Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/XXvt41aR2BHTBdQKekBP1hhzBK47k4HWvv78U5C4ybU/0/3138392e3132372e3138382e302f32332d3233203d3e20323730373136.roa
File:                     3138392e3132372e3138382e302f32332d3233203d3e20323730373136.roa (raw, json)
Hash identifier:          54zmHGStcEZGCkxf07jcf57bndIqU9YfB1xJ3VIKUZc=
Subject key identifier:   C8:BE:1F:F5:97:86:11:28:35:CA:46:CE:88:D5:EB:66:78:C7:E4:F2
Certificate issuer:       /CN=88C6A847E412F389EC4F9E9CB3A3F5E384ACBA60
Certificate serial:       761DB657D49FEF00724F8BF0DED227F667B45A2C
Authority key identifier: 88:C6:A8:47:E4:12:F3:89:EC:4F:9E:9C:B3:A3:F5:E3:84:AC:BA:60
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/88C6A847E412F389EC4F9E9CB3A3F5E384ACBA60.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/XXvt41aR2BHTBdQKekBP1hhzBK47k4HWvv78U5C4ybU/0/3138392e3132372e3138382e302f32332d3233203d3e20323730373136.roa
Signing time:             Tue 24 Sep 2024 21:44:55 +0000
ROA not before:           Tue 24 Sep 2024 21:39:55 +0000
ROA not after:            Tue 23 Sep 2025 21:44:55 +0000
asID:                     270716
IP address blocks:        189.127.188.0/23 maxlen: 23

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:1d:b6:57:d4:9f:ef:00:72:4f:8b:f0:de:d2:27:f6:67:b4:5a:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88C6A847E412F389EC4F9E9CB3A3F5E384ACBA60
        Validity
            Not Before: Sep 24 21:39:55 2024 GMT
            Not After : Sep 23 21:44:55 2025 GMT
        Subject: CN=C8BE1FF59786112835CA46CE88D5EB6678C7E4F2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f7:66:99:03:e5:4f:66:db:80:43:9e:6c:a5:
                    7d:79:83:46:a8:d7:ce:9a:f3:35:fd:27:a1:8a:61:
                    fe:97:7f:de:2b:af:17:62:d0:13:2f:a3:65:1c:ef:
                    65:7f:ae:a5:1c:5a:97:72:f3:a4:40:9f:03:3a:85:
                    d9:67:f5:91:58:0c:aa:0d:e4:e8:35:37:66:c5:26:
                    a3:1b:56:1b:55:35:93:ce:a0:15:e0:0e:e1:c8:09:
                    c3:0b:b3:76:7b:0f:3f:9f:d3:42:ce:ce:7b:4a:5b:
                    84:5f:ea:6d:5c:84:c1:1d:67:0a:5c:62:fe:cc:38:
                    7e:af:59:bd:c5:e8:6c:f6:55:09:b0:43:db:13:53:
                    15:37:4c:a5:4f:c8:31:1b:12:2f:84:84:7b:eb:ae:
                    61:aa:01:b6:99:d6:29:52:38:4e:e2:8e:f0:f1:bd:
                    72:c7:c4:70:50:b9:45:6e:8e:7c:06:be:c7:d2:1a:
                    86:75:6f:46:a7:7a:a4:b1:29:f5:2b:1f:07:ce:09:
                    38:d2:19:7d:4f:ba:0d:6c:67:33:be:75:0d:30:d4:
                    41:3c:1c:80:2b:d0:82:24:d5:9b:e2:b1:4b:91:e6:
                    aa:7b:70:30:08:01:03:af:e1:0b:64:1b:d9:26:1d:
                    ab:71:f7:d2:bc:d3:76:bf:f7:33:6c:77:bb:17:5d:
                    ec:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:BE:1F:F5:97:86:11:28:35:CA:46:CE:88:D5:EB:66:78:C7:E4:F2
            X509v3 Authority Key Identifier:
                keyid:88:C6:A8:47:E4:12:F3:89:EC:4F:9E:9C:B3:A3:F5:E3:84:AC:BA:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/XXvt41aR2BHTBdQKekBP1hhzBK47k4HWvv78U5C4ybU/0/88C6A847E412F389EC4F9E9CB3A3F5E384ACBA60.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/88C6A847E412F389EC4F9E9CB3A3F5E384ACBA60.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/XXvt41aR2BHTBdQKekBP1hhzBK47k4HWvv78U5C4ybU/0/3138392e3132372e3138382e302f32332d3233203d3e20323730373136.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  189.127.188.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7a:3e:8a:84:71:28:8d:89:73:28:ad:75:7f:df:57:6d:4c:19:
         24:17:ab:8a:64:6e:96:4a:29:d2:a3:a7:ac:ca:0b:d7:fc:7e:
         c8:73:1d:15:2e:c9:75:9c:6d:19:e3:80:6a:61:33:b2:15:67:
         8b:e0:23:9a:dd:a3:38:a0:25:ad:c1:62:05:65:20:c5:3c:90:
         08:f4:c3:2b:02:32:cb:af:c6:05:15:95:47:bc:4d:3a:a5:ea:
         7a:5b:0a:9f:70:c8:3c:31:50:a3:eb:d0:f0:85:b1:73:99:45:
         2a:b0:8d:fe:45:83:57:2b:e8:6a:c0:ba:80:e2:10:1e:b3:db:
         a7:a6:38:0c:b3:f3:94:26:90:18:cf:84:91:19:92:b5:a9:62:
         2b:bd:1f:69:4e:40:40:9e:e7:6a:af:c5:77:ef:28:9e:f9:85:
         5e:45:8f:1b:20:06:76:8a:0e:d9:1d:07:a3:e9:89:df:9e:be:
         da:51:20:b9:cc:04:34:71:ca:44:9f:65:eb:26:91:bd:3a:9a:
         cd:0d:2c:5c:29:e0:ff:e4:eb:ac:64:f6:85:ce:3d:57:d2:88:
         5e:38:70:c8:88:fc:43:df:82:18:a3:eb:0f:3d:61:d8:1e:e4:
         8d:36:2a:19:81:3c:db:a8:a9:8a:6e:d2:d2:b2:f7:09:33:7f:
         44:bc:96:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:27:45 2024 by rpki-client on console-fra.rpki-client.org