Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2TRVv2xs9Vyaf8pz6y3Zo1SfQ1LVWgr2ZhNhj1Dr65LF/1/34352e3136372e3130362e302f32332d3233203d3e20323638303534.roa
File: 34352e3136372e3130362e302f32332d3233203d3e20323638303534.roa (raw, json)
Hash identifier: R/K8CBaS1jO6XcqLrmvZXD0VUMPNCeZrn7NqF5YSYOY=
Subject key identifier: 1C:FB:B5:11:EF:C4:F9:19:CF:64:BF:FF:F6:7C:CB:1C:E7:08:B9:A4
Certificate issuer: /CN=A944FE7AA3B4B99B28426E9A7E20124A50450D12
Certificate serial: 576867D5427A62CBEDCC164E0D4DC2CDADE34854
Authority key identifier: A9:44:FE:7A:A3:B4:B9:9B:28:42:6E:9A:7E:20:12:4A:50:45:0D:12
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A944FE7AA3B4B99B28426E9A7E20124A50450D12.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2TRVv2xs9Vyaf8pz6y3Zo1SfQ1LVWgr2ZhNhj1Dr65LF/1/34352e3136372e3130362e302f32332d3233203d3e20323638303534.roa
Signing time: Sat 08 Mar 2025 16:03:28 +0000
ROA not before: Sat 08 Mar 2025 15:58:28 +0000
ROA not after: Sat 07 Mar 2026 16:03:28 +0000
asID: 268054
IP address blocks: 45.167.106.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:68:67:d5:42:7a:62:cb:ed:cc:16:4e:0d:4d:c2:cd:ad:e3:48:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A944FE7AA3B4B99B28426E9A7E20124A50450D12
Validity
Not Before: Mar 8 15:58:28 2025 GMT
Not After : Mar 7 16:03:28 2026 GMT
Subject: CN=1CFBB511EFC4F919CF64BFFFF67CCB1CE708B9A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1f:1c:87:12:ad:35:14:13:9a:d2:15:f2:fa:
98:18:d6:ba:c2:74:5c:79:db:e6:74:bd:fc:0f:02:
fe:fe:e5:fc:cf:76:cc:20:a6:9a:dd:63:8b:7f:26:
70:cf:65:a3:7f:25:e7:ce:ce:e9:14:3e:3f:67:ad:
3a:33:3a:41:21:8b:a5:67:3f:83:be:f4:57:6e:59:
0a:f9:70:a2:6b:99:70:5d:a8:cc:e8:80:24:0a:75:
5e:be:2e:7b:29:3e:55:aa:a1:30:ca:ed:1a:a6:e1:
d8:cd:5e:26:ed:59:08:aa:0f:34:87:d2:64:e2:4f:
de:6b:6e:0b:9c:e7:d8:a2:37:39:68:bc:b7:c9:56:
61:63:6c:2e:33:ed:c1:5b:02:5f:ba:49:c3:00:1a:
e5:ed:13:c8:0a:63:43:26:f8:e0:f8:a6:ab:8f:5e:
e9:76:89:e7:eb:f3:97:cc:3d:31:3c:91:ae:0e:63:
3a:f9:16:d3:9f:9a:58:60:e3:49:11:0e:92:6c:78:
3e:9a:cb:b1:fe:2a:ce:8d:d2:26:10:75:47:60:51:
20:51:42:58:ba:69:e9:23:c2:83:10:6e:72:f3:94:
fe:08:cd:b5:af:c9:61:88:73:5e:a4:08:7f:f9:70:
11:f0:03:a0:13:26:8d:eb:d3:d3:b1:f6:2c:2d:fd:
aa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FB:B5:11:EF:C4:F9:19:CF:64:BF:FF:F6:7C:CB:1C:E7:08:B9:A4
X509v3 Authority Key Identifier:
keyid:A9:44:FE:7A:A3:B4:B9:9B:28:42:6E:9A:7E:20:12:4A:50:45:0D:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2TRVv2xs9Vyaf8pz6y3Zo1SfQ1LVWgr2ZhNhj1Dr65LF/1/A944FE7AA3B4B99B28426E9A7E20124A50450D12.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A944FE7AA3B4B99B28426E9A7E20124A50450D12.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2TRVv2xs9Vyaf8pz6y3Zo1SfQ1LVWgr2ZhNhj1Dr65LF/1/34352e3136372e3130362e302f32332d3233203d3e20323638303534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.167.106.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:8b:fb:12:01:ea:17:e6:53:bb:bc:bd:3c:c7:06:78:e1:05:
0a:a8:1a:cc:e8:29:25:28:ec:00:bc:ac:37:e8:df:39:a4:15:
fb:54:48:14:d6:64:11:da:11:c9:2a:c0:af:fc:0a:de:e0:e3:
2a:b3:87:66:80:dd:a0:4b:d0:0f:a1:ca:e5:5c:f0:c5:4d:f0:
cc:42:60:27:e4:77:37:f8:29:b1:82:03:14:ac:47:dd:9e:ba:
83:59:21:02:f0:fc:f8:90:a9:09:9a:cf:0c:9d:da:1d:8a:2b:
03:4d:3c:4d:e3:a1:e7:63:14:ec:4e:40:4e:8d:80:08:4d:bc:
e7:9c:0e:fd:64:8c:2c:7b:6d:eb:04:4d:56:ae:99:c2:88:8e:
bc:aa:5b:2e:64:b4:31:c9:69:24:a7:c6:3d:03:de:2f:a7:e3:
17:77:ae:2a:b8:f4:01:7f:0e:6c:12:82:4c:9e:b1:e0:cb:1f:
79:41:7a:13:3b:5e:b0:cc:6b:c9:13:7a:79:11:5d:6f:eb:e2:
0d:c9:3f:b7:3d:e4:12:89:aa:77:0d:83:de:d6:a8:0b:d2:35:
6b:40:36:2c:bd:a2:40:a3:ac:26:19:e3:52:bb:85:1c:04:db:
fe:8b:4d:ba:dc:d9:51:50:da:bc:51:39:01:05:e8:ba:bc:ac:
2d:6a:2a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:03:53 2025 by rpki-client