Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/0/3133382e3138362e3131322e302f32332d3233203d3e20323633383636.roa
File:                     3133382e3138362e3131322e302f32332d3233203d3e20323633383636.roa (raw, json)
Hash identifier:          s8iUuOoxYDBe+m8r/rvXqKmth1R7WFBpuP56Fsr0V2Q=
Subject key identifier:   02:4B:63:94:4C:F0:C7:C8:8A:79:1C:A2:5F:85:80:6E:AE:93:3D:70
Certificate issuer:       /CN=4A621C555E0A637F8A588F23BDFAF9CBF530BD49
Certificate serial:       1B467323792E2633C1926BAED5D03643058A4077
Authority key identifier: 4A:62:1C:55:5E:0A:63:7F:8A:58:8F:23:BD:FA:F9:CB:F5:30:BD:49
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4A621C555E0A637F8A588F23BDFAF9CBF530BD49.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/0/3133382e3138362e3131322e302f32332d3233203d3e20323633383636.roa
Signing time:             Thu 19 Oct 2023 20:41:04 +0000
ROA not before:           Thu 19 Oct 2023 20:36:04 +0000
ROA not after:            Thu 17 Oct 2024 20:41:04 +0000
asID:                     263866
IP address blocks:        138.186.112.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:46:73:23:79:2e:26:33:c1:92:6b:ae:d5:d0:36:43:05:8a:40:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4A621C555E0A637F8A588F23BDFAF9CBF530BD49
        Validity
            Not Before: Oct 19 20:36:04 2023 GMT
            Not After : Oct 17 20:41:04 2024 GMT
        Subject: CN=024B63944CF0C7C88A791CA25F85806EAE933D70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:de:30:a9:a2:f2:a4:1e:77:4a:29:0f:4a:78:
                    5e:c0:9c:ed:3b:2e:91:fb:eb:27:e9:91:d3:e9:37:
                    97:8d:da:51:c6:c7:b7:98:c2:3d:a7:d5:fc:d6:29:
                    93:7b:ce:ae:1f:84:0a:cf:29:4e:68:b1:9a:f0:1a:
                    36:09:4f:d6:40:d6:c0:1f:01:ad:2a:84:b5:f4:4c:
                    4b:43:9e:88:ce:8e:ca:40:bb:74:59:c5:79:2b:b6:
                    c6:d8:80:ed:60:1e:90:d7:86:a6:51:60:90:41:4d:
                    89:a7:88:21:de:7a:59:c4:bc:3b:1f:84:4f:c3:6f:
                    13:21:cf:c0:88:14:3f:37:57:f8:c5:06:7e:11:d7:
                    42:00:35:93:2a:b9:35:4a:2e:49:53:e4:63:a6:cf:
                    34:04:31:3d:03:01:7a:6a:46:9e:8c:20:3d:15:c5:
                    f6:48:92:97:ff:9e:c7:03:0a:8c:95:d5:13:72:50:
                    f3:bc:42:31:2b:4f:6e:44:a1:9d:bb:99:90:3f:3b:
                    e4:b3:bf:6a:63:7e:cb:1f:b3:c7:c3:18:76:a7:eb:
                    e7:48:2e:bc:8b:69:9c:8b:d9:b6:06:45:bb:35:6d:
                    4c:79:e0:8a:eb:c0:5b:51:b7:58:68:8f:2a:26:38:
                    02:50:64:0c:35:37:8e:b5:79:80:7e:69:b3:01:e1:
                    e1:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:4B:63:94:4C:F0:C7:C8:8A:79:1C:A2:5F:85:80:6E:AE:93:3D:70
            X509v3 Authority Key Identifier:
                keyid:4A:62:1C:55:5E:0A:63:7F:8A:58:8F:23:BD:FA:F9:CB:F5:30:BD:49

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/0/4A621C555E0A637F8A588F23BDFAF9CBF530BD49.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4A621C555E0A637F8A588F23BDFAF9CBF530BD49.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/0/3133382e3138362e3131322e302f32332d3233203d3e20323633383636.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.186.112.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7a:33:dc:84:f3:ef:35:17:3c:8b:b2:d8:56:65:79:5c:f0:cb:
         27:d1:42:04:38:2e:0e:d7:b8:f1:0c:31:3f:62:94:7a:04:19:
         56:66:37:07:93:b3:78:70:7e:47:e1:af:c6:d2:fd:69:8d:5c:
         5b:d9:df:36:50:9b:04:cc:9c:dc:a0:0c:be:be:a6:64:d2:9c:
         85:39:6f:1e:c0:71:10:3a:28:e0:8b:23:54:6c:db:b1:de:86:
         6c:f7:d8:44:4e:cb:27:30:b8:4c:40:40:e8:c5:e0:04:77:e4:
         28:af:61:a9:40:0d:f8:2c:2a:3b:9b:b6:50:15:42:05:df:04:
         93:42:9d:43:bf:d6:d4:75:01:cc:f2:54:e1:d5:7f:f9:e8:d4:
         42:e3:7c:86:97:99:c5:4f:97:1a:09:88:7e:32:54:83:e0:f7:
         0b:4c:22:14:cd:04:ac:47:9e:b1:fe:db:f3:05:6c:89:c6:42:
         39:a9:c6:c9:18:1e:9c:72:50:00:aa:af:b2:52:d1:7f:db:c8:
         d4:eb:97:a5:a2:0a:d9:7c:5b:26:60:d5:ea:6e:20:65:b8:ce:
         08:49:d4:e3:b4:57:2b:6a:1b:8b:2c:7a:4c:fd:86:8e:46:ec:
         29:72:56:06:5a:32:de:f7:98:8a:35:81:14:0b:99:a9:ee:c8:
         33:0b:4a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:06 2024 by rpki-client on console-fra.rpki-client.org