Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa
File: 323830343a333964343a3a2f33322d313238203d3e20323636303533.roa (raw, json)
Hash identifier: r47jeAtXkDSSHBk4wmSQFxs2P6dr9ahrGD+qGiVL3x0=
Subject key identifier: 31:96:0E:9D:AC:A2:58:F0:64:AB:50:85:26:4C:44:1B:29:73:A7:83
Certificate issuer: /CN=CD2F3A4F1911F35A642E721730D072EF6E3DB85C
Certificate serial: 67DE2D23C99C521F4ABB5BCA4CFEE9220C10CF5E
Authority key identifier: CD:2F:3A:4F:19:11:F3:5A:64:2E:72:17:30:D0:72:EF:6E:3D:B8:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa
Signing time: Wed 12 Jun 2024 12:45:54 +0000
ROA not before: Wed 12 Jun 2024 12:40:54 +0000
ROA not after: Wed 11 Jun 2025 12:45:54 +0000
asID: 266053
IP address blocks: 2804:39d4::/32 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:de:2d:23:c9:9c:52:1f:4a:bb:5b:ca:4c:fe:e9:22:0c:10:cf:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD2F3A4F1911F35A642E721730D072EF6E3DB85C
Validity
Not Before: Jun 12 12:40:54 2024 GMT
Not After : Jun 11 12:45:54 2025 GMT
Subject: CN=31960E9DACA258F064AB5085264C441B2973A783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:26:44:59:d7:af:3f:a0:e4:fd:54:8d:4e:fc:
63:15:fa:f0:9c:e7:fe:ec:ed:01:24:7e:c5:35:64:
77:35:fe:7c:0c:e8:27:56:c5:7a:6f:b9:a7:56:9c:
87:d9:cf:5d:82:8d:7c:29:1e:76:08:88:58:5b:74:
48:00:43:9c:0a:92:4c:de:43:8b:45:6e:4f:4f:0a:
4d:e7:8e:37:97:03:ea:75:47:81:58:28:56:af:57:
d0:ed:e2:71:4d:81:40:ea:0b:7f:86:0c:a6:75:67:
60:7a:4a:f3:82:40:fe:36:35:60:5a:30:1f:02:34:
b0:d2:4a:b7:2e:ac:5c:db:03:a5:fd:bb:95:b2:72:
b0:16:56:3c:74:d7:f9:b7:d8:93:6a:7e:be:1e:22:
91:5b:e4:10:e1:22:74:fc:d9:d1:9c:53:d3:16:11:
91:26:50:75:69:53:82:2d:03:d9:aa:69:1a:8c:d3:
f2:1c:e6:5a:5c:ff:f0:60:86:05:74:76:02:27:61:
71:de:d0:00:07:50:27:7f:95:4c:2f:5f:47:0d:14:
37:50:60:c8:76:ba:f7:c2:71:8e:8c:ab:a6:89:3a:
85:9e:94:b5:31:45:32:72:b6:e4:67:2a:2c:93:55:
1d:57:ad:5d:06:19:95:8a:5a:b1:54:8f:73:08:e4:
32:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:96:0E:9D:AC:A2:58:F0:64:AB:50:85:26:4C:44:1B:29:73:A7:83
X509v3 Authority Key Identifier:
keyid:CD:2F:3A:4F:19:11:F3:5A:64:2E:72:17:30:D0:72:EF:6E:3D:B8:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:39d4::/32
Signature Algorithm: sha256WithRSAEncryption
4e:df:8d:9d:15:56:35:9d:c9:68:82:36:45:62:80:6e:86:a7:
94:8c:f4:6e:85:e8:6e:84:a1:a5:e1:a5:29:01:15:1a:72:98:
1b:1a:c9:e0:f9:18:1e:7d:c5:8b:8b:f0:f5:32:8d:00:5a:a9:
