Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/He5iKo5Uvy3SsTHbn2Kgr2eXnxDz3793t4L2FwBnsULU/0/3138392e3132372e3134342e302f32322d3232203d3e20323730373034.roa
File: 3138392e3132372e3134342e302f32322d3232203d3e20323730373034.roa (raw, json)
Hash identifier: cKppDjg15XGqHP5VE+Ih6G66OwTO/3PTimS9AXEeOq8=
Subject key identifier: F4:A4:9E:70:51:25:9E:49:0A:C6:2D:E1:ED:B7:E7:FC:73:88:93:75
Certificate issuer: /CN=4E954E92398DE10004D8805C61AFDF6831FA4AA5
Certificate serial: 4C093D55D204FDB544D804513E2EE87067247AD5
Authority key identifier: 4E:95:4E:92:39:8D:E1:00:04:D8:80:5C:61:AF:DF:68:31:FA:4A:A5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4E954E92398DE10004D8805C61AFDF6831FA4AA5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/He5iKo5Uvy3SsTHbn2Kgr2eXnxDz3793t4L2FwBnsULU/0/3138392e3132372e3134342e302f32322d3232203d3e20323730373034.roa
Signing time: Tue 20 May 2025 18:39:19 +0000
ROA not before: Tue 20 May 2025 18:34:19 +0000
ROA not after: Tue 19 May 2026 18:39:19 +0000
asID: 270704
IP address blocks: 189.127.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:09:3d:55:d2:04:fd:b5:44:d8:04:51:3e:2e:e8:70:67:24:7a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E954E92398DE10004D8805C61AFDF6831FA4AA5
Validity
Not Before: May 20 18:34:19 2025 GMT
Not After : May 19 18:39:19 2026 GMT
Subject: CN=F4A49E7051259E490AC62DE1EDB7E7FC73889375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:34:0e:78:bb:f3:9f:c8:94:b2:01:73:48:cf:
df:a5:df:3c:2d:45:23:23:1f:1a:b5:2c:af:61:e7:
8d:8a:74:e2:04:08:96:81:e3:e7:53:f7:84:ea:fb:
80:50:5e:9d:65:6f:aa:02:5a:c7:de:fd:43:e3:49:
40:da:c3:a4:c2:40:e8:b9:fc:41:2e:2f:c5:8e:8d:
ed:50:7d:18:c6:ce:e1:16:b5:48:1d:3f:41:f7:e6:
53:f8:ed:4c:90:18:7a:3e:0e:4f:6b:84:21:87:65:
bd:36:df:41:d9:ee:6b:15:5a:16:27:d5:81:04:62:
7c:79:a4:7b:32:b6:3e:a8:56:10:89:f3:5b:1c:a6:
a2:bc:14:56:96:bb:79:cf:9c:e6:fc:0e:55:62:a2:
a1:28:52:69:3c:d6:23:63:4a:3e:cc:fb:fa:6b:a3:
9c:8e:70:20:81:c9:75:21:41:c2:ae:81:12:2b:20:
77:e5:1a:c9:28:58:fb:ba:eb:ab:a7:fe:58:61:92:
38:91:32:8e:e0:a5:51:58:23:77:9e:77:f6:f1:ae:
93:e6:e6:9e:5c:56:94:96:b2:e3:a1:84:55:3f:21:
a5:86:1c:b4:f2:8d:7e:06:56:bc:81:41:36:60:99:
6a:d3:61:8f:16:9f:ba:c6:a5:c8:7c:87:b9:9f:3e:
f6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A4:9E:70:51:25:9E:49:0A:C6:2D:E1:ED:B7:E7:FC:73:88:93:75
X509v3 Authority Key Identifier:
keyid:4E:95:4E:92:39:8D:E1:00:04:D8:80:5C:61:AF:DF:68:31:FA:4A:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/He5iKo5Uvy3SsTHbn2Kgr2eXnxDz3793t4L2FwBnsULU/0/4E954E92398DE10004D8805C61AFDF6831FA4AA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4E954E92398DE10004D8805C61AFDF6831FA4AA5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/He5iKo5Uvy3SsTHbn2Kgr2eXnxDz3793t4L2FwBnsULU/0/3138392e3132372e3134342e302f32322d3232203d3e20323730373034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.127.144.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:4a:d3:a1:c2:d0:5f:55:0f:90:d3:1b:70:ea:bf:25:6e:29:
69:d9:d0:55:83:f2:db:e5:59:94:f0:a8:1c:cc:b4:cd:23:04:
06:e3:8b:a8:34:03:70:64:0a:00:e7:80:18:52:ce:40:68:ce:
06:dd:3c:f2:fd:b5:ce:ad:d6:e4:77:5d:3a:15:20:4f:d9:7b:
c6:ce:8b:73:b8:32:eb:76:e9:47:c4:39:9b:12:95:79:be:79:
63:54:fb:45:16:5d:40:74:6f:7a:91:fd:1a:04:56:52:b8:8e:
ea:ff:74:5b:24:c7:cb:5b:63:07:62:50:61:bf:a6:3c:36:96:
d6:ed:5f:54:e8:f6:a5:1e:d1:59:77:fb:01:1e:c8:67:31:f1:
db:21:b2:a6:20:d5:c7:37:a5:90:4b:d7:f6:ae:66:86:6b:85:
fb:d9:6a:46:d1:e0:71:85:d4:bf:9d:81:02:c2:36:58:0d:b3:
89:90:a1:6c:7d:d3:93:93:48:b2:a9:0a:0e:2b:c6:67:af:df:
e5:a3:b9:72:8d:0d:bc:be:ba:93:58:27:04:ec:f8:53:b6:61:
39:b0:e0:7d:2b:c5:b7:29:a9:3e:98:2e:c8:8d:c6:ed:23:c3:
7b:64:99:de:9e:db:8a:bf:ce:3f:56:9a:68:a3:93:e5:e8:f6:
17:b7:a0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 10:15:19 2025 by rpki-client