Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa
File: AS53059.roa (raw, json)
Hash identifier: OaS2FCZ5DoWuFKLOt+1ZnFrtERbW5HqHQhAvjhZBEj4=
Subject key identifier: 70:A2:7A:AF:20:F4:FA:E1:B4:5E:AA:42:06:37:9A:17:A1:1A:2B:2C
Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E
Certificate serial: 5B0E75312D9CB03CD077D50FF9F6692431C275BA
Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa
Signing time: Thu 07 Nov 2024 20:53:51 +0000
ROA not before: Thu 07 Nov 2024 20:48:51 +0000
ROA not after: Thu 06 Nov 2025 20:53:51 +0000
asID: 53059
IP address blocks: 138.0.100.0/22 maxlen: 22
168.228.68.0/22 maxlen: 22
177.137.193.0/24 maxlen: 24
177.137.194.0/24 maxlen: 24
177.137.195.0/24 maxlen: 24
177.137.196.0/24 maxlen: 24
177.137.197.0/24 maxlen: 24
177.137.198.0/24 maxlen: 24
177.137.199.0/24 maxlen: 24
177.137.200.0/24 maxlen: 24
177.137.201.0/24 maxlen: 24
177.137.202.0/24 maxlen: 24
177.137.203.0/24 maxlen: 24
177.137.204.0/24 maxlen: 24
177.137.205.0/24 maxlen: 24
177.137.206.0/24 maxlen: 24
177.137.207.0/24 maxlen: 24
179.96.240.0/20 maxlen: 20
186.193.96.0/20 maxlen: 20
186.208.213.0/24 maxlen: 24
186.208.214.0/24 maxlen: 24
186.208.215.0/24 maxlen: 24
186.251.113.0/24 maxlen: 24
186.251.116.0/24 maxlen: 24
186.251.117.0/24 maxlen: 24
187.49.192.0/20 maxlen: 20
187.87.112.0/20 maxlen: 20
200.233.80.0/20 maxlen: 20
2804:2140:100c::/48 maxlen: 48
2804:2140:1016::/48 maxlen: 48
2804:2140:1020::/46 maxlen: 46
2804:2140:1801::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:0e:75:31:2d:9c:b0:3c:d0:77:d5:0f:f9:f6:69:24:31:c2:75:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E
Validity
Not Before: Nov 7 20:48:51 2024 GMT
Not After : Nov 6 20:53:51 2025 GMT
Subject: CN=70A27AAF20F4FAE1B45EAA4206379A17A11A2B2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:d3:c1:4e:86:53:cf:cc:34:ef:b5:58:f3:
ad:a2:0a:5b:c5:2c:bf:f2:bd:10:81:e2:8b:ce:2b:
1f:9d:e2:4f:89:dc:7d:a7:26:e4:86:87:d5:f0:6b:
75:58:42:36:c1:23:ab:eb:c3:05:33:ff:95:3f:25:
4f:3b:cc:6c:c9:01:46:3c:38:c7:75:76:fb:1e:b0:
8e:3e:3e:2a:e4:25:3b:de:a8:d8:4a:56:1e:79:32:
94:5f:2b:92:63:aa:c9:04:d9:2c:1f:10:a7:e8:e6:
d1:e4:5c:e0:5d:6b:87:ed:07:dd:7e:9e:5b:3d:a8:
25:9a:04:6b:9a:8a:7a:f2:33:95:bd:e4:39:dd:5c:
9e:a4:f0:92:1e:ad:47:2f:63:c0:18:28:e8:a7:cb:
64:55:b7:49:c9:dd:f4:ca:27:66:bd:28:b8:b4:38:
66:54:1e:5c:8f:98:16:18:d1:95:36:b9:2f:ea:a0:
4b:12:8f:a3:31:37:db:e8:0a:7f:b2:c1:ff:11:27:
47:84:a9:37:1f:34:fc:86:12:54:ce:c0:e6:bb:a7:
70:86:5d:fc:ef:e9:f5:90:1f:12:2b:7d:08:8b:51:
72:19:3a:97:0f:3b:e7:f0:9d:0d:5d:31:17:9f:a6:
0e:57:ee:e9:4a:28:6e:2a:9f:79:15:c8:15:84:74:
df:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A2:7A:AF:20:F4:FA:E1:B4:5E:AA:42:06:37:9A:17:A1:1A:2B:2C
X509v3 Authority Key Identifier:
keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.0.100.0/22
168.228.68.0/22
177.137.193.0-177.137.207.255
179.96.240.0/20
186.193.96.0/20
186.208.213.0-186.208.215.255
186.251.113.0/24
186.251.116.0/23
187.49.192.0/20
187.87.112.0/20
200.233.80.0/20
IPv6:
2804:2140:100c::/48
2804:2140:1016::/48
2804:2140:1020::/46
2804:2140:1801::/48
Signature Algorithm: sha256WithRSAEncryption
2a:9d:4f:5d:da:1a:16:5e:c9:6a:09:2a:b5:65:97:d7:ca:42:
f0:a1:a8:e1:9e:c0:4d:35:11:41:38:5c:4f:f6:b7:68:d8:16:
60:94:ea:24:70:77:30:37:2e:3b:74:d5:62:e5:8a:32:8c:22:
3b:9d:c1:0a:6d:af:e3:7e:27:53:bc:09:7a:4f:36:5f:a6:05:
d3:2f:98:c3:30:e2:b0:ad:cb:cc:16:cb:10:b9:5b:9b:b7:16:
a6:6c:74:d6:3d:8b:1a:63:95:98:68:28:81:63:f8:a2:dd:10:
a0:77:5d:1e:31:fe:4a:8f:65:5f:e1:c6:ed:67:27:9b:4f:7e:
9e:85:7f:39:af:a6:4f:97:4f:27:b3:99:98:5d:e3:63:33:5b:
30:1f:3e:0c:3f:a3:c0:a0:94:66:05:75:8c:49:5d:78:84:2e:
e1:17:b8:b3:86:95:15:20:b1:eb:32:78:49:8c:7c:5f:86:1f:
0a:9e:71:c3:74:0d:87:3b:47:d4:5d:8a:ae:18:70:bb:ac:7e:
80:94:34:2e:75:0d:54:7a:76:57:20:49:8b:98:29:e1:a8:06:
d7:1a:a9:fb:b1:75:c6:ef:51:f2:1c:15:73:16:89:e9:6e:4b:
81:b5:87:12:0c:c0:8e:e8:9e:39:70:1b:f5:31:e3:d6:9d:06:
11:25:c2:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:22:31 2025 by rpki-client