Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa
File: 3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa (raw, json)
Hash identifier: ocj/5GMg6apW1SIob94WCuYpxnDC2ZQUPxVDGKaRltA=
Subject key identifier: 3A:98:4D:AC:9D:98:82:50:75:9D:DF:0E:C1:46:65:2B:69:EE:E7:31
Certificate issuer: /CN=C6E233BD893D72E2620AF66DE696FE2EE7A2E527
Certificate serial: 212D701A2D102BC523C36A3F84F28D3F823A8EC9
Authority key identifier: C6:E2:33:BD:89:3D:72:E2:62:0A:F6:6D:E6:96:FE:2E:E7:A2:E5:27
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6E233BD893D72E2620AF66DE696FE2EE7A2E527.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa
Signing time: Sun 24 Dec 2023 22:28:55 +0000
ROA not before: Sun 24 Dec 2023 22:23:55 +0000
ROA not after: Sun 22 Dec 2024 22:28:55 +0000
asID: 265384
IP address blocks: 170.254.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:2d:70:1a:2d:10:2b:c5:23:c3:6a:3f:84:f2:8d:3f:82:3a:8e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C6E233BD893D72E2620AF66DE696FE2EE7A2E527
Validity
Not Before: Dec 24 22:23:55 2023 GMT
Not After : Dec 22 22:28:55 2024 GMT
Subject: CN=3A984DAC9D988250759DDF0EC146652B69EEE731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:52:33:c8:38:17:59:d9:a2:25:49:c8:e1:
0e:e8:07:93:b5:95:57:33:96:c5:9a:74:f6:8e:dc:
d7:47:c9:e8:69:14:69:9c:1e:6f:16:4d:b5:66:ce:
98:f5:70:72:eb:d5:66:a5:08:77:37:52:9b:39:e9:
16:ea:a2:d0:ee:a4:58:de:56:a7:00:29:c1:8d:76:
c2:11:ae:0a:67:e5:6e:9d:b4:45:c8:8c:06:01:c8:
fd:86:aa:fc:05:af:33:36:90:69:7c:5b:37:2b:10:
e9:cf:28:fc:5f:74:e2:46:ca:f4:62:bf:1c:a8:72:
b5:9c:0e:94:3e:fc:9f:a1:86:49:32:04:d9:36:b4:
be:97:66:05:6f:e0:03:18:e6:b1:47:75:cd:29:bb:
e9:a7:7d:0f:9c:e6:f6:9a:6e:57:f3:2d:bf:63:06:
18:15:68:f0:d2:be:13:f8:a6:88:b4:10:b7:ed:af:
56:74:87:99:f2:cf:26:a9:32:49:25:ae:0d:02:08:
4e:88:bb:d1:dd:c9:50:b3:49:4c:a9:e9:4e:62:35:
9a:ac:66:8b:f6:e1:8d:66:4b:af:9e:09:0c:a7:aa:
12:d1:de:e8:6c:7a:61:f4:da:18:10:1c:10:f8:5e:
68:fa:56:dd:60:ec:09:9e:98:29:9b:7d:ad:cd:21:
bb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:98:4D:AC:9D:98:82:50:75:9D:DF:0E:C1:46:65:2B:69:EE:E7:31
X509v3 Authority Key Identifier:
keyid:C6:E2:33:BD:89:3D:72:E2:62:0A:F6:6D:E6:96:FE:2E:E7:A2:E5:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/C6E233BD893D72E2620AF66DE696FE2EE7A2E527.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C6E233BD893D72E2620AF66DE696FE2EE7A2E527.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2NP8cPD44TjwfPWPDvpRU3zSxgYJ9YVEWCjaigfceQpt/0/3137302e3235342e3234302e302f32322d3232203d3e20323635333834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.240.0/22
Signature Algorithm: sha256WithRSAEncryption
19:98:c6:a7:96:30:d0:c2:22:4b:0a:4b:69:85:0d:bf:63:a9:
b3:c2:9e:b3:95:15:46:dd:a8:01:10:f3:e6:e5:84:57:9f:4b:
f7:e8:24:07:1c:90:c9:44:34:5a:64:b7:d0:2d:2b:0b:36:28:
8b:48:0b:ca:10:9e:1a:2d:6f:77:8d:48:79:42:bd:40:6b:c4:
2d:3f:4d:75:f1:a8:d3:85:49:6e:55:c4:a4:d7:67:22:9b:04:
26:29:b2:e7:5c:50:3a:6e:df:9a:d0:5f:af:d9:7a:41:c8:a6:
cd:e8:5d:3a:98:a1:c4:55:bc:5b:c8:da:64:7d:ac:e0:f3:07:
aa:a5:21:a8:4a:81:73:0f:c3:e7:6d:a9:9c:90:72:5e:29:8d:
e6:29:dd:36:51:ee:f3:6f:5b:a1:04:db:aa:2d:5f:10:2a:75:
50:d1:02:03:1f:82:6c:0d:30:17:34:9b:a9:01:8c:93:1e:3d:
27:ef:a6:ba:bd:f1:30:39:b5:6f:ae:69:53:0c:df:42:a9:1b:
38:41:85:aa:7e:e4:9f:af:a7:e6:a8:c1:c0:37:69:72:37:ae:
26:0b:5a:e1:8c:82:9d:92:2d:1b:60:c9:d8:c9:ef:6c:4b:0c:
e6:25:8f:47:5e:12:72:07:e8:1e:ef:57:17:bb:e7:f7:88:83:
27:34:52:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:03 2024 by rpki-client on console-ams.rpki-client.org