Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32332d3233203d3e20323638343235.roa
File: 34352e3136302e3137302e302f32332d3233203d3e20323638343235.roa (raw, json)
Hash identifier: c3hsOn+mToJip9uYdxO84P0iTDyKu9ljneM8xuo0IS0=
Subject key identifier: C0:0A:B4:18:0E:33:D3:74:4F:21:55:0D:40:BD:FF:CE:79:CC:DA:6A
Certificate issuer: /CN=401E64DC4591B39EEF36B1700B289C705583F254
Certificate serial: 3DAF13E1C174F08BB00C9E082B4BE524C57B76F8
Authority key identifier: 40:1E:64:DC:45:91:B3:9E:EF:36:B1:70:0B:28:9C:70:55:83:F2:54
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/401E64DC4591B39EEF36B1700B289C705583F254.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32332d3233203d3e20323638343235.roa
Signing time: Tue 19 Nov 2024 14:36:16 +0000
ROA not before: Tue 19 Nov 2024 14:31:16 +0000
ROA not after: Tue 18 Nov 2025 14:36:16 +0000
asID: 268425
IP address blocks: 45.160.170.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:af:13:e1:c1:74:f0:8b:b0:0c:9e:08:2b:4b:e5:24:c5:7b:76:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401E64DC4591B39EEF36B1700B289C705583F254
Validity
Not Before: Nov 19 14:31:16 2024 GMT
Not After : Nov 18 14:36:16 2025 GMT
Subject: CN=C00AB4180E33D3744F21550D40BDFFCE79CCDA6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:88:e8:b5:36:42:63:34:05:d3:d0:b2:51:2f:
54:db:21:0d:b9:f3:5a:39:27:fc:f5:c5:98:a3:22:
5f:a6:e7:dc:52:bb:f6:24:f2:d6:c5:20:b0:c6:d7:
37:ee:4a:21:ed:7d:c1:22:ca:b5:39:92:87:9b:04:
de:0f:d9:9e:8d:a1:b0:97:73:ae:55:e0:2c:f2:f9:
fe:6c:44:1a:fd:1b:32:fb:3c:07:7b:2c:42:5b:24:
f6:a1:b9:2d:b8:06:3e:48:1b:14:90:b6:89:66:16:
bf:cc:d5:1e:44:ac:21:8b:e2:54:5f:7f:98:7b:eb:
be:2d:8a:99:59:4a:20:d5:c0:6e:31:d4:ee:a5:49:
cf:e2:d6:a3:a3:16:e7:68:ee:45:c9:59:93:21:84:
67:0a:c9:ea:9d:41:98:9b:9f:3e:24:94:2b:79:1b:
1f:04:89:3c:4d:5c:d2:0b:c6:11:da:29:28:9b:12:
3b:45:1d:e8:70:99:46:56:bf:98:3a:0e:75:16:28:
7c:03:90:6f:44:21:23:24:1c:da:65:43:c2:0f:23:
62:a0:a3:a0:10:f8:7b:0d:7b:17:37:5c:76:4b:91:
be:8a:4f:a1:7b:61:70:aa:8c:06:a4:a5:8e:64:6a:
ca:f6:5c:34:1b:37:bb:72:f0:b3:c5:97:9b:23:73:
5f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0A:B4:18:0E:33:D3:74:4F:21:55:0D:40:BD:FF:CE:79:CC:DA:6A
X509v3 Authority Key Identifier:
keyid:40:1E:64:DC:45:91:B3:9E:EF:36:B1:70:0B:28:9C:70:55:83:F2:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/401E64DC4591B39EEF36B1700B289C705583F254.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/401E64DC4591B39EEF36B1700B289C705583F254.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32332d3233203d3e20323638343235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.170.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:50:a2:b9:d1:5a:62:f9:01:3e:3f:3e:d4:8f:5b:39:5b:19:
f3:33:e8:a9:88:fb:ca:ef:cd:34:e4:6a:69:07:f1:23:c9:6b:
ae:38:ed:07:b6:4e:e2:8c:a7:d2:f9:72:2c:b8:c0:45:09:0a:
12:9f:d6:c8:f5:b8:3c:62:06:a0:d1:4d:f9:a4:f2:fd:ff:5f:
f3:11:6e:bc:07:99:d5:32:c7:2e:62:80:0a:c9:17:f0:76:e0:
4d:e6:93:fa:3b:2a:b7:bc:06:cb:7a:ca:63:fd:28:f5:b9:63:
1d:75:44:f8:ab:19:4d:33:48:5e:ec:84:2f:12:f2:54:d7:eb:
46:c3:a9:e2:68:f3:47:28:ff:d3:9a:6b:3b:0c:da:bb:a2:af:
32:83:e4:79:05:c0:8b:7d:d0:0b:47:4f:26:bf:11:b9:b1:9d:
a6:1e:66:2e:da:b3:a9:90:c2:77:d0:30:22:cf:6e:b5:ff:a5:
c2:8d:4a:7d:b9:9d:cb:10:a8:dc:a5:fd:60:ad:27:9e:49:61:
0a:2b:10:97:cf:47:e6:5d:5c:90:62:05:49:9a:11:7e:dc:f2:
a9:d7:25:c8:2d:0c:ea:24:f4:b5:79:d8:28:79:49:c2:3b:35:
4f:80:10:3b:55:5e:e3:a1:8f:bd:49:8d:8e:10:be:55:0b:77:
89:5d:19:8f
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUPa8T4cF08IuwDJ4IK0vlJMV7dvgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDAxRTY0REM0NTkxQjM5RUVGMzZCMTcwMEIyODlDNzA1
NTgzRjI1NDAeFw0yNDExMTkxNDMxMTZaFw0yNTExMTgxNDM2MTZaMDMxMTAvBgNV
BAMTKEMwMEFCNDE4MEUzM0QzNzQ0RjIxNTUwRDQwQkRGRkNFNzlDQ0RBNkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiiOi1NkJjNAXT0LJRL1TbIQ25
81o5J/z1xZijIl+m59xSu/Yk8tbFILDG1zfuSiHtfcEiyrU5koebBN4P2Z6NobCX
c65V4Czy+f5sRBr9GzL7PAd7LEJbJPahuS24Bj5IGxSQtolmFr/M1R5ErCGL4lRf
f5h7674tiplZSiDVwG4x1O6lSc/i1qOjFudo7kXJWZMhhGcKyeqdQZibnz4klCt5
Gx8EiTxNXNILxhHaKSibEjtFHehwmUZWv5g6DnUWKHwDkG9EISMkHNplQ8IPI2Kg
o6AQ+HsNexc3XHZLkb6KT6F7YXCqjAakpY5kasr2XDQbN7ty8LPFl5sjc19rAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUwAq0GA4z03RPIVUNQL3/znnM2mowHwYDVR0j
BBgwFoAUQB5k3EWRs57vNrFwCyiccFWD8lQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMlAyVzVUR3liU0Y3QVdXSzlBS2tBZE5Ob0JTVnVmeWp5NjMydXZYU0NN
Vk4vMC80MDFFNjREQzQ1OTFCMzlFRUYzNkIxNzAwQjI4OUM3MDU1ODNGMjU0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQwMUU2NERDNDU5MUIzOUVF
RjM2QjE3MDBCMjg5QzcwNTU4M0YyNTQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJQMlc1VEd5YlNGN0FXV0s5QUtrQWROTm9CU1Z1ZnlqeTYzMnV2WFNDTVZOLzAv
MzQzNTJlMzEzNjMwMmUzMTM3MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMjM2
MzgzNDMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAEtoKowDQYJKoZIhvcNAQELBQADggEBAMFQornR
WmL5AT4/PtSPWzlbGfMz6KmI+8rvzTTkamkH8SPJa6447Qe2TuKMp9L5ciy4wEUJ
ChKf1sj1uDxiBqDRTfmk8v3/X/MRbrwHmdUyxy5igArJF/B24E3mk/o7Kre8Bst6
ymP9KPW5Yx11RPirGU0zSF7shC8S8lTX60bDqeJo80co/9OaazsM2ruirzKD5HkF
wIt90AtHTya/EbmxnaYeZi7as6mQwnfQMCLPbrX/pcKNSn25ncsQqNyl/WCtJ55J
YQorEJfPR+ZdXJBiBUmaEX7c8qnXJcgtDOok9LV52Ch5ScI7NU+AEDtVXuOhj71J
jY4QvlULd4ldGY8=
-----END CERTIFICATE-----
Generated at Sun Apr 13 16:14:09 2025 by rpki-client