Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa
File: 323830343a323834303a3a2f33322d3332203d3e20323633393530.roa (raw, json)
Hash identifier: WelEUtXbd3e8g2e0bzpULwzlHma3IF9itOSDAXN0DwM=
Subject key identifier: E3:61:9B:FD:DA:52:4C:3B:60:E0:BD:5C:82:6E:A4:57:56:AE:6A:CA
Certificate issuer: /CN=F541966412A9926340E8F10C31ABE0041F25A41F
Certificate serial: 242620E0E3D4E59582B46EBE98D4A44C221E55DD
Authority key identifier: F5:41:96:64:12:A9:92:63:40:E8:F1:0C:31:AB:E0:04:1F:25:A4:1F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F541966412A9926340E8F10C31ABE0041F25A41F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa
Signing time: Fri 09 Feb 2024 19:07:53 +0000
ROA not before: Fri 09 Feb 2024 19:02:53 +0000
ROA not after: Fri 07 Feb 2025 19:07:53 +0000
asID: 263950
IP address blocks: 2804:2840::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:26:20:e0:e3:d4:e5:95:82:b4:6e:be:98:d4:a4:4c:22:1e:55:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F541966412A9926340E8F10C31ABE0041F25A41F
Validity
Not Before: Feb 9 19:02:53 2024 GMT
Not After : Feb 7 19:07:53 2025 GMT
Subject: CN=E3619BFDDA524C3B60E0BD5C826EA45756AE6ACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ab:89:e4:72:1a:62:11:14:66:db:56:c1:5c:
11:93:cd:2b:43:c8:c0:93:d8:b4:7a:56:70:12:bb:
9b:37:0b:a5:9e:9e:6a:4e:1d:d8:4d:c2:ed:d3:8a:
45:58:9a:8a:d8:d5:3b:9d:e0:22:c2:1f:19:9a:77:
c4:58:d4:cf:8b:05:2f:60:70:b4:c9:2f:4f:66:bb:
c7:90:bb:69:5a:ee:53:48:5f:c8:96:15:bf:2c:64:
52:1f:16:bb:4f:bd:79:67:f8:d9:0f:81:a3:fb:59:
dd:03:04:c5:c0:d3:17:41:61:1b:6e:64:a8:8d:00:
64:fb:8c:ec:c0:14:1b:24:bf:cd:6a:37:cc:92:f9:
06:77:6e:47:a2:b9:e0:f1:78:39:e0:1a:3f:48:d1:
15:ee:3b:9a:ba:7c:d8:ca:e4:30:87:20:43:93:18:
81:2f:c7:fb:05:93:36:88:a9:a9:e9:39:e8:5a:d6:
0e:3a:8c:96:06:a5:38:28:14:dc:f9:cd:35:95:d2:
83:7d:38:41:cd:da:1a:79:1f:6d:69:d6:63:f3:fd:
1c:8c:bf:f8:b7:9e:81:49:df:35:98:fe:27:29:79:
d6:02:2a:dd:38:a2:34:b9:02:30:62:4f:f0:5c:d2:
23:4e:39:0c:6d:b2:4f:30:66:7f:00:1e:95:fd:a5:
c0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:61:9B:FD:DA:52:4C:3B:60:E0:BD:5C:82:6E:A4:57:56:AE:6A:CA
X509v3 Authority Key Identifier:
keyid:F5:41:96:64:12:A9:92:63:40:E8:F1:0C:31:AB:E0:04:1F:25:A4:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/F541966412A9926340E8F10C31ABE0041F25A41F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F541966412A9926340E8F10C31ABE0041F25A41F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2840::/32
Signature Algorithm: sha256WithRSAEncryption
7a:f3:b8:d0:2c:e6:82:d2:26:c3:f1:b5:c7:9c:fb:a3:cc:4c:
e2:4b:f4:05:83:f0:24:d4:a2:3b:9f:79:9c:f8:c6:60:95:59:
4a:b1:eb:0c:79:4a:6c:5e:f4:7e:46:76:11:2a:1a:2e:40:1c:
