9tPigARXco0mwqjA06MsEbm1V7om6ZoM=
Subject key identifier:   9F:B4:BD:58:DC:32:92:B1:52:57:D2:F6:2F:58:5C:C3:D6:AB:D1:7F
Certificate issuer:       /CN=7BE95A26137B30C740C99DDD48DA6FEAD62905B1
Certificate serial:       6CD5B39C5FB6C683EDB9CB249925F2973AF35EB5
Authority key identifier: 7B:E9:5A:26:13:7B:30:C7:40:C9:9D:DD:48:DA:6F:EA:D6:29:05:B1
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7BE95A26137B30C740C99DDD48DA6FEAD62905B1.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa
Signing time:             Sat 16 Sep 2023 18:37:16 +0000
ROA not before:           Sat 16 Sep 2023 18:32:16 +0000
ROA not after:            Sat 14 Sep 2024 18:37:16 +0000
asID:                     263151
IP address blocks:        168.205.24.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:d5:b3:9c:5f:b6:c6:83:ed:b9:cb:24:99:25:f2:97:3a:f3:5e:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7BE95A26137B30C740C99DDD48DA6FEAD62905B1
        Validity
            Not Before: Sep 16 18:32:16 2023 GMT
            Not After : Sep 14 18:37:16 2024 GMT
        Subject: CN=9FB4BD58DC3292B15257D2F62F585CC3D6ABD17F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:0d:d4:07:ae:b6:4c:4d:e4:f8:74:f1:63:26:
                    3a:c9:06:ba:e1:fa:db:f0:7c:9a:04:25:24:0f:85:
                    e7:a2:49:42:14:34:e6:15:74:1b:39:53:2d:e8:ab:
                    ee:fb:14:64:08:2e:93:1b:74:8b:87:90:cd:72:e6:
                    58:68:ab:f9:53:cc:6e:00:81:29:2c:00:35:9e:f8:
                    1b:05:1d:3b:b0:0f:5f:17:b4:d6:d7:48:6b:cc:a3:
                    fc:d2:0e:c6:ec:85:fe:a3:cf:f4:04:f4:99:51:f0:
                    a4:0f:5c:c6:d6:7c:24:b4:fe:ee:2f:18:5d:aa:e9:
                    77:aa:1f:94:3e:ef:14:0a:e8:75:61:44:08:21:d3:
                    97:78:33:30:f5:15:97:9d:39:0d:09:86:19:16:46:
                    ca:5f:ab:bd:6a:2d:cf:e3:6c:59:48:05:00:73:90:
                    be:d1:d1:6c:cb:47:7a:d3:ed:f1:66:96:b5:c7:ba:
                    61:37:d5:28:1d:d5:08:c4:da:cf:06:37:c0:4c:aa:
                    1a:ad:d1:c8:47:14:05:d9:58:b8:87:f1:92:7e:e1:
                    25:7e:d5:95:97:0f:f7:44:90:bc:bb:69:2f:f7:48:
                    aa:d1:a5:fb:1c:8b:55:23:8b:46:11:aa:b9:d7:ad:
                    e2:70:02:6d:3f:aa:31:88:23:c7:c6:a0:f7:75:10:
                    38:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:B4:BD:58:DC:32:92:B1:52:57:D2:F6:2F:58:5C:C3:D6:AB:D1:7F
            X509v3 Authority Key Identifier:
                keyid:7B:E9:5A:26:13:7B:30:C7:40:C9:9D:DD:48:DA:6F:EA:D6:29:05:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/7BE95A26137B30C740C99DDD48DA6FEAD62905B1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7BE95A26137B30C740C99DDD48DA6FEAD62905B1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.205.24.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b2:16:bb:85:f5:41:42:5d:1d:84:03:cb:8a:43:9f:8c:4f:3d:
         ea:9f:81:e1:e8:43:52:c2:94:2e:fa:cb:9c:eb:98:63:9e:b2:
         47:b1:1e:0a:42:a8:2f:ba:6d:80:b5:e9:3d:36:77:c3:93:ff:
         91:03:64:fd:ca:18:21:a0:fa:e3:bc:1e:3c:dc:6a:25:bf:e0:
         e0:1f:3f:a2:2e:6c:2f:c7:2c:76:91:bb:2a:c3:53:1c:73:1c:
         2e:0e:44:46:ab:96:1d:de:0b:83:77:4d:aa:56:2b:63:e6:42:
         48:98:fa:d2:57:bf:5b:20:1d:19:19:da:3a:9c:fd:77:ac:72:
         2b:83:3f:56:4a:0f:ce:c5:c1:dd:2b:8d:e5:dd:65:6a:8d:b9:
         be:54:3e:4e:4e:29:40:f2:2b:3b:6b:80:de:69:d2:63:c2:81:
         d2:38:70:2c:6d:0c:cf:b7:30:11:6a:f4:7f:81:e9:c9:8c:8d:
         fd:ff:da:f8:b4:39:b0:2c:08:8a:24:15:4e:0b:d3:57:17:13:
         04:6d:b6:9c:df:47:50:9c:30:84:ca:82:72:a9:d3:10:33:03:
         2e:34:ce:fe:89:0f:f4:a9:80:2e:f5:c3:28:21:d1:8a:e0:c4:
         a3:95:fa:c5:a2:67:a8:df:60:c9:41:f2:af:55:3f:b4:ed:86:
         b5:0b:ff:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:50 2024 by rpki-client on console-ams.rpki-client.org