Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a3a2f33332d3333203d3e20323731333833.roa
File: 323830343a376161343a3a2f33332d3333203d3e20323731333833.roa (raw, json)
Hash identifier: MN18GGcZmENCrLkI8K3YOuCaeQVJGJYtuYRfCkm2RHo=
Subject key identifier: D9:67:4C:A5:29:69:C4:55:91:CE:36:00:77:5D:33:26:4B:23:FB:76
Certificate issuer: /CN=23235F2B7FAE22B78438698FD00F49F07D286674
Certificate serial: 39928EFF29DFD33D2CA02E7EA9714F50A070B5E9
Authority key identifier: 23:23:5F:2B:7F:AE:22:B7:84:38:69:8F:D0:0F:49:F0:7D:28:66:74
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23235F2B7FAE22B78438698FD00F49F07D286674.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a3a2f33332d3333203d3e20323731333833.roa
Signing time: Mon 07 Oct 2024 18:38:00 +0000
ROA not before: Mon 07 Oct 2024 18:33:00 +0000
ROA not after: Mon 06 Oct 2025 18:38:00 +0000
asID: 271383
IP address blocks: 2804:7aa4::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:92:8e:ff:29:df:d3:3d:2c:a0:2e:7e:a9:71:4f:50:a0:70:b5:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23235F2B7FAE22B78438698FD00F49F07D286674
Validity
Not Before: Oct 7 18:33:00 2024 GMT
Not After : Oct 6 18:38:00 2025 GMT
Subject: CN=D9674CA52969C45591CE3600775D33264B23FB76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4a:e0:89:c0:b4:0f:f1:c6:62:17:59:13:1f:
c5:b3:07:fe:2c:66:93:1d:70:28:67:c6:ec:07:c2:
2c:a9:db:cf:66:46:59:db:cd:d8:31:63:79:78:96:
d3:5d:69:9d:6f:eb:10:56:38:fe:ab:97:14:f2:56:
57:e1:8f:4e:8b:05:72:a6:72:a6:a2:87:f2:9c:cc:
5f:b9:ce:05:23:08:d7:7f:20:62:59:5a:bb:f8:db:
6b:16:44:36:8e:64:b7:ab:87:94:5d:5b:30:ef:a2:
be:9e:39:88:b5:63:7c:85:c5:53:39:3d:55:86:bc:
56:e0:b6:06:8e:5f:7a:c7:e7:80:59:d8:28:34:f7:
1b:80:56:f1:91:69:e5:5f:99:46:d8:c8:a4:55:47:
62:5b:f3:a3:32:94:46:01:53:1a:f1:3c:5b:8a:15:
0e:7c:b9:9f:86:c9:91:f4:84:26:1c:7b:fa:0f:5d:
d8:b3:77:ca:46:a9:bb:6b:0b:46:f1:4c:93:1d:cb:
cc:38:eb:f4:90:1e:61:73:7f:da:30:63:e3:9a:9d:
c9:47:af:90:69:72:d2:8e:14:97:be:bd:c4:9d:e5:
e6:85:77:8b:da:52:2c:14:b5:c0:11:d3:c3:65:c8:
2c:9e:59:d1:91:b8:a2:c2:b6:84:8d:49:de:53:5a:
28:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:67:4C:A5:29:69:C4:55:91:CE:36:00:77:5D:33:26:4B:23:FB:76
X509v3 Authority Key Identifier:
keyid:23:23:5F:2B:7F:AE:22:B7:84:38:69:8F:D0:0F:49:F0:7D:28:66:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/23235F2B7FAE22B78438698FD00F49F07D286674.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23235F2B7FAE22B78438698FD00F49F07D286674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a3a2f33332d3333203d3e20323731333833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:7aa4::/33
Signature Algorithm: sha256WithRSAEncryption
86:6b:d4:ae:0d:46:40:6e:d6:2b:28:cf:72:be:59:1d:8a:fc:
10:bd:bb:08:81:11:ad:61:c6:bd:66:c8:8f:75:0b:79:95:81:
79:2c:7c:0f:7e:ea:fb:a6:39:a4:59:d9:ed:4d:68:ff:b1:1f:
b0:66:0c:2f:24:8f:ab:80:1a:43:d9:c6:e5:1a:bb:38:6c:c0:
1c:cd:59:3c:95:3d:ea:aa:aa:9d:1b:56:ca:b8:fa:aa:24:f9:
9f:cd:39:75:c3:0c:50:e5:84:fd:b0:5e:f2:d3:51:b4:21:bf:
f9:e1:48:6d:ac:95:d0:06:b9:4a:b7:91:d7:c7:11:66:b2:15:
a1:b7:56:6b:67:52:90:d4:b3:8d:d9:fa:0b:5a:f6:43:7f:b9:
6c:4e:8b:79:ae:e8:3c:86:1a:75:1f:96:08:a3:b8:06:6c:56:
09:74:f3:d4:ef:08:f8:a8:3c:ae:62:1e:a8:e0:bd:8b:fb:de:
e7:aa:ef:c0:25:7a:d8:70:f6:8b:38:22:5e:ce:41:f5:29:d5:
b8:53:24:55:65:97:14:37:ed:9c:22:4e:4c:3b:8f:ee:5c:bd:
44:a5:70:c0:f7:64:34:f6:96:92:dd:86:38:48:af:f9:6a:16:
1d:05:58:20:e8:f4:34:2e:48:5a:a1:80:cf:47:a1:3d:68:af:
9f:f8:00:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:29:59 2025 by rpki-client