6b:b8:c4:f9:89:61:7a:c0:94:e1:54:84:4f:79:1c:cd:b3:0b:
46:47:88:7b:6a:27:f0:02:64:f0:f0:77:d6:3f:e5:f0:b2:75:
c0:ed:a8:06:6e:bb:e1:27:ab:c3:f4:38:e9:56:25:48:6b:c3:
55:9e:b0:9d:79:9a:5b:94:a8:39:99:38:76:f2:2a:6a:6d:87:
70:f9:af:d7:23:09:f5:17:fb:33:af:48:77:36:c1:f9:1b:4b:
9f:70:49:80:6e:73:80:a6:14:f7:05:1d:36:98:dd:03:9b:b1:
fc:c5:6d:bb:c3:62:cc:cc:e6:35:95:92:e6:0f:de:0d:1c:03:
af:1f:e6:1b:73:5d:af:41:9a:a0:1b:5e:35:71:ca:5d:83:76:
29:8a:1b:7f:d6:37:0e:54:d8:16:26:0f:47:10:00:b1:ef:2f:
32:2c:59:60:07:43:73:1c:c5:33:aa:e0:73:c6:6e:23:36:99:
ed:f0:13:26:5d:eb:32:3f:95:87:76:45:5f:cd:91:37:e0:ff:
a5:a6:2d:b1
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUJCYg4OPU5ZWCtG6+mNSkTCIeVd0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjU0MTk2NjQxMkE5OTI2MzQwRThGMTBDMzFBQkUwMDQx
RjI1QTQxRjAeFw0yNDAyMDkxOTAyNTNaFw0yNTAyMDcxOTA3NTNaMDMxMTAvBgNV
BAMTKEUzNjE5QkZEREE1MjRDM0I2MEUwQkQ1QzgyNkVBNDU3NTZBRTZBQ0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhq4nkchpiERRm21bBXBGTzStD
yMCT2LR6VnASu5s3C6WenmpOHdhNwu3TikVYmorY1Tud4CLCHxmad8RY1M+LBS9g
cLTJL09mu8eQu2la7lNIX8iWFb8sZFIfFrtPvXln+NkPgaP7Wd0DBMXA0xdBYRtu
ZKiNAGT7jOzAFBskv81qN8yS+QZ3bkeiueDxeDngGj9I0RXuO5q6fNjK5DCHIEOT
GIEvx/sFkzaIqanpOeha1g46jJYGpTgoFNz5zTWV0oN9OEHN2hp5H21p1mPz/RyM
v/i3noFJ3zWY/icpedYCKt04ojS5AjBiT/Bc0iNOOQxtsk8wZn8AHpX9pcCFAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQU42Gb/dpSTDtg4L1cgm6kV1auasowHwYDVR0j
BBgwFoAU9UGWZBKpkmNA6PEMMavgBB8lpB8wDgYDVR0PAQH/BAQDAgeAMIGSBgNV
HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv
cmVwby8xcmtybXU0NG82NndBUHZZQzgxR21xMnVFMzdZRnY0Z1JaQ05ib2l5RDNj
LzAvRjU0MTk2NjQxMkE5OTI2MzQwRThGMTBDMzFBQkUwMDQxRjI1QTQxRi5jcmww
eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y
ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMC9GNTQxOTY2NDEyQTk5MjYzNDBF
OEYxMEMzMUFCRTAwNDFGMjVBNDFGLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG
CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8x
cmtybXU0NG82NndBUHZZQzgxR21xMnVFMzdZRnY0Z1JaQ05ib2l5RDNjLzAvMzIz
ODMwMzQzYTMyMzgzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjMzMzkz
NTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/
BBEwDzANBAIAAjAHAwUAKAQoQDANBgkqhkiG9w0BAQsFAAOCAQEAevO40CzmgtIm
w/G1x5z7o8xM4kv0BYPwJNSiO595nPjGYJVZSrHrDHlKbF70fkZ2ESoaLkAca7jE
+YlhesCU4VSET3kczbMLRkeIe2on8AJk8PB31j/l8LJ1wO2oBm674Serw/Q46VYl
SGvDVZ6wnXmaW5SoOZk4dvIqam2HcPmv1yMJ9Rf7M69IdzbB+RtLn3BJgG5zgKYU
9wUdNpjdA5ux/MVtu8NizMzmNZWS5g/eDRwDrx/mG3Ndr0GaoBteNXHKXYN2KYob
f9Y3DlTYFiYPRxAAse8vMixZYAdDcxzFM6rgc8ZuIzaZ7fATJl3rMj+Vh3ZFX82R
N+D/paYtsQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:16 2024 by rpki-client on console-fra.rpki-client.org