22:cc:5e:a2:25:03:5a:12:ed:97:ff:d4:02:b3:ce:97:07:4e:
58:d3:1d:d1:b2:21:ae:5e:76:bc:95:b5:db:d4:57:58:a3:96:
d3:5e:d1:b5:1d:3e:45:4f:80:e9:4b:42:48:0b:71:19:76:4c:
e5:74:22:4f:45:02:40:ae:67:b5:4d:d6:12:05:09:f8:d4:c3:
c8:0b:52:e9:57:b1:5a:62:d8:86:e3:1d:53:76:a8:d5:95:6c:
3f:2c:c5:e9:35:57:d2:30:90:0a:56:5a:4d:93:a6:46:11:98:
33:4b:a0:9a:99:d6:6d:cf:c8:b2:bc:b6:38:5b:9e:d9:1a:5d:
66:a1:43:48:08:11:de:9c:d1:33:22:fc:70:d9:81:6b:61:4f:
f4:52:c1:07:2f:42:79:b4:61:a3:4b:5f:2c:9e:f7:78:73:b5:
05:2c:69:ad:48:8e:ab:7d:2e:55:b1:3e:80:31:05:49:17:06:
ba:d8:c5:f9:ac:1d:ed:6c:3e:23:7c:ed:50:93:1d:0b:4a:95:
dd:56:4f:f3
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgIUZ94tI8mcUh9Ku1vKTP7pIgwQz14wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0QyRjNBNEYxOTExRjM1QTY0MkU3MjE3MzBEMDcyRUY2
RTNEQjg1QzAeFw0yNDA2MTIxMjQwNTRaFw0yNTA2MTExMjQ1NTRaMDMxMTAvBgNV
BAMTKDMxOTYwRTlEQUNBMjU4RjA2NEFCNTA4NTI2NEM0NDFCMjk3M0E3ODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJkRZ168/oOT9VI1O/GMV+vCc
5/7s7QEkfsU1ZHc1/nwM6CdWxXpvuadWnIfZz12CjXwpHnYIiFhbdEgAQ5wKkkze
Q4tFbk9PCk3njjeXA+p1R4FYKFavV9Dt4nFNgUDqC3+GDKZ1Z2B6SvOCQP42NWBa
MB8CNLDSSrcurFzbA6X9u5WycrAWVjx01/m32JNqfr4eIpFb5BDhInT82dGcU9MW
EZEmUHVpU4ItA9mqaRqM0/Ic5lpc//BghgV0dgInYXHe0AAHUCd/lUwvX0cNFDdQ
YMh2uvfCcY6Mq6aJOoWelLUxRTJytuRnKiyTVR1XrV0GGZWKWrFUj3MI5DJtAgMB
AAGjggJSMIICTjAdBgNVHQ4EFgQUMZYOnayiWPBkq1CFJkxEGylzp4MwHwYDVR0j
BBgwFoAUzS86TxkR81pkLnIXMNBy7249uFwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMmRTb2ExMlVHbll4UDZ2VDkzNWVMZzhNdEZ4bmVpaEZDNjN6ZFpCMmtn
NHEvMS9DRDJGM0E0RjE5MTFGMzVBNjQyRTcyMTczMEQwNzJFRjZFM0RCODVDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NEMkYzQTRGMTkxMUYzNUE2
NDJFNzIxNzMwRDA3MkVGNkUzREI4NUMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJkU29hMTJVR25ZeFA2dlQ5MzVlTGc4TXRGeG5laWhGQzYzemRaQjJrZzRxLzEv
MzIzODMwMzQzYTMzMzk2NDM0M2EzYTJmMzMzMjJkMzEzMjM4MjAzZDNlMjAzMjM2
MzYzMDM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUH
AQcBAf8EETAPMA0EAgACMAcDBQAoBDnUMA0GCSqGSIb3DQEBCwUAA4IBAQBO342d
FVY1nclogjZFYoBuhqeUjPRuhehuhKGl4aUpARUacpgbGsng+RgefcWLi/D1Mo0A
WqkizF6iJQNaEu2X/9QCs86XB05Y0x3RsiGuXna8lbXb1FdYo5bTXtG1HT5FT4Dp
S0JIC3EZdkzldCJPRQJArme1TdYSBQn41MPIC1LpV7FaYtiG4x1TdqjVlWw/LMXp
NVfSMJAKVlpNk6ZGEZgzS6CamdZtz8iyvLY4W57ZGl1moUNICBHenNEzIvxw2YFr
YU/0UsEHL0J5tGGjS18snvd4c7UFLGmtSI6rfS5VsT6AMQVJFwa62MX5rB3tbD4j
fO1Qkx0LSpXdVk/z
-----END CERTIFICATE-----
Generated at Mon Apr 7 17:26:12 2025 by rpki-client