Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa
File: 34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa (raw, json)
Hash identifier: 2NMguSsl/2s7rHFGKJEOHMSnV6hTO9XsLO2UPL4h7Ds=
Subject key identifier: AE:27:A4:70:63:13:E4:69:50:5A:FA:1A:64:85:31:C6:A0:92:2F:D7
Certificate issuer: /CN=401E64DC4591B39EEF36B1700B289C705583F254
Certificate serial: 60DDEF00F7F699803C3624AAB34A4308D47F811E
Authority key identifier: 40:1E:64:DC:45:91:B3:9E:EF:36:B1:70:0B:28:9C:70:55:83:F2:54
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/401E64DC4591B39EEF36B1700B289C705583F254.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa
Signing time: Tue 19 Nov 2024 14:36:20 +0000
ROA not before: Tue 19 Nov 2024 14:31:20 +0000
ROA not after: Tue 18 Nov 2025 14:36:20 +0000
asID: 268425
IP address blocks: 45.160.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:dd:ef:00:f7:f6:99:80:3c:36:24:aa:b3:4a:43:08:d4:7f:81:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401E64DC4591B39EEF36B1700B289C705583F254
Validity
Not Before: Nov 19 14:31:20 2024 GMT
Not After : Nov 18 14:36:20 2025 GMT
Subject: CN=AE27A4706313E469505AFA1A648531C6A0922FD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:74:91:9e:5c:a9:f7:35:d8:b9:f9:9d:8d:ff:
47:31:ab:a0:19:06:2f:c2:54:7f:45:a0:eb:e9:91:
1e:0b:4e:27:3b:84:67:d2:2b:3f:7d:09:62:20:3e:
a3:a9:3d:8b:df:9f:1e:37:75:6c:f0:cc:6c:98:ad:
d4:90:8a:4d:57:e4:74:2f:59:02:b4:ad:7d:13:16:
c0:a2:36:e4:57:e9:f0:d5:b4:f4:f6:6f:9f:5f:5b:
f4:98:a5:a6:4e:cc:17:e7:54:55:fe:bb:6c:bf:df:
3b:2a:85:7f:2e:4b:00:e6:a4:a4:e3:a9:9a:ce:7d:
38:03:cc:aa:49:78:8e:eb:f0:a9:2b:83:c2:65:31:
47:d5:b2:c2:f6:5c:b7:02:0c:0c:6b:24:a5:b5:aa:
6d:91:69:81:be:67:35:da:40:ee:86:fc:23:34:fd:
c4:16:90:1d:3c:95:ad:0f:40:b4:64:2b:7b:b5:62:
d6:60:12:37:7c:71:14:dc:75:65:82:25:7e:d6:76:
40:a7:bf:8a:a6:0b:90:8a:a0:e1:84:95:c2:cf:f0:
63:90:d3:29:fb:17:6c:5c:d5:51:32:c8:da:c5:5d:
72:92:bb:7d:e7:f0:32:c4:57:b4:22:b6:54:71:59:
48:2e:e6:a3:d0:40:88:e2:1f:1c:26:ba:36:f1:26:
56:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:27:A4:70:63:13:E4:69:50:5A:FA:1A:64:85:31:C6:A0:92:2F:D7
X509v3 Authority Key Identifier:
keyid:40:1E:64:DC:45:91:B3:9E:EF:36:B1:70:0B:28:9C:70:55:83:F2:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/401E64DC4591B39EEF36B1700B289C705583F254.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/401E64DC4591B39EEF36B1700B289C705583F254.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2P2W5TGybSF7AWWK9AKkAdNNoBSVufyjy632uvXSCMVN/0/34352e3136302e3137302e302f32342d3234203d3e20323638343235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.170.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:2a:76:e8:34:d3:c8:bc:54:1d:24:62:bd:2a:6b:66:56:2d:
3a:0d:f3:a4:51:f4:42:d2:97:73:5e:02:cf:d4:62:0d:d0:52:
f1:43:c7:98:f0:e0:17:5c:94:27:c5:6b:8c:bb:8e:c3:16:7a:
7b:b9:76:73:90:ce:4c:8f:ce:35:5b:29:30:41:87:00:b3:4a:
4b:68:fa:2f:f8:e8:8e:57:b7:e9:0d:d0:5c:61:b3:35:fd:af:
33:d3:d3:bf:fe:00:91:36:31:8e:fe:71:f6:c8:74:31:63:2b:
27:04:25:fd:3a:ed:4a:3e:c7:71:cd:04:42:9d:99:f9:6e:0b:
7c:25:ae:7d:ca:56:5a:c5:e4:f8:c5:60:7a:16:69:5c:7b:35:
21:6a:d5:e3:04:6b:cb:6e:c3:da:37:0a:52:9e:ec:c7:c7:d6:
ef:91:46:df:92:f1:9c:aa:da:83:72:86:68:97:9b:e3:f1:0d:
3a:ca:58:2d:d2:2d:2a:42:25:77:d2:d9:29:3b:85:73:67:2f:
7a:f1:27:78:69:91:bd:01:4d:b1:69:ad:36:6e:79:3c:28:11:
79:f9:99:01:99:12:85:b0:f0:fe:3f:03:ac:66:68:e9:87:fc:
4a:b8:c0:7d:32:4e:4e:c0:23:d6:40:14:b5:c8:1e:17:c4:47:
d2:60:41:44
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUYN3vAPf2mYA8NiSqs0pDCNR/gR4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDAxRTY0REM0NTkxQjM5RUVGMzZCMTcwMEIyODlDNzA1
NTgzRjI1NDAeFw0yNDExMTkxNDMxMjBaFw0yNTExMTgxNDM2MjBaMDMxMTAvBgNV
BAMTKEFFMjdBNDcwNjMxM0U0Njk1MDVBRkExQTY0ODUzMUM2QTA5MjJGRDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRdJGeXKn3Ndi5+Z2N/0cxq6AZ
Bi/CVH9FoOvpkR4LTic7hGfSKz99CWIgPqOpPYvfnx43dWzwzGyYrdSQik1X5HQv
WQK0rX0TFsCiNuRX6fDVtPT2b59fW/SYpaZOzBfnVFX+u2y/3zsqhX8uSwDmpKTj
qZrOfTgDzKpJeI7r8Kkrg8JlMUfVssL2XLcCDAxrJKW1qm2RaYG+ZzXaQO6G/CM0
/cQWkB08la0PQLRkK3u1YtZgEjd8cRTcdWWCJX7WdkCnv4qmC5CKoOGElcLP8GOQ
0yn7F2xc1VEyyNrFXXKSu33n8DLEV7QitlRxWUgu5qPQQIjiHxwmujbxJlZ5AgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUriekcGMT5GlQWvoaZIUxxqCSL9cwHwYDVR0j
BBgwFoAUQB5k3EWRs57vNrFwCyiccFWD8lQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMlAyVzVUR3liU0Y3QVdXSzlBS2tBZE5Ob0JTVnVmeWp5NjMydXZYU0NN
Vk4vMC80MDFFNjREQzQ1OTFCMzlFRUYzNkIxNzAwQjI4OUM3MDU1ODNGMjU0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQwMUU2NERDNDU5MUIzOUVF
RjM2QjE3MDBCMjg5QzcwNTU4M0YyNTQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJQMlc1VEd5YlNGN0FXV0s5QUtrQWROTm9CU1Z1ZnlqeTYzMnV2WFNDTVZOLzAv
MzQzNTJlMzEzNjMwMmUzMTM3MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2
MzgzNDMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAAtoKowDQYJKoZIhvcNAQELBQADggEBAKwqdug0
08i8VB0kYr0qa2ZWLToN86RR9ELSl3NeAs/UYg3QUvFDx5jw4BdclCfFa4y7jsMW
enu5dnOQzkyPzjVbKTBBhwCzSkto+i/46I5Xt+kN0FxhszX9rzPT07/+AJE2MY7+
cfbIdDFjKycEJf067Uo+x3HNBEKdmfluC3wlrn3KVlrF5PjFYHoWaVx7NSFq1eME
a8tuw9o3ClKe7MfH1u+RRt+S8Zyq2oNyhmiXm+PxDTrKWC3SLSpCJXfS2Sk7hXNn
L3rxJ3hpkb0BTbFprTZueTwoEXn5mQGZEoWw8P4/A6xmaOmH/Eq4wH0yTk7AI9ZA
FLXIHhfER9JgQUQ=
-----END CERTIFICATE-----
Generated at Mon Apr 7 22:58:56 2025 by rpki-client