Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3230302e3231352e3136302e302f32322d3234203d3e20323633363536.roa
File:                     3230302e3231352e3136302e302f32322d3234203d3e20323633363536.roa (raw, json)
Hash identifier:          r/pHECAVX+NYTWKn2zQF/9K3VRBfmRP6UnHxN7zan/M=
Subject key identifier:   D0:7E:D3:FF:60:A3:97:5E:C9:BD:04:46:D3:79:B5:EB:10:49:EF:B6
Certificate issuer:       /CN=9129AD41D8674385271EFA3A05D3D27494319FC0
Certificate serial:       06BA909DA119E86A61F54B80E15BDC342F738CEB
Authority key identifier: 91:29:AD:41:D8:67:43:85:27:1E:FA:3A:05:D3:D2:74:94:31:9F:C0
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/9129AD41D8674385271EFA3A05D3D27494319FC0.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3230302e3231352e3136302e302f32322d3234203d3e20323633363536.roa
Signing time:             Thu 12 Oct 2023 18:26:00 +0000
ROA not before:           Thu 12 Oct 2023 18:21:00 +0000
ROA not after:            Thu 10 Oct 2024 18:26:00 +0000
asID:                     263656
IP address blocks:        200.215.160.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:ba:90:9d:a1:19:e8:6a:61:f5:4b:80:e1:5b:dc:34:2f:73:8c:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9129AD41D8674385271EFA3A05D3D27494319FC0
        Validity
            Not Before: Oct 12 18:21:00 2023 GMT
            Not After : Oct 10 18:26:00 2024 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:38:92:0c:de:c7:11:d8:5b:73:93:2d:ff:ab:
                    59:c5:00:83:0f:67:5b:83:ff:77:73:46:7a:e0:d4:
                    fe:4e:26:94:b5:b0:2d:7e:7b:58:6e:75:61:11:b2:
                    03:40:e4:ab:50:93:55:62:18:46:62:4a:aa:97:d0:
                    ff:54:67:ff:b8:1b:f5:e3:01:48:54:3a:c6:0d:ec:
                    68:1b:c7:24:c6:1f:fd:dc:c3:10:44:58:67:4b:c0:
                    7c:c7:a9:8f:4c:24:74:e3:ad:40:ce:72:68:7d:9d:
                    48:e2:1e:be:40:41:11:89:bf:12:5e:7c:b1:f6:60:
                    db:75:b4:36:09:fc:15:0f:de:b1:ec:a5:d8:b7:24:
                    2f:c5:af:6f:6f:29:a1:04:b8:44:22:ba:08:16:0c:
                    db:6f:68:1f:a7:17:16:c7:f8:3e:c8:a5:00:dc:f9:
                    d1:6e:a5:a1:a1:c5:8d:33:c8:92:9d:7b:d7:2a:49:
                    5b:48:e8:58:0f:b9:cf:06:94:a9:58:ab:b2:ea:76:
                    1c:52:2a:f1:57:97:9e:3c:9d:14:98:fe:ab:a8:94:
                    ae:9e:52:a5:18:58:10:29:45:08:be:31:a2:3e:36:
                    a4:5b:86:e2:9e:3a:15:a3:53:f1:60:b5:ac:80:ad:
                    20:01:ff:fe:1d:1b:1a:4a:00:06:4f:48:9e:9f:12:
                    f0:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:7E:D3:FF:60:A3:97:5E:C9:BD:04:46:D3:79:B5:EB:10:49:EF:B6
            X509v3 Authority Key Identifier:
                keyid:91:29:AD:41:D8:67:43:85:27:1E:FA:3A:05:D3:D2:74:94:31:9F:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/9129AD41D8674385271EFA3A05D3D27494319FC0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/9129AD41D8674385271EFA3A05D3D27494319FC0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3230302e3231352e3136302e302f32322d3234203d3e20323633363536.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.215.160.0/22

    Signature Algorithm: sha256WithRSAEncryption
         81:b3:73:f1:ee:a3:72:97:83:40:18:84:8d:b9:99:b1:ff:3d:
         90:35:cd:f8:f0:99:ee:dd:ad:a8:1a:20:74:4e:b3:1c:3c:ed:
         72:fe:bf:dc:e4:a7:59:21:6d:b3:1e:48:7f:e1:d0:a5:7f:e4:
         5d:b8:c9:82:f7:d6:68:6d:f9:51:74:68:19:5f:7c:58:98:6e:
         0f:0c:1c:e4:83:d6:cc:b9:7c:93:ba:bc:b0:b7:06:f2:4d:b4:
         48:52:a6:53:04:e8:94:01:ab:1a:2f:66:46:f7:58:29:cb:88:
         2a:34:9a:35:60:be:af:e2:11:20:bf:05:90:7a:9b:41:2f:40:
         80:91:47:ad:6d:78:4a:2c:9d:e2:2a:3d:54:a9:09:fd:62:fc:
         35:90:d5:e1:99:04:3f:74:67:31:50:08:c1:8e:84:ae:c5:b6:
         1f:f2:ac:ab:59:d7:0a:b5:e8:92:97:98:bd:61:30:f2:c8:ef:
         10:8b:10:d0:98:88:64:56:c3:c0:b7:cf:fc:e7:67:c7:01:fd:
         52:f8:67:7c:b3:53:6b:45:3c:32:6c:b0:0c:73:c6:11:51:e4:
         5b:da:b5:c3:9e:02:3d:10:61:63:12:2e:5a:2f:de:d5:3e:a1:
         e4:1e:0f:78:55:c5:cd:ea:22:c2:aa:8c:ba:f7:aa:da:e5:18:
         ff:8f:62:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:06 2024 by rpki-client on console-fra.rpki-client.org