Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3232203d3e20323634353235.roa
File: 3132382e3230312e3230382e302f32322d3232203d3e20323634353235.roa (raw, json)
Hash identifier: Obq705Z0LOhbGsni