Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/1n7629KYyEh3xG4BBtWuEC21gW4SfrumaD8iVDBNu75/5/323830343a3832303a3a2f33322d3332203d3e20323632333532.roa
File: 323830343a3832303a3a2f33322d3332203d3e20323632333532.roa (raw, json)
Hash identifier: 7UetCsi4xCN68MthxDVnz1mR0X9wttzmIMssZUqnvTk=
Subject key identifier: 88:5A:39:79:31:41:17:16:B0:90:D1:E3:0A:C6:D1:50:77:0C:3C:2A
Certificate issuer: /CN=8170C4085A20CD6AA451FBCAC2CB8F2CCDBA3E97
Certificate serial: 38FCA4C4F6DB8ACB1211E384E96051FB545CF67C
Authority key identifier: 81:70:C4:08:5A:20:CD:6A:A4:51:FB:CA:C2:CB:8F:2C:CD:BA:3E:97
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8170C4085A20CD6AA451FBCAC2CB8F2CCDBA3E97.cer
Subject info access: rsync://rpki-repo.registro.br/repo/1n7629KYyEh3xG4BBtWuEC21gW4SfrumaD8iVDBNu75/5/323830343a3832303a3a2f33322d3332203d3e20323632333532.roa
Signing time: Thu 06 Mar 2025 15:41:21 +0000
ROA not before: Thu 06 Mar 2025 15:36:21 +0000
ROA not after: Thu 05 Mar 2026 15:41:21 +0000
asID: 262352
IP address blocks: 2804:820::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:fc:a4:c4:f6:db:8a:cb:12:11:e3:84:e9:60:51:fb:54:5c:f6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8170C4085A20CD6AA451FBCAC2CB8F2CCDBA3E97
Validity
Not Before: Mar 6 15:36:21 2025 GMT
Not After : Mar 5 15:41:21 2026 GMT
Subject: CN=885A397931411716B090D1E30AC6D150770C3C2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8d:4e:d0:b6:12:c6:f0:8b:0a:d1:12:eb:fc:
d7:88:d3:05:66:e9:e0:ae:b2:82:be:c0:6f:4d:c5:
d6:bd:ef:43:72:4c:a5:fb:76:47:1e:88:5d:bd:01:
47:45:10:44:44:c5:1f:a2:de:1e:88:54:d9:f9:29:
e7:5c:22:2d:af:4d:a5:9e:7c:3f:b4:dd:4f:10:16:
49:a3:99:54:12:cb:c4:2d:ff:42:9d:47:26:d6:6c:
fe:5d:a6:52:b4:3c:34:0d:cc:c4:1d:7a:89:31:26:
77:cc:ab:72:d0:6a:c0:9f:45:df:2a:ca:2b:92:79:
e8:1c:ca:96:87:26:73:ea:c0:72:13:92:6e:07:57:
24:09:74:fb:73:ff:e1:f5:41:d1:ac:5c:07:47:bb:
3e:b1:80:97:03:20:a6:3d:13:27:c9:6e:ea:f1:64:
f2:14:7b:07:91:74:25:ce:38:ff:42:ca:a1:86:cf:
f9:76:28:96:5e:bc:62:5e:e0:75:ae:7e:8a:b5:5c:
e2:e0:a0:57:9e:23:a0:05:a3:3d:5c:9e:8e:9e:2c:
1a:c5:79:69:a8:52:96:78:dd:39:26:3a:61:b6:14:
44:f5:0a:b7:57:7b:5f:26:43:fe:1d:29:1c:ec:47:
7b:0a:ad:18:b8:9e:ea:8c:f1:8e:0f:c6:6c:c8:5a:
c7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5A:39:79:31:41:17:16:B0:90:D1:E3:0A:C6:D1:50:77:0C:3C:2A
X509v3 Authority Key Identifier:
keyid:81:70:C4:08:5A:20:CD:6A:A4:51:FB:CA:C2:CB:8F:2C:CD:BA:3E:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/1n7629KYyEh3xG4BBtWuEC21gW4SfrumaD8iVDBNu75/5/8170C4085A20CD6AA451FBCAC2CB8F2CCDBA3E97.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8170C4085A20CD6AA451FBCAC2CB8F2CCDBA3E97.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/1n7629KYyEh3xG4BBtWuEC21gW4SfrumaD8iVDBNu75/5/323830343a3832303a3a2f33322d3332203d3e20323632333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:820::/32
Signature Algorithm: sha256WithRSAEncryption
36:db:9c:d7:8a:ac:97:f3:d6:4a:8f:ee:46:32:7c:6e:c9:2e:
a4:d3:3f:5d:3d:3c:e6:bf:89:14:ee:9b:38:e9:4c:15:07:99:
e8:3d:15:08:83:49:27:5d:42:ce:8b:a3:67:ae:34:3e:96:8c:
b4:29:1f:ce:38:e0:98:ff:f5:a6:0c:b5:e8:fc:e3:ee:dd:20:
ee:66:32:6f:39:66:5f:e9:1b:1b:81:f8:73:7b:5e:6d:45:83:
5b:d4:02:e6:93:03:c6:d1:d8:77:8d:77:c5:d0:a5:50:b2:75:
5c:bc:8d:94:57:d5:cd:6d:08:2f:ac:25:1a:5a:c4:a6:f3:ed:
49:13:8f:0e:d1:e6:b1:a6:ed:ce:a0:3d:26:10:b5:5f:ea:f1:
81:88:8e:e5:00:07:fa:c3:b9:73:62:36:5a:c4:f3:aa:c6:59:
61:de:d4:9d:5c:ad:68:fe:bb:25:e6:12:dc:eb:51:38:3c:f9:
d5:c5:84:a3:da:48:e8:ef:f5:4c:5f:6d:36:12:7f:48:5c:bc:
21:41:ec:d9:5b:b7:f2:b3:71:54:af:27:46:6c:40:6b:ce:18:
84:a8:0c:8e:91:e0:42:26:60:5e:3a:d0:10:ed:ee:5a:74:d8:
5b:4a:a4:41:c9:70:65:a6:25:ed:b5:ba:05:e4:30:88:a0:a3:
78:4b:8f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:42:01 2025 by rpki-client