Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/34352e37312e32302e302f32322d3232203d3e20323637353936.roa
File:                     34352e37312e32302e302f32322d3232203d3e20323637353936.roa (raw, json)
Hash identifier:          Te7oV3hFsAp3MIkN6VBvdenjIU2vr/fZ2chMidg9lVw=
Subject key identifier:   18:36:8D:D5:EE:83:59:0E:31:C4:15:0E:17:36:3F:D3:B7:58:C5:01
Certificate issuer:       /CN=7A6E161A8B2B31DB30E03A950051D8233F43BE11
Certificate serial:       27F6923EA2D3914B9FDDF304B8DF6F187388CBE4
Authority key identifier: 7A:6E:16:1A:8B:2B:31:DB:30:E0:3A:95:00:51:D8:23:3F:43:BE:11
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/34352e37312e32302e302f32322d3232203d3e20323637353936.roa
Signing time:             Thu 15 Feb 2024 17:53:56 +0000
ROA not before:           Thu 15 Feb 2024 17:48:56 +0000
ROA not after:            Thu 13 Feb 2025 17:53:56 +0000
asID:                     267596
IP address blocks:        45.71.20.0/22 maxlen: 22

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            27:f6:92:3e:a2:d3:91:4b:9f:dd:f3:04:b8:df:6f:18:73:88:cb:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7A6E161A8B2B31DB30E03A950051D8233F43BE11
        Validity
            Not Before: Feb 15 17:48:56 2024 GMT
            Not After : Feb 13 17:53:56 2025 GMT
        Subject: CN=18368DD5EE83590E31C4150E17363FD3B758C501
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:39:bf:92:b3:58:5b:b3:c5:61:1e:a2:57:96:
                    55:fd:eb:1e:c4:ff:cc:20:96:8c:0d:e4:5d:13:a3:
                    68:49:61:f2:d5:15:6c:f4:ef:82:95:6e:c3:d8:a2:
                    2c:2f:aa:e8:1e:74:b1:27:e9:3d:95:fd:e3:7b:02:
                    f4:1b:ce:8f:4d:ff:fe:6b:4c:5e:23:c4:ee:55:69:
                    94:a4:17:5e:42:74:96:3a:73:49:a6:3c:e0:ca:6b:
                    49:46:8e:d4:65:78:87:96:07:ff:05:4c:1a:c5:ed:
                    64:43:0f:21:5e:a5:d3:20:36:fd:c5:1c:0f:53:a3:
                    b5:d3:e7:a9:50:55:12:58:42:f4:90:d3:f9:84:33:
                    d7:e9:b2:c2:e4:7c:cc:fd:11:4c:b4:6f:1b:84:70:
                    e7:da:ae:a6:28:60:61:4c:b6:70:5f:e4:21:07:e6:
                    e1:af:71:77:8d:fa:aa:24:f6:43:65:19:b5:17:ed:
                    59:71:01:57:87:a9:0f:e9:1f:01:2a:ec:69:a3:99:
                    1b:ea:7d:c9:b0:1c:a9:65:ee:e3:11:d6:44:b8:65:
                    f5:f3:f2:a7:6c:e0:57:69:f0:24:31:5e:52:0a:6e:
                    1d:3b:ad:36:16:3a:0c:83:15:a3:46:71:2e:d5:02:
                    b9:02:12:e7:ac:6f:88:6e:d4:ad:d7:5a:c2:b3:02:
                    97:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:36:8D:D5:EE:83:59:0E:31:C4:15:0E:17:36:3F:D3:B7:58:C5:01
            X509v3 Authority Key Identifier:
                keyid:7A:6E:16:1A:8B:2B:31:DB:30:E0:3A:95:00:51:D8:23:3F:43:BE:11

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7A6E161A8B2B31DB30E03A950051D8233F43BE11.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/JA5aGfPS5Xh2DzTbXoM4hM6zF1uYy6qfVXTLUjFU67sz/0/34352e37312e32302e302f32322d3232203d3e20323637353936.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.71.20.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1a:f7:d4:2e:e3:50:96:e8:2e:c9:1e:34:7b:14:98:e9:c5:c5:
         a4:fa:65:f5:ab:a8:5f:d3:e2:ce:e5:ff:5e:bb:f2:bf:1b:eb:
         d8:d0:f6:10:80:78:e4:29:38:95:d2:5f:74:0f:da:de:33:06:
         df:ac:7d:c1:58:11:5b:b1:74:78:b9:6e:b4:a9:5a:b5:5e:c2:
         03:90:3a:40:9a:70:cd:47:fe:25:e4:d5:1d:75:4b:f4:d8:48:
         4a:ca:30:fe:45:0c:99:85:63:73:75:67:fb:cd:72:10:3a:94:
         cb:e5:f7:92:05:06:de:28:7b:c1:e0:60:c6:c0:2d:e5:68:3b:
         50:6a:9a:d7:b2:7a:35:1a:99:32:0e:57:e2:2f:86:d1:3c:d6:
         3a:3f:5b:39:e8:e2:4d:3c:4a:f2:8c:ae:17:b7:3b:07:f9:7d:
         89:11:57:9c:cf:1f:23:ac:28:03:51:91:f8:74:61:4e:1d:7e:
         9b:26:a5:83:8d:93:c9:74:9a:63:83:72:68:e8:3f:82:3c:78:
         42:75:10:f1:e3:76:60:a0:e5:f5:47:67:51:d7:d5:61:9b:2a:
         82:c8:ef:6e:03:0c:f0:de:ed:25:9f:4c:a0:cd:00:99:7e:ec:
         cc:f9:71:a1:5b:c5:7b:87:f9:9a:34:6c:d2:a7:58:fb:66:60:
         0c:d5:82:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:55 2024 by rpki-client on console-ams.rpki-client.org