Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa
File: 323830343a333330303a3a2f33332d3333203d3e203631353837.roa (raw, json)
Hash identifier: vT/RnQ/+o+C7+h6qzdM4ZbLWNdkBkfhD/l+aCB31TCc=
Subject key identifier: C4:7B:D2:EE:BA:A8:19:71:59:BE:BE:17:F9:2E:41:24:E3:8D:C6:A1
Certificate issuer: /CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Certificate serial: 375758B0D29770EFE312A4700DFBF6A3EA59158D
Authority key identifier: B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa
Signing time: Tue 20 Feb 2024 13:43:45 +0000
ROA not before: Tue 20 Feb 2024 13:38:45 +0000
ROA not after: Tue 18 Feb 2025 13:43:45 +0000
asID: 61587
IP address blocks: 2804:3300::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:57:58:b0:d2:97:70:ef:e3:12:a4:70:0d:fb:f6:a3:ea:59:15:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Validity
Not Before: Feb 20 13:38:45 2024 GMT
Not After : Feb 18 13:43:45 2025 GMT
Subject: CN=C47BD2EEBAA8197159BEBE17F92E4124E38DC6A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d0:a9:a2:c2:be:28:1d:d0:94:3d:ed:38:ae:
aa:b8:1a:5c:f3:78:ca:38:9e:a7:e8:e0:d4:f8:74:
5d:fa:1d:08:95:14:87:6b:0e:7f:3f:ec:0b:ca:0b:
f6:42:63:28:6a:94:51:25:eb:ab:59:44:d9:0b:a2:
91:8e:a4:fe:93:f6:0a:16:57:b1:f7:a1:5b:3d:bd:
6c:3a:ff:30:6d:49:25:40:75:58:30:f3:ed:1a:dd:
1b:e0:c9:7f:52:08:fd:74:db:3a:2c:e1:18:3a:a8:
64:bd:ce:0b:69:00:f3:45:03:9d:3c:26:e5:2b:39:
d9:68:86:96:41:be:70:59:c5:08:6a:1c:88:da:6c:
81:cb:b5:af:f4:f8:e1:60:9c:b4:a6:8a:fb:43:e9:
73:30:44:5f:31:95:66:14:b7:ac:45:66:37:7a:82:
2a:09:ec:4a:1b:b4:64:bb:a0:0b:44:ba:be:e0:37:
88:b2:04:46:3d:77:31:38:94:dc:ac:7c:db:85:e5:
aa:c4:b9:c3:78:a1:bc:dd:ad:46:c1:ff:f1:02:09:
a8:ad:a8:9a:e7:49:8a:77:63:3a:42:8a:d1:3b:dd:
b3:74:aa:71:04:c7:5d:22:c1:49:06:3f:32:ce:41:
02:a1:43:e7:7c:03:03:5c:e5:cd:a4:80:f9:51:ce:
08:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:7B:D2:EE:BA:A8:19:71:59:BE:BE:17:F9:2E:41:24:E3:8D:C6:A1
X509v3 Authority Key Identifier:
keyid:B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a333330303a3a2f33332d3333203d3e203631353837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3300::/33
Signature Algorithm: sha256WithRSAEncryption
c1:63:8e:06:5d:7c:3c:e1:c1:1b:3d:f4:e5:e6:52:3b:11:40:
e7:5e:f2:09:14:a2:0a:53:29:fb:08:19:98:b8:bf:b0:53:78:
92:f8:84:ca:40:21:88:b8:8b:f9:d8:8e:a1:11:9e:e4:a4:21:
7b:c0:f4:4b:aa:95:7a:94:51:09:f1:db:c0:3c:72:dc:03:ca:
91:f5:92:88:e7:8d:03:c8:79:02:7a:04:fe:b2:2f:ec:28:61:
a5:81:67:d4:1f:a1:99:96:2a:35:7c:43:12:a6:6b:c8:44:d7:
e8:d9:82:af:eb:95:ba:b1:29:d3:5b:5a:6c:16:60:21:07:95:
00:0a:ea:03:48:60:fb:3d:d2:77:03:7a:06:a4:a1:8f:8e:6a:
22:68:eb:0e:64:c3:04:b5:93:68:9f:7c:5c:c9:bb:e5:3c:56:
53:33:97:75:6f:7e:93:ff:9d:08:c8:16:c0:dd:10:db:14:31:
65:2a:89:4e:cc:c1:4b:8d:10:fd:85:41:d0:fb:66:b7:86:82:
5e:f4:51:48:60:5c:0d:08:74:29:32:91:ec:49:5c:31:0f:4d:
83:0e:5c:ab:1a:e4:d6:5f:0f:aa:31:9d:6f:9a:09:c4:f6:d3:
fa:24:f8:28:55:75:73:2e:47:98:9f:c8:47:4c:47:92:71:94:
5d:e1:f6:b7
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUN1dYsNKXcO/jEqRwDfv2o+pZFY0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjgwMTE1OTFFMTU0OEMxMUQ4NEY5Q0EyN0Q1NEFFQzFE
Q0Q0OTAxRDAeFw0yNDAyMjAxMzM4NDVaFw0yNTAyMTgxMzQzNDVaMDMxMTAvBgNV
BAMTKEM0N0JEMkVFQkFBODE5NzE1OUJFQkUxN0Y5MkU0MTI0RTM4REM2QTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0Kmiwr4oHdCUPe04rqq4Glzz
eMo4nqfo4NT4dF36HQiVFIdrDn8/7AvKC/ZCYyhqlFEl66tZRNkLopGOpP6T9goW
V7H3oVs9vWw6/zBtSSVAdVgw8+0a3RvgyX9SCP102zos4Rg6qGS9zgtpAPNFA508
JuUrOdlohpZBvnBZxQhqHIjabIHLta/0+OFgnLSmivtD6XMwRF8xlWYUt6xFZjd6
gioJ7EobtGS7oAtEur7gN4iyBEY9dzE4lNysfNuF5arEucN4obzdrUbB//ECCait
qJrnSYp3YzpCitE73bN0qnEEx10iwUkGPzLOQQKhQ+d8AwNc5c2kgPlRzgg1AgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUxHvS7rqoGXFZvr4X+S5BJOONxqEwHwYDVR0j
BBgwFoAUuAEVkeFUjBHYT5yifVSuwdzUkB0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMjVtYXpYcXl3NFVjcGN3a1BkUWJQMVdqeWt3UDdraGpYRmQ5MXd6eExY
ZTYvMC9CODAxMTU5MUUxNTQ4QzExRDg0RjlDQTI3RDU0QUVDMURDRDQ5MDFELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0I4MDExNTkxRTE1NDhDMTFE
ODRGOUNBMjdENTRBRUMxRENENDkwMUQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzI1bWF6WHF5dzRVY3Bjd2tQZFFiUDFXanlrd1A3a2hqWEZkOTF3enhMWGU2LzAv
MzIzODMwMzQzYTMzMzMzMDMwM2EzYTJmMzMzMzJkMzMzMzIwM2QzZTIwMzYzMTM1
MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB
/wQSMBAwDgQCAAIwCAMGBygEMwAAMA0GCSqGSIb3DQEBCwUAA4IBAQDBY44GXXw8
4cEbPfTl5lI7EUDnXvIJFKIKUyn7CBmYuL+wU3iS+ITKQCGIuIv52I6hEZ7kpCF7
wPRLqpV6lFEJ8dvAPHLcA8qR9ZKI540DyHkCegT+si/sKGGlgWfUH6GZlio1fEMS
pmvIRNfo2YKv65W6sSnTW1psFmAhB5UACuoDSGD7PdJ3A3oGpKGPjmoiaOsOZMME
tZNon3xcybvlPFZTM5d1b36T/50IyBbA3RDbFDFlKolOzMFLjRD9hUHQ+2a3hoJe
9FFIYFwNCHQpMpHsSVwxD02DDlyrGuTWXw+qMZ1vmgnE9tP6JPgoVXVzLkeYn8hH
TEeScZRd4fa3
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:17 2024 by rpki-client on console-fra.rpki-client.org