Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/34352e342e31362e302f32322d3332203d3e20323636303533.roa
File: 34352e342e31362e302f32322d3332203d3e20323636303533.roa (raw, json)
Hash identifier: kCs60p8MvM6NypDt/xNk3XjvUWV6narkaYkdBtVMmq4=
Subject key identifier: 5F:E9:92:E8:54:1E:A5:E2:53:FB:FD:A6:3C:9D:45:D6:47:AF:76:B9
Certificate issuer: /CN=CD2F3A4F1911F35A642E721730D072EF6E3DB85C
Certificate serial: 787CBB81B57BF0DEBEAE691E36B09B0D55B44EC9
Authority key identifier: CD:2F:3A:4F:19:11:F3:5A:64:2E:72:17:30:D0:72:EF:6E:3D:B8:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/34352e342e31362e302f32322d3332203d3e20323636303533.roa
Signing time: Wed 12 Jun 2024 12:45:25 +0000
ROA not before: Wed 12 Jun 2024 12:40:25 +0000
ROA not after: Wed 11 Jun 2025 12:45:25 +0000
asID: 266053
IP address blocks: 45.4.16.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:7c:bb:81:b5:7b:f0:de:be:ae:69:1e:36:b0:9b:0d:55:b4:4e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD2F3A4F1911F35A642E721730D072EF6E3DB85C
Validity
Not Before: Jun 12 12:40:25 2024 GMT
Not After : Jun 11 12:45:25 2025 GMT
Subject: CN=5FE992E8541EA5E253FBFDA63C9D45D647AF76B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c0:d2:94:2c:71:64:fa:ef:ef:fc:f7:8d:21:
5d:36:7f:0d:ab:8b:2f:c3:55:ba:c5:1f:f0:fc:81:
d2:47:70:b4:ae:7f:7c:bf:ed:ab:de:78:d7:c4:f7:
a3:26:5e:0f:5d:fd:9d:9f:69:b1:81:a0:88:b1:17:
59:4f:37:7d:b2:66:2f:a6:22:b3:00:70:e7:37:d8:
2d:db:99:7f:e6:a6:50:da:53:cf:ef:51:28:fa:41:
d6:fc:cb:3c:8c:5a:3f:d9:b2:a0:0d:e4:77:b6:b6:
42:38:bf:8d:cc:08:43:28:2b:8e:c9:dc:e2:75:b6:
19:f4:d5:66:dc:f0:fa:df:e6:ac:ae:0a:0b:67:69:
72:b6:bf:75:1f:aa:cc:71:a5:92:6a:91:48:3d:6f:
2e:bc:43:28:e0:42:b1:96:4c:46:42:af:80:f7:96:
a7:07:a8:42:32:90:a8:78:95:20:06:0e:19:dd:2b:
c7:ee:df:20:c6:af:48:4a:d0:f0:29:79:bf:1b:f1:
1e:e6:fe:97:a5:b0:08:98:ec:4c:b3:3e:2d:bd:63:
8b:07:87:33:f7:96:39:48:f7:1b:f2:91:a3:1d:99:
30:d5:07:e0:e6:47:00:81:b2:39:32:6a:32:ed:e9:
88:4f:af:3b:fb:bd:42:e1:5a:66:d0:fd:ea:06:47:
78:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E9:92:E8:54:1E:A5:E2:53:FB:FD:A6:3C:9D:45:D6:47:AF:76:B9
X509v3 Authority Key Identifier:
keyid:CD:2F:3A:4F:19:11:F3:5A:64:2E:72:17:30:D0:72:EF:6E:3D:B8:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD2F3A4F1911F35A642E721730D072EF6E3DB85C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/1/34352e342e31362e302f32322d3332203d3e20323636303533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.16.0/22
Signature Algorithm: sha256WithRSAEncryption
36:b6:a7:0b:f3:7f:6a:66:00:de:a5:f7:56:aa:bb:86:2c:a9:
ba:f2:05:b2:c9:4e:c8:7e:0d:e8:29:90:8c:dd:73:ec:fc:ea:
4f:f3:34:aa:ea:c3:96:6d:6c:ca:73:71:e8:fd:83:27:f3:af:
d6:4e:c3:41:ae:c3:f4:09:3a:2d:72:56:ce:b3:d5:c0:1e:cd:
95:3b:e8:cb:5d:44:ae:5d:af:6f:61:60:85:f8:55:81:4a:c1:
50:f1:9e:77:22:80:27:6b:ef:44:7d:40:98:0d:8a:57:b8:86:
00:46:21:ec:51:91:7a:4c:31:c3:6e:eb:c4:7f:a3:c4:b0:1a:
d9:64:5e:93:a5:67:43:d7:b8:47:00:27:97:75:ec:df:b0:23:
bb:d8:50:49:c5:3f:56:0c:b3:de:eb:4c:31:ff:1d:5c:b8:bb:
c8:39:4b:05:ff:58:45:74:30:e0:95:bc:92:92:ec:a5:eb:73:
24:2e:a1:ee:f3:7f:bb:1b:23:01:e0:2b:96:76:3e:38:b2:70:
4c:7c:0c:24:78:8a:88:73:20:fd:6c:e1:ec:ed:d3:45:8d:03:
6c:2e:38:a7:d4:a8:38:36:d7:0b:0b:43:2a:37:a8:2b:58:d4:
fd:33:37:c1:6d:00:d7:48:1c:9d:e6:f4:a7:e4:0f:08:d9:81:
0b:29:9e:f3
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIUeHy7gbV78N6+rmkeNrCbDVW0TskwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0QyRjNBNEYxOTExRjM1QTY0MkU3MjE3MzBEMDcyRUY2
RTNEQjg1QzAeFw0yNDA2MTIxMjQwMjVaFw0yNTA2MTExMjQ1MjVaMDMxMTAvBgNV
BAMTKDVGRTk5MkU4NTQxRUE1RTI1M0ZCRkRBNjNDOUQ0NUQ2NDdBRjc2QjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJwNKULHFk+u/v/PeNIV02fw2r
iy/DVbrFH/D8gdJHcLSuf3y/7aveeNfE96MmXg9d/Z2fabGBoIixF1lPN32yZi+m
IrMAcOc32C3bmX/mplDaU8/vUSj6Qdb8yzyMWj/ZsqAN5He2tkI4v43MCEMoK47J
3OJ1thn01Wbc8Prf5qyuCgtnaXK2v3UfqsxxpZJqkUg9by68QyjgQrGWTEZCr4D3
lqcHqEIykKh4lSAGDhndK8fu3yDGr0hK0PApeb8b8R7m/pelsAiY7EyzPi29Y4sH
hzP3ljlI9xvykaMdmTDVB+DmRwCBsjkyajLt6YhPrzv7vULhWmbQ/eoGR3hZAgMB
AAGjggJLMIICRzAdBgNVHQ4EFgQUX+mS6FQepeJT+/2mPJ1F1kevdrkwHwYDVR0j
BBgwFoAUzS86TxkR81pkLnIXMNBy7249uFwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMmRTb2ExMlVHbll4UDZ2VDkzNWVMZzhNdEZ4bmVpaEZDNjN6ZFpCMmtn
NHEvMS9DRDJGM0E0RjE5MTFGMzVBNjQyRTcyMTczMEQwNzJFRjZFM0RCODVDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NEMkYzQTRGMTkxMUYzNUE2
NDJFNzIxNzMwRDA3MkVGNkUzREI4NUMuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB
lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJkU29hMTJVR25ZeFA2dlQ5MzVlTGc4TXRGeG5laWhGQzYzemRaQjJrZzRxLzEv
MzQzNTJlMzQyZTMxMzYyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2MzYzMDM1
MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAItBBAwDQYJKoZIhvcNAQELBQADggEBADa2pwvzf2pmAN6l
91aqu4YsqbryBbLJTsh+DegpkIzdc+z86k/zNKrqw5ZtbMpzcej9gyfzr9ZOw0Gu
w/QJOi1yVs6z1cAezZU76MtdRK5dr29hYIX4VYFKwVDxnncigCdr70R9QJgNile4
hgBGIexRkXpMMcNu68R/o8SwGtlkXpOlZ0PXuEcAJ5d17N+wI7vYUEnFP1YMs97r
TDH/HVy4u8g5SwX/WEV0MOCVvJKS7KXrcyQuoe7zf7sbIwHgK5Z2PjiycEx8DCR4
iohzIP1s4ezt00WNA2wuOKfUqDg21wsLQyo3qCtY1P0zN8FtANdIHJ3m9KfkDwjZ
gQspnvM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:17:26 2025 by rpki-client