Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a343866303a3a2f33322d3332203d3e203631353839.roa
File: 323830343a343866303a3a2f33322d3332203d3e203631353839.roa (raw, json)
Hash identifier: omsBVLsX/MnppwFJ1IpP8uxdFeqabrENcuBzqu0cMEo=
Subject key identifier: F5:A0:99:FA:78:AF:64:38:D3:48:B1:13:F5:F0:EF:6A:4B:67:D2:85
Certificate issuer: /CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Certificate serial: 5040F124EDD574A9B75AC49C70F7908629CF52A4
Authority key identifier: B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a343866303a3a2f33322d3332203d3e203631353839.roa
Signing time: Mon 24 Apr 2023 11:52:28 +0000
ROA not before: Mon 24 Apr 2023 11:47:28 +0000
ROA not after: Mon 22 Apr 2024 11:52:28 +0000
asID: 61589
IP address blocks: 2804:48f0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:40:f1:24:ed:d5:74:a9:b7:5a:c4:9c:70:f7:90:86:29:cf:52:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8011591E1548C11D84F9CA27D54AEC1DCD4901D
Validity
Not Before: Apr 24 11:47:28 2023 GMT
Not After : Apr 22 11:52:28 2024 GMT
Subject: CN=F5A099FA78AF6438D348B113F5F0EF6A4B67D285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f9:86:ce:b9:38:e3:1a:9a:13:45:35:2d:6a:
9f:89:28:4f:1e:c5:b6:9c:1f:0d:e0:b9:50:d6:a2:
dc:50:6f:96:69:ef:01:02:ab:75:0a:1b:96:d8:a6:
8e:f4:01:4c:94:3f:69:50:2a:05:d4:16:61:42:f2:
b1:9f:8b:7b:ef:5a:1d:c9:cd:6c:7b:be:af:06:92:
3f:ea:3b:84:d7:2c:29:c7:46:a3:18:f0:6f:19:7e:
48:66:49:da:2f:50:45:a8:c1:d3:3b:d6:a9:2e:e8:
b3:9a:ac:93:12:7f:94:a1:67:48:8b:2e:2c:83:fe:
5a:27:c0:51:a4:b2:b2:05:cd:4e:17:6b:82:79:61:
8c:4a:98:47:f6:66:31:06:19:f8:15:6e:33:0e:63:
08:8b:91:27:ec:eb:89:a9:4d:ed:9c:31:59:7f:24:
e9:80:f3:0d:ea:af:61:67:e7:3f:d5:85:0a:7a:61:
4c:15:79:5b:9a:11:21:9a:66:57:25:ba:0b:c3:a9:
91:1e:00:82:9b:e3:34:e4:39:ab:ae:e8:33:5a:dc:
1e:3c:83:d5:3f:22:c5:29:11:09:de:b7:b1:c4:d9:
bf:6a:22:d4:28:96:02:fc:b6:cd:6e:1f:b8:30:00:
45:90:79:23:a1:70:b6:88:d8:00:a0:17:e7:ef:d3:
90:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A0:99:FA:78:AF:64:38:D3:48:B1:13:F5:F0:EF:6A:4B:67:D2:85
X509v3 Authority Key Identifier:
keyid:B8:01:15:91:E1:54:8C:11:D8:4F:9C:A2:7D:54:AE:C1:DC:D4:90:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B8011591E1548C11D84F9CA27D54AEC1DCD4901D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/25mazXqyw4UcpcwkPdQbP1WjykwP7khjXFd91wzxLXe6/0/323830343a343866303a3a2f33322d3332203d3e203631353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:48f0::/32
Signature Algorithm: sha256WithRSAEncryption
b7:53:b4:81:7a:c2:e4:d8:ea:60:d4:e7:d8:45:4a:ca:a7:7f:
3d:ce:8d:38:95:4d:fe:2b:ef:3d:48:89:55:bb:96:3a:22:22:
8d:98:dc:f1:82:8b:b3:6c:b1:8b:38:f7:ef:3f:b7:8b:9b:26:
a0:b3:b5:df:d6:8e:7d:75:ca:61:59:88:84:12:df:6d:fa:7f:
c2:65:a9:a2:f3:f3:6e:d1:33:b1:60:8b:40:b7:68:db:86:2f:
e8:1b:ea:e9:3b:19:31:11:12:54:e1:e4:a6:b5:ee:db:7a:1b:
67:0b:cb:a5:9f:e7:5c:7c:cd:31:23:a5:03:4e:b0:99:13:34:
e4:75:a2:ce:4d:cb:4a:5c:d6:cb:17:da:a0:ba:76:63:aa:5f:
d4:1d:f1:dc:34:c8:6f:19:6c:7f:f8:ca:07:19:ef:3a:55:76:
a4:76:7f:d9:4f:6b:be:82:7e:c8:27:4d:6a:92:6a:03:f7:15:
e1:d3:86:a2:22:44:c4:cf:f2:1f:6b:d9:9f:87:31:e5:4e:b6:
4d:29:8c:d0:08:ce:78:8b:db:06:c4:36:d3:0e:2c:d7:4c:1f:
c2:9f:a4:83:ae:fb:f2:e0:8d:ce:7f:d9:b8:40:f1:6d:dc:47:
f8:d4:5d:c0:19:f1:19:7b:89:b7:f4:93:32:4a:ea:07:91:00:
c9:01:47:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:59 2024 by rpki-client on console-ams.rpki-client.org