Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39392e302f32342d3234203d3e203533313533.roa
File: 3138372e36312e39392e302f32342d3234203d3e203533313533.roa (raw, json)
Hash identifier: sgWCKaajf6Qm/CYIVydxZBBBZiMG4RBPOPx4lFASn0M=
Subject key identifier: 21:8D:E5:C4:A6:75:25:C5:DD:5B:95:56:2B:8E:1B:10:C7:16:6B:83
Certificate issuer: /CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08
Certificate serial: 30A7AA2C4E3E6CC8EE86BB3372C512D8760CAF2C
Authority key identifier: 85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39392e302f32342d3234203d3e203533313533.roa
Signing time: Wed 04 Dec 2024 15:42:43 +0000
ROA not before: Wed 04 Dec 2024 15:37:43 +0000
ROA not after: Wed 03 Dec 2025 15:42:43 +0000
asID: 53153
IP address blocks: 187.61.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:a7:aa:2c:4e:3e:6c:c8:ee:86:bb:33:72:c5:12:d8:76:0c:af:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08
Validity
Not Before: Dec 4 15:37:43 2024 GMT
Not After : Dec 3 15:42:43 2025 GMT
Subject: CN=218DE5C4A67525C5DD5B95562B8E1B10C7166B83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:f5:0f:54:6f:2a:77:cd:2c:28:d5:01:c5:
04:ef:2d:1d:b1:31:28:5b:18:39:68:94:a2:bd:74:
e7:90:df:70:09:9f:b4:eb:a5:49:ff:25:17:f5:a7:
cc:42:85:0a:c2:5b:18:a4:fa:7c:99:b9:61:6d:7e:
a9:74:5d:1b:85:7f:bd:f6:49:f3:69:33:eb:c5:23:
90:56:22:9d:7d:72:bc:d0:aa:6a:cb:d9:9d:21:1c:
50:23:6d:01:51:33:96:f1:a4:06:b0:54:0a:64:d6:
8b:5e:c2:2a:65:32:3a:f0:60:1a:dc:d3:bd:50:07:
29:ec:a3:ef:bc:80:d4:9e:44:21:ce:58:f9:69:3e:
97:3c:af:6e:80:f4:63:74:cb:58:03:97:d3:4b:43:
17:82:c8:16:a7:08:c9:be:05:7f:a2:10:34:01:0b:
65:28:26:47:99:6b:23:95:c8:e7:00:b9:66:5f:18:
5b:7f:8a:b7:94:75:db:4d:f9:a5:da:62:c3:ba:68:
29:9c:64:ed:48:d0:74:4a:63:d2:5e:7a:c4:03:08:
15:fe:d0:df:19:73:a6:86:bc:cd:ff:59:29:2c:6a:
06:58:5d:9d:0d:20:cd:79:f5:5d:1c:27:4b:29:50:
3d:10:ec:fa:dc:a7:79:32:c6:6e:d3:7a:ed:6f:18:
d7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8D:E5:C4:A6:75:25:C5:DD:5B:95:56:2B:8E:1B:10:C7:16:6B:83
X509v3 Authority Key Identifier:
keyid:85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39392e302f32342d3234203d3e203533313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.61.99.0/24
Signature Algorithm: sha256WithRSAEncryption
88:dc:34:c9:ab:9e:1a:b4:30:ae:1a:95:be:d8:ea:3c:c9:6e:
01:19:0f:cb:52:e6:3b:b7:3f:cf:b6:cb:e8:f0:c0:a0:54:35:
01:08:38:f7:4e:bf:ef:66:79:8d:49:a6:90:f6:a1:d2:75:17:
c3:30:56:df:26:69:26:8a:db:11:33:ef:10:32:52:17:05:56:
76:cb:87:91:fb:6e:53:75:c7:a3:fa:2d:70:1c:ee:e3:eb:7b:
df:1b:f0:e4:b1:14:29:db:3c:7a:e5:32:a2:72:ea:dc:a6:48:
c8:7d:0b:dc:c2:99:73:8d:a4:fe:fc:ce:ae:1f:30:3e:4f:fb:
c8:ea:c6:69:8d:1b:4f:3d:d9:a0:8e:27:de:69:2c:a3:15:58:
c6:c9:3d:f9:69:da:69:a1:13:91:96:c4:fe:b0:01:67:e2:33:
80:cb:7c:e8:97:48:73:47:94:96:e6:de:8b:4e:22:35:ad:8a:
88:c9:6f:f3:ed:03:f9:2b:87:83:27:10:2c:d9:bc:af:75:a8:
63:b6:7b:c1:79:4b:4b:c3:c1:8b:21:28:f9:0d:c8:c4:37:61:
a5:9a:46:bf:1a:b2:7f:ff:c9:9d:71:31:61:2d:79:cf:44:48:
a8:e6:4b:d0:bc:b8:e6:1a:cc:7b:51:68:1c:b4:88:b8:de:d6:
76:f1:b7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 22:20:36 2025 by rpki-client