Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/34352e3137342e3132332e302f32342d3332203d3e203631373132.roa
File: 34352e3137342e3132332e302f32342d3332203d3e203631373132.roa (raw, json)
Hash identifier: YaZUD4iyB02JMVqpw9h9biGOvoyu8PMc6PqP0wSkvwQ=
Subject key identifier: 44:B3:91:BA:3C:64:0B:75:50:7E:BA:96:EC:0D:9F:B6:88:7C:B5:89
Certificate issuer: /CN=1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4
Certificate serial: 34915DF9A9BF8CC7B7AC6FEBB14D5339733EBCB6
Authority key identifier: 1B:4F:7D:2D:BF:96:AE:DC:02:CE:1B:01:93:F9:64:E6:26:C1:8D:C4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/34352e3137342e3132332e302f32342d3332203d3e203631373132.roa
Signing time: Sat 01 Mar 2025 12:46:06 +0000
ROA not before: Sat 01 Mar 2025 12:41:06 +0000
ROA not after: Sat 28 Feb 2026 12:46:06 +0000
asID: 61712
IP address blocks: 45.174.123.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.crl
rsync://rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 10 Apr 2025 15:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:91:5d:f9:a9:bf:8c:c7:b7:ac:6f:eb:b1:4d:53:39:73:3e:bc:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4
Validity
Not Before: Mar 1 12:41:06 2025 GMT
Not After : Feb 28 12:46:06 2026 GMT
Subject: CN=44B391BA3C640B75507EBA96EC0D9FB6887CB589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:41:12:60:72:d8:51:49:c5:44:76:5a:36:
66:f9:2e:f7:5f:34:37:0f:ea:b0:5e:a6:29:36:4c:
b2:83:43:e4:7e:40:25:ee:73:79:03:6e:39:22:22:
00:fc:d5:bd:84:c1:00:43:5c:56:08:b9:7e:b8:a6:
2b:e1:c9:d7:55:dc:b7:0b:88:75:1e:42:88:2b:c7:
d4:66:64:53:65:38:7c:58:e5:29:58:c7:03:53:94:
87:a4:4b:48:c9:4c:74:98:3a:78:b2:61:85:c8:31:
e4:b2:1d:43:b0:94:82:06:51:d5:c5:17:35:4b:9b:
03:73:28:5b:af:0a:e2:46:ba:25:1b:ba:54:07:7c:
46:d1:2f:de:ee:f2:17:52:d9:86:b0:06:db:1d:46:
f4:42:3f:f1:52:7a:af:b1:71:04:00:68:0c:26:06:
23:a3:25:78:1a:3e:21:ad:21:7e:3b:b7:46:03:e7:
0d:ba:e9:7a:65:01:28:37:27:40:77:f6:c1:de:0c:
25:b3:7e:76:b0:8e:5b:19:a2:13:fe:fd:c7:1e:00:
2e:ed:ff:32:8d:22:03:3f:49:65:7b:91:a9:df:da:
2d:e6:e0:a5:aa:25:68:f1:87:eb:29:57:1c:9d:3b:
a1:21:1c:68:5e:01:cf:6a:32:5f:21:86:56:76:a7:
d3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B3:91:BA:3C:64:0B:75:50:7E:BA:96:EC:0D:9F:B6:88:7C:B5:89
X509v3 Authority Key Identifier:
keyid:1B:4F:7D:2D:BF:96:AE:DC:02:CE:1B:01:93:F9:64:E6:26:C1:8D:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4F7D2DBF96AEDC02CE1B0193F964E626C18DC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/25xv5f8vsuhoWYtssqqoeKS785vYoEkf4yfDjnG7fLxb/0/34352e3137342e3132332e302f32342d3332203d3e203631373132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.174.123.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ba:bf:8e:fb:d1:24:70:a6:6e:58:10:a6:70:da:5a:47:3d:
f0:4c:e5:aa:0e:c7:c8:df:54:cb:73:15:1c:f1:e6:09:35:3b:
08:b0:e2:84:38:4a:09:c3:2d:93:77:2e:46:40:66:59:cb:24:
98:f5:31:64:45:1c:d3:79:f4:7c:2a:6e:5b:b1:9b:ec:34:31:
b9:86:05:8a:9c:6c:cf:9b:ea:1a:08:92:7e:89:9f:18:19:a1:
91:1d:75:9b:aa:56:25:5f:83:f2:83:07:e2:04:db:1e:fc:70:
0e:5a:a6:91:4b:b4:ac:36:bf:e0:df:dd:bf:a1:47:df:9c:26:
b0:fe:cf:34:76:0b:77:37:cf:51:95:cc:57:2f:8d:b8:03:34:
05:09:2c:be:47:40:80:0f:48:75:2a:87:1a:e1:ae:b2:7b:59:
87:ae:db:9a:b1:f1:d5:fd:41:47:d8:a5:0f:c4:2c:85:ce:b0:
64:ee:37:33:5c:cf:25:26:2f:3e:7e:d4:74:c0:e0:5a:fd:87:
31:d0:fb:a1:59:51:23:88:ce:7b:d5:4b:0e:0c:2c:64:fc:c0:
ec:14:cf:fd:fd:29:e2:c7:39:5f:00:c2:0e:8d:9d:23:5d:11:
8a:18:b2:9a:e1:cf:94:d7:23:dd:1f:15:4b:f8:f4:30:df:46:
0b:04:78:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:04:15 2025 by rpki-client