Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/323830343a343365303a3a2f33332d3333203d3e20323637353936.roa
File:                     323830343a343365303a3a2f33332d3333203d3e20323637353936.roa (raw, json)
Hash identifier:          pM0naeLUDZZ943P+a94jkWT2jCQalTpfCvxCe4GsFWI=
Subject key identifier:   61:B6:E5:50:D5:B4:67:87:1C:00:55:1E:2E:99:D1:AF:F3:DB:84:B3
Certificate issuer:       /CN=7A6E161A8B2B31DB30E03A950051D8233F43BE11
Certificate serial:       25B687D3092E12BB0D8F64AFDF88CEF64560FE37
Authority key identifier: 7A:6E:16:1A:8B:2B:31:DB:30:E0:3A:95:00:51:D8:23:3F:43:BE:11
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/323830343a343365303a3a2f33332d3333203d3e20323637353936.roa
Signing time:             Thu 15 Feb 2024 17:54:30 +0000
ROA not before:           Thu 15 Feb 2024 17:49:30 +0000
ROA not after:            Thu 13 Feb 2025 17:54:30 +0000
asID:                     267596
IP address blocks:        2804:43e0::/33 maxlen: 33

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            25:b6:87:d3:09:2e:12:bb:0d:8f:64:af:df:88:ce:f6:45:60:fe:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7A6E161A8B2B31DB30E03A950051D8233F43BE11
        Validity
            Not Before: Feb 15 17:49:30 2024 GMT
            Not After : Feb 13 17:54:30 2025 GMT
        Subject: CN=61B6E550D5B467871C00551E2E99D1AFF3DB84B3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:64:51:f8:6b:31:f8:f7:22:ae:d1:50:43:b0:
                    1e:2d:86:ee:97:e9:b5:32:78:3d:95:29:47:98:66:
                    b4:f7:5a:f6:54:15:e5:58:62:8f:11:05:36:f5:3e:
                    c7:43:fc:ef:81:d0:f0:98:68:54:fe:35:2e:dc:ea:
                    0e:16:25:82:26:d2:6a:81:82:0e:67:62:9f:b3:7e:
                    ee:8e:dc:97:d1:8e:e1:33:61:fe:6d:da:45:09:5d:
                    80:6e:1c:cd:6b:63:ab:ce:62:10:15:a5:a7:27:9c:
                    db:59:74:67:14:1c:5e:5c:5a:a1:7a:97:9b:d6:a6:
                    fc:9f:cf:3f:a5:2c:17:18:b0:ae:79:fc:69:f4:4b:
                    0a:ee:a6:d3:7c:a5:38:4d:63:24:d9:58:2f:26:ab:
                    de:d8:63:06:ca:6c:05:3d:4f:5f:36:02:f9:e3:4d:
                    51:12:4b:f5:9d:03:16:10:49:b5:55:7b:97:ab:0d:
                    d8:28:58:45:0d:e8:f4:77:13:c9:8b:0c:d1:34:22:
                    0d:40:aa:26:5c:d5:7b:8f:41:7b:fe:4b:35:4c:99:
                    e7:3b:4a:cc:42:8f:12:10:21:3e:16:12:f8:ab:44:
                    02:35:c4:e3:5f:3e:d0:b3:96:a9:9e:fa:fb:cc:c9:
                    49:4b:b7:07:b6:43:05:62:66:f1:ec:ec:ec:a8:12:
                    1c:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:B6:E5:50:D5:B4:67:87:1C:00:55:1E:2E:99:D1:AF:F3:DB:84:B3
            X509v3 Authority Key Identifier:
                keyid:7A:6E:16:1A:8B:2B:31:DB:30:E0:3A:95:00:51:D8:23:3F:43:BE:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/323830343a343365303a3a2f33332d3333203d3e20323637353936.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:43e0::/33

    Signature Algorithm: sha256WithRSAEncryption
         0a:7e:c0:6b:bd:bf:04:62:71:4c:3d:72:ec:97:e5:4b:5f:aa:
         bc:07:5c:a3:ec:b8:b5:8e:5e:dc:ea:58:26:86:d4:43:92:72:
         eb:43:e7:48:cb:7d:2f:29:b5:9a:b1:1d:3f:03:db:e2:3a:8b:
         36:82:2b:1d:ed:58:8d:02:57:84:1d:d5:41:04:f4:d5:96:cd:
         41:3f:9c:40:80:f8:fd:6f:d0:25:10:8e:71:84:06:58:dd:38:
         6a:9b:b7:fe:c5:ac:6a:a1:df:f8:00:80:9e:0f:37:73:b8:ff:
         f2:14:05:0b:be:b4:16:4f:d7:ac:b5:91:d4:30:62:42:ec:a8:
         49:57:fa:b2:1a:7c:ec:1a:1f:7c:e9:6a:7d:e6:84:bc:ba:15:
         0a:aa:ac:1b:77:d6:04:00:65:f0:a2:9d:ac:50:2a:57:68:13:
         8e:d2:52:82:42:b4:89:80:4a:30:aa:a0:ac:47:63:77:57:e6:
         6f:b7:ce:29:71:f3:df:98:12:93:98:c5:d1:f5:19:c9:4a:78:
         7f:54:a1:f3:e2:6f:aa:9e:72:63:e0:d5:c9:9b:5c:39:8a:e6:
         6c:a6:54:89:37:e8:48:21:cc:69:3c:5c:36:e7:b9:7b:dd:50:
         fb:7e:0c:51:2f:9e:11:d2:e4:43:09:b0:36:a3:9f:5d:3c:f8:
         91:6d:15:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:05 2024 by rpki-client on console-fra.rpki-client.org