Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/3137302e3235342e3133362e302f32322d3232203d3e203631353837.roa
File: 3137302e3235342e3133362e302f32322d3232203d3e203631353837.roa (raw, json)
Hash identifier: /jOXPiQQKNjpud3Gnou8Y7L4HPlXqXktNajb+1zurR4=
Subject key identifier: AB:FA:9F:83:76:CE:56:47:31:10:10:C0:B2:71:DA:B0:18:78:91:53
Certificate issuer: /CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Certificate serial: 131C36FA6434E7A882EF739FF270B2D79C8EC2BD
Authority key identifier: B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/3137302e3235342e3133362e302f32322d3232203d3e203631353837.roa
Signing time: Tue 20 Feb 2024 13:43:44 +0000
ROA not before: Tue 20 Feb 2024 13:38:44 +0000
ROA not after: Tue 18 Feb 2025 13:43:44 +0000
asID: 61587
IP address blocks: 170.254.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:1c:36:fa:64:34:e7:a8:82:ef:73:9f:f2:70:b2:d7:9c:8e:c2:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Validity
Not Before: Feb 20 13:38:44 2024 GMT
Not After : Feb 18 13:43:44 2025 GMT
Subject: CN=ABFA9F8376CE5647311010C0B271DAB018789153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:b2:59:18:9b:6a:cb:d4:30:06:01:57:bd:
da:2c:e3:54:27:f4:18:46:d5:d8:be:2a:8e:92:34:
c9:9e:a5:0f:c9:60:c9:fb:e9:17:79:3e:d8:26:2a:
01:30:24:1e:1a:b7:da:ad:ae:a3:36:de:ee:33:4e:
c1:b2:0d:f3:29:d5:41:4e:56:36:17:17:9f:a0:17:
0a:0a:df:06:77:c0:d7:45:ba:bd:11:f3:c1:7b:bb:
de:4a:18:29:58:d9:0e:7b:48:74:3c:ff:dc:94:1e:
8c:f8:6b:c3:85:f0:7c:e6:6c:04:09:ab:e4:ae:e5:
02:b7:bc:39:9b:47:46:6d:0b:0b:d9:ab:d2:43:c4:
b2:00:01:de:b6:b8:1c:b2:93:32:ea:80:24:cc:a4:
f2:bf:74:1c:9f:33:50:34:fc:d3:a2:75:54:4c:ef:
a3:e3:e9:78:a8:79:6b:30:14:3c:1d:b4:5b:51:7c:
f2:04:72:26:09:99:74:3f:0a:f6:79:7a:e8:fa:ce:
45:0c:e0:16:6f:a3:c3:2e:98:f5:3a:d3:f5:d7:85:
da:a0:42:08:dc:99:3d:03:87:b6:df:cc:a8:9e:58:
d1:19:40:07:d7:b8:fb:4f:30:a7:81:96:4c:39:96:
5d:77:86:f2:d9:d9:8c:1f:5b:dc:4c:3b:f3:dc:c3:
de:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FA:9F:83:76:CE:56:47:31:10:10:C0:B2:71:DA:B0:18:78:91:53
X509v3 Authority Key Identifier:
keyid:B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/3137302e3235342e3133362e302f32322d3232203d3e203631353837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.136.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:68:53:ca:00:37:fe:d9:52:4f:ef:cd:6a:69:33:88:dc:94:
f1:12:1e:7f:54:99:42:a6:56:d8:07:d8:03:f1:e5:13:43:bd:
30:6b:1f:7c:05:3f:64:ed:60:11:52:58:8e:46:4f:25:96:ca:
9b:88:e1:46:77:4b:24:37:23:5f:93:84:6e:88:46:a6:42:0b:
02:f3:e5:b9:32:22:11:0f:3a:62:fd:5d:53:27:10:a8:9a:59:
49:b3:4b:67:e1:29:21:4f:29:36:42:1d:23:4f:90:3d:f7:65:
61:31:2f:fe:46:e4:5e:30:19:1d:c8:51:a3:11:54:e3:65:06:
a8:41:d4:45:66:c1:f1:f2:ed:b2:bf:27:ae:8d:ce:47:dd:d8:
05:19:b6:bb:1b:ac:2f:47:66:48:35:f4:49:4b:76:d5:2b:ab:
bb:34:59:a9:03:97:7c:ed:78:d1:22:cb:24:fc:89:2b:bb:79:
e9:4d:0b:67:95:c1:d2:66:27:3e:1d:e6:22:0b:89:f5:7f:da:
0c:9f:e9:ce:85:c0:ba:dc:4b:ce:7e:ea:0c:9b:72:f0:bd:c3:
b0:da:3c:ef:e8:58:a2:f2:34:bd:a6:77:14:fa:2d:f0:59:6a:
9b:4a:c3:6e:06:34:8d:9c:eb:db:bd:64:42:63:b3:96:f2:fe:
d4:b5:71:da
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUExw2+mQ056iC73Of8nCy15yOwr0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjgwMTE1OTFFMTU0OEMxMUQ4NEY5Q0EyN0Q1NEFFQzFE
Q0Q0OTAxRDAeFw0yNDAyMjAxMzM4NDRaFw0yNTAyMTgxMzQzNDRaMDMxMTAvBgNV
BAMTKEFCRkE5RjgzNzZDRTU2NDczMTEwMTBDMEIyNzFEQUIwMTg3ODkxNTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2JbJZGJtqy9QwBgFXvdos41Qn
9BhG1di+Ko6SNMmepQ/JYMn76Rd5PtgmKgEwJB4at9qtrqM23u4zTsGyDfMp1UFO
VjYXF5+gFwoK3wZ3wNdFur0R88F7u95KGClY2Q57SHQ8/9yUHoz4a8OF8HzmbAQJ
q+Su5QK3vDmbR0ZtCwvZq9JDxLIAAd62uByykzLqgCTMpPK/dByfM1A0/NOidVRM
76Pj6XioeWswFDwdtFtRfPIEciYJmXQ/CvZ5euj6zkUM4BZvo8MumPU60/XXhdqg
QgjcmT0Dh7bfzKieWNEZQAfXuPtPMKeBlkw5ll13hvLZ2YwfW9xMO/Pcw95fAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUq/qfg3bOVkcxEBDAsnHasBh4kVMwHwYDVR0j
BBgwFoAUuAEVkeFUjBHYT5yifVSuwdzUkB0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMjVtYXpYcXl3NFVjcGN3a1BkUWJQMVdqeWt3UDdraGpYRmQ5MXd6eExY
ZTYvMC9CODAxMTU5MUUxNTQ4QzExRDg0RjlDQTI3RDU0QUVDMURDRDQ5MDFELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0I4MDExNTkxRTE1NDhDMTFE
ODRGOUNBMjdENTRBRUMxRENENDkwMUQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzI1bWF6WHF5dzRVY3Bjd2tQZFFiUDFXanlrd1A3a2hqWEZkOTF3enhMWGU2LzAv
MzEzNzMwMmUzMjM1MzQyZTMxMzMzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDM2
MzEzNTM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAKq/ogwDQYJKoZIhvcNAQELBQADggEBAM1oU8oA
N/7ZUk/vzWppM4jclPESHn9UmUKmVtgH2APx5RNDvTBrH3wFP2TtYBFSWI5GTyWW
ypuI4UZ3SyQ3I1+ThG6IRqZCCwLz5bkyIhEPOmL9XVMnEKiaWUmzS2fhKSFPKTZC
HSNPkD33ZWExL/5G5F4wGR3IUaMRVONlBqhB1EVmwfHy7bK/J66Nzkfd2AUZtrsb
rC9HZkg19ElLdtUrq7s0WakDl3zteNEiyyT8iSu7eelNC2eVwdJmJz4d5iILifV/
2gyf6c6FwLrcS85+6gybcvC9w7DaPO/oWKLyNL2mdxT6LfBZaptKw24GNI2c69u9
ZEJjs5by/tS1cdo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:59 2024 by rpki-client on console-ams.rpki-client.org