Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2t3bGZXz8mJDrDdmZ6NDc2xZDsbjfgErhrjWe7Hv8oQM/1/3139302e38392e3134392e302f32342d3234203d3e20323730333730.roa
File: 3139302e38392e3134392e302f32342d3234203d3e20323730333730.roa (raw, json)
Hash identifier: TcSJ3nnp3UX3ckQz9iGwHcjZoJJVwSZw+IAejxBzYDo=
Subject key identifier: BD:03:F8:BA:7E:CF:19:33:21:9A:31:F5:F7:7E:AF:AF:F0:86:FB:0A
Certificate issuer: /CN=C53FFF72C11B3649D5A047FD42D3DD312B1842CF
Certificate serial: 41EB449C2C8F9EE650BE3F12B8BBC3ADC0A93A93
Authority key identifier: C5:3F:FF:72:C1:1B:36:49:D5:A0:47:FD:42:D3:DD:31:2B:18:42:CF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C53FFF72C11B3649D5A047FD42D3DD312B1842CF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2t3bGZXz8mJDrDdmZ6NDc2xZDsbjfgErhrjWe7Hv8oQM/1/3139302e38392e3134392e302f32342d3234203d3e20323730333730.roa
Signing time: Thu 06 Mar 2025 10:07:43 +0000
ROA not before: Thu 06 Mar 2025 10:02:43 +0000
ROA not after: Thu 05 Mar 2026 10:07:43 +0000
asID: 270370
IP address blocks: 190.89.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:eb:44:9c:2c:8f:9e:e6:50:be:3f:12:b8:bb:c3:ad:c0:a9:3a:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C53FFF72C11B3649D5A047FD42D3DD312B1842CF
Validity
Not Before: Mar 6 10:02:43 2025 GMT
Not After : Mar 5 10:07:43 2026 GMT
Subject: CN=BD03F8BA7ECF1933219A31F5F77EAFAFF086FB0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:51:e5:14:75:d8:a9:a3:e3:a1:70:d9:a5:34:
10:66:a5:13:26:9d:7c:cf:c0:ee:bc:46:e6:7a:47:
66:71:ea:52:4d:94:75:72:ac:3c:fa:f7:44:8d:12:
cf:03:82:67:52:9b:5a:6c:53:6d:ad:38:74:b6:f6:
94:d8:ee:f3:6c:4d:b8:41:a9:df:0f:7a:d0:71:2b:
30:36:f0:28:26:fa:1c:10:11:8e:95:5f:f0:db:e3:
ec:26:a1:3c:bd:22:b5:73:8b:b4:7e:67:05:03:18:
c9:9d:14:f1:11:fd:7c:ea:d5:36:f1:0d:01:08:b1:
5f:27:f2:63:50:f9:2b:85:99:25:d9:c6:b3:7a:2c:
68:19:c3:87:f7:c6:18:47:7c:9b:2b:40:60:a6:7e:
ed:8a:24:31:2e:f2:01:e0:ec:43:ce:a5:00:1f:fa:
be:dd:75:d7:d4:c6:f0:fb:34:c7:aa:6a:11:79:ed:
47:d8:c9:f4:53:d7:25:53:ec:2b:94:52:e2:a3:13:
b2:31:98:0b:db:d4:6b:5a:8a:cf:78:3f:87:4d:c8:
3b:c5:a0:7c:a7:f0:c6:7e:f4:4f:02:a0:ee:d6:13:
97:04:7e:ed:dc:d3:a7:20:57:ab:4f:32:3d:14:f4:
05:88:2c:90:41:ab:7b:d5:1b:50:97:47:a4:b2:eb:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:03:F8:BA:7E:CF:19:33:21:9A:31:F5:F7:7E:AF:AF:F0:86:FB:0A
X509v3 Authority Key Identifier:
keyid:C5:3F:FF:72:C1:1B:36:49:D5:A0:47:FD:42:D3:DD:31:2B:18:42:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2t3bGZXz8mJDrDdmZ6NDc2xZDsbjfgErhrjWe7Hv8oQM/1/C53FFF72C11B3649D5A047FD42D3DD312B1842CF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C53FFF72C11B3649D5A047FD42D3DD312B1842CF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2t3bGZXz8mJDrDdmZ6NDc2xZDsbjfgErhrjWe7Hv8oQM/1/3139302e38392e3134392e302f32342d3234203d3e20323730333730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.89.149.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:9a:0e:e0:68:ac:14:83:25:37:6e:d6:d8:36:86:bf:67:2f:
e0:7c:d3:93:aa:18:12:a2:fd:d9:11:f0:7a:84:b7:b0:3f:29:
71:4c:ed:bb:89:82:ce:3c:a7:d7:a2:fa:5c:65:7a:32:15:f2:
1d:43:b6:a8:d4:ba:5b:e0:8c:a4:ff:db:7a:13:41:67:b8:97:
14:0a:bc:1e:a1:91:02:4c:39:3c:ae:5f:26:47:22:b6:07:c9:
f9:44:5c:64:ff:71:ab:0f:68:4f:c2:99:77:1e:c1:78:9d:c4:
82:fb:e7:60:d8:a8:0b:9a:d8:20:e2:d0:99:19:22:d9:e5:50:
db:71:c6:b4:3c:9d:af:8b:d0:9c:f4:ab:35:af:71:66:e2:ff:
e8:33:73:d4:22:cf:30:fa:da:d9:9b:82:3f:79:be:54:ad:14:
ec:e1:37:0d:d7:8a:d7:dc:49:56:50:5d:96:e3:f3:bb:61:aa:
06:12:bd:d4:5f:97:fc:3f:cc:f3:a8:ff:a4:b5:34:93:23:cb:
c3:f1:e4:af:9a:50:4d:23:6c:1a:f4:fe:5a:f5:31:a2:81:b7:
47:45:2c:2c:56:df:a6:a3:7a:22:e1:e5:39:d6:06:d9:3b:9d:
2b:73:6e:95:10:47:33:98:63:87:3f:b8:24:28:d4:5a:27:a7:
df:90:b7:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:21:47 2025 by rpki-client