Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a633030303a3a2f33342d3334203d3e20323731333833.roa
File: 323830343a376161343a633030303a3a2f33342d3334203d3e20323731333833.roa (raw, json)
Hash identifier: rB6R//2HTjdOXRZNmp7GX6QeHL0pIf7sOm3ejeBJPzM=
Subject key identifier: F3:C8:23:38:9C:16:4F:CF:AD:BA:EF:77:E2:CC:82:18:0A:D7:F4:0D
Certificate issuer: /CN=23235F2B7FAE22B78438698FD00F49F07D286674
Certificate serial: 1A6382D9986D14D10C39E2538E5CA2017ADDACCC
Authority key identifier: 23:23:5F:2B:7F:AE:22:B7:84:38:69:8F:D0:0F:49:F0:7D:28:66:74
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23235F2B7FAE22B78438698FD00F49F07D286674.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a633030303a3a2f33342d3334203d3e20323731333833.roa
Signing time: Fri 22 Nov 2024 14:28:58 +0000
ROA not before: Fri 22 Nov 2024 14:23:58 +0000
ROA not after: Fri 21 Nov 2025 14:28:58 +0000
asID: 271383
IP address blocks: 2804:7aa4:c000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:63:82:d9:98:6d:14:d1:0c:39:e2:53:8e:5c:a2:01:7a:dd:ac:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23235F2B7FAE22B78438698FD00F49F07D286674
Validity
Not Before: Nov 22 14:23:58 2024 GMT
Not After : Nov 21 14:28:58 2025 GMT
Subject: CN=F3C823389C164FCFADBAEF77E2CC82180AD7F40D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9a:3d:fe:cf:4d:ff:f7:c2:1b:b1:df:9f:97:
61:16:8b:d5:fe:fa:71:fa:ff:3f:78:1a:7e:a7:4d:
88:cd:43:c5:8d:ab:54:e4:65:7e:32:72:67:e3:10:
4b:03:2f:3e:91:be:92:70:f9:e1:8b:b4:4c:36:cc:
f9:84:76:0a:b6:18:14:a5:e7:84:29:cf:35:a1:e6:
a1:02:b1:c9:a5:67:e8:59:7b:53:a3:6d:a7:2a:b0:
bd:73:58:6b:e6:92:aa:25:46:36:12:28:9e:72:ae:
a8:1c:df:df:0d:7c:3d:3a:c6:a2:40:82:b2:dc:2c:
19:6b:8f:31:c4:9b:9f:b0:ac:1e:d0:9f:2d:74:87:
f3:21:4e:b2:df:40:60:8c:23:ac:00:c7:ad:31:33:
ee:1a:21:19:0a:1f:99:34:75:38:76:a0:30:5b:dc:
db:01:87:ca:98:c1:c0:d2:bc:df:35:f8:e2:a6:5e:
d7:92:70:ba:f7:30:e6:7a:9a:26:db:1f:e5:c2:81:
ab:0d:32:26:e5:5d:b1:4f:10:53:3c:3d:e6:52:75:
77:35:ca:86:c6:43:94:dd:0c:4d:85:00:fc:1c:d5:
30:80:87:d0:1f:a8:4b:99:5f:bf:84:b1:b1:64:c7:
10:7b:11:c5:a6:c4:b0:68:c3:52:ba:b6:19:34:ec:
55:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C8:23:38:9C:16:4F:CF:AD:BA:EF:77:E2:CC:82:18:0A:D7:F4:0D
X509v3 Authority Key Identifier:
keyid:23:23:5F:2B:7F:AE:22:B7:84:38:69:8F:D0:0F:49:F0:7D:28:66:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/23235F2B7FAE22B78438698FD00F49F07D286674.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23235F2B7FAE22B78438698FD00F49F07D286674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2FYZSM5ruE1Bnv6jV1rSsPZP8oTZinQNsZRM1KAPCz1r/0/323830343a376161343a633030303a3a2f33342d3334203d3e20323731333833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:7aa4:c000::/34
Signature Algorithm: sha256WithRSAEncryption
3f:72:6e:71:28:0c:28:5f:82:83:0b:3f:54:06:71:6c:a2:16:
d7:30:92:e1:b2:3a:28:20:7c:69:e4:c9:fb:b5:b3:45:80:2e:
e4:83:5d:6c:40:08:8b:d4:ed:ad:5c:35:b2:8d:a9:59:d0:62:
a4:83:ee:69:e5:8e:13:a4:9b:65:76:70:eb:be:89:da:ec:b1:
9a:9c:8f:35:26:43:af:dd:ba:1c:2c:40:a0:2b:ef:f3:be:a9:
b4:82:a0:40:be:9d:4a:4f:42:3a:3d:2a:f5:dc:a5:00:a9:c5:
28:49:cf:2d:da:4c:e4:de:f1:bb:06:3f:fb:d7:55:00:ad:cf:
dc:85:56:dd:66:d9:b8:86:d4:cc:b6:d3:4f:25:7a:8f:b4:5e:
21:21:5b:98:0f:5c:99:09:4b:44:07:b7:3d:de:15:09:84:c8:
b3:9f:b6:d5:bd:94:d1:9c:1b:e2:c7:69:dc:20:49:14:c6:a7:
ab:87:16:f6:e3:e4:72:dc:b6:f4:fe:f1:fd:ae:93:4e:86:4d:
0a:f5:b7:6c:b2:19:fa:48:80:15:ed:c9:45:8d:58:a2:e7:18:
cd:3e:03:38:78:5a:81:56:bf:af:ca:9b:b4:48:63:c5:17:26:
40:0e:29:df:bc:ba:9e:1c:7f:8f:d5:10:d8:62:4a:51:1e:55:
dd:a5:3a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:29:22 2025 by rpki-client