Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2ZbsyMfBFBbAPwDY4Ns5yaxnx4cWGMe69UNWNSe2Ku1a/0/3133382e39372e3231362e302f32322d3332203d3e20323634323032.roa
File: 3133382e39372e3231362e302f32322d3332203d3e20323634323032.roa (raw, json)
Hash identifier: eJnlI+VUL5li96KLPDM1cafxRPof7C7cejEaQymc4tQ=
Subject key identifier: 74:E7:D8:77:0F:7A:B0:7C:0D:71:5F:8A:AA:80:11:35:62:09:30:DF
Certificate issuer: /CN=B9EE2FF3A303D48BAF71B95D7F3272B7D57AD1D5
Certificate serial: 2BAA4E76162B02F81F4F9FB89CB53236C45FBF82
Authority key identifier: B9:EE:2F:F3:A3:03:D4:8B:AF:71:B9:5D:7F:32:72:B7:D5:7A:D1:D5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B9EE2FF3A303D48BAF71B95D7F3272B7D57AD1D5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2ZbsyMfBFBbAPwDY4Ns5yaxnx4cWGMe69UNWNSe2Ku1a/0/3133382e39372e3231362e302f32322d3332203d3e20323634323032.roa
Signing time: Sat 25 Mar 2023 13:02:07 +0000
ROA not before: Sat 25 Mar 2023 12:57:07 +0000
ROA not after: Sat 23 Mar 2024 13:02:07 +0000
asID: 264202
IP address blocks: 138.97.216.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:aa:4e:76:16:2b:02:f8:1f:4f:9f:b8:9c:b5:32:36:c4:5f:bf:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9EE2FF3A303D48BAF71B95D7F3272B7D57AD1D5
Validity
Not Before: Mar 25 12:57:07 2023 GMT
Not After : Mar 23 13:02:07 2024 GMT
Subject: CN=74E7D8770F7AB07C0D715F8AAA801135620930DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:30:10:a5:fa:7d:09:40:20:d8:d1:82:db:
c9:4b:19:c4:92:fc:91:7d:52:a3:85:c4:d2:cc:a4:
a8:08:9f:74:ca:14:d7:cb:7c:0c:20:ae:19:15:c8:
9b:d5:8f:40:29:4c:ed:82:a7:d5:f1:52:03:ae:14:
e2:8c:8a:8d:d6:a7:a1:38:28:13:71:df:fd:96:84:
9b:89:1f:53:e7:47:af:03:af:11:f1:de:7c:7b:06:
f2:ca:c9:71:21:10:9c:14:fc:06:c9:bb:98:de:eb:
bc:fd:09:00:e3:37:e8:53:aa:d1:42:b1:a0:72:f6:
68:b8:15:ac:8d:7f:4a:d9:39:f2:06:95:61:da:c2:
08:f1:ea:2b:67:ee:34:2e:84:53:e3:3b:c6:93:f2:
c0:49:1d:3c:15:54:57:c1:ff:45:c8:85:16:a7:4e:
4d:6b:ba:a6:62:04:a4:a1:d5:42:f9:3f:22:40:d6:
3f:75:cd:90:30:89:56:66:6e:3a:85:38:77:92:34:
96:3b:58:34:e8:4d:5b:5a:01:85:6f:1e:73:a8:fa:
28:c8:54:ce:3b:61:a8:42:ed:75:1e:88:15:22:6e:
60:f4:8b:31:e4:f2:dc:21:24:2a:58:a2:ad:2f:f1:
fe:f5:e7:ed:25:9a:bf:c7:61:12:e3:b1:3f:2a:4e:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E7:D8:77:0F:7A:B0:7C:0D:71:5F:8A:AA:80:11:35:62:09:30:DF
X509v3 Authority Key Identifier:
keyid:B9:EE:2F:F3:A3:03:D4:8B:AF:71:B9:5D:7F:32:72:B7:D5:7A:D1:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2ZbsyMfBFBbAPwDY4Ns5yaxnx4cWGMe69UNWNSe2Ku1a/0/B9EE2FF3A303D48BAF71B95D7F3272B7D57AD1D5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B9EE2FF3A303D48BAF71B95D7F3272B7D57AD1D5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2ZbsyMfBFBbAPwDY4Ns5yaxnx4cWGMe69UNWNSe2Ku1a/0/3133382e39372e3231362e302f32322d3332203d3e20323634323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.97.216.0/22
Signature Algorithm: sha256WithRSAEncryption
81:d1:22:24:a9:16:b0:e9:04:e3:77:c6:88:fe:14:63:40:d8:
15:63:0b:2b:60:83:2f:cb:7c:cc:b4:22:f6:d5:e1:73:f7:a6:
9c:39:4c:ed:d3:73:75:b2:e0:d4:3e:82:76:8b:98:c9:ca:d6:
54:46:ae:25:6b:aa:32:6c:c3:7a:37:dd:bc:22:08:07:65:48:
1a:e8:ab:9c:3b:25:9e:fa:53:97:7d:99:c9:76:ce:8c:b4:56:
3a:5b:33:d4:2d:1f:28:9c:66:06:db:35:99:75:56:46:46:3b:
ef:1c:1f:14:f4:91:24:f3:63:24:4b:b2:f7:84:1d:95:f9:5a:
c2:6f:54:2a:74:e8:10:a7:bb:96:d1:cf:f7:7b:27:99:45:a9:
31:4a:1a:ec:2a:1d:f2:15:5f:89:66:01:37:50:cd:92:9a:09:
7a:29:c5:a9:cc:db:40:01:63:69:84:c5:b0:1e:3d:9a:e3:a9:
ef:1e:34:f0:5c:f2:2e:b9:07:91:05:8d:09:78:b9:82:00:f5:
b7:10:6c:e1:87:79:0f:4d:5d:fa:9c:df:8c:ca:e8:e1:58:34:
39:bb:af:ed:97:a9:f8:4f:19:e7:90:72:ff:d8:fe:fd:d8:56:
b4:35:35:12:23:1b:85:d0:ba:62:33:c7:4e:13:84:28:10:4c:
e6:70:be:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:20 2024 by rpki-client on console-fra.rpki-client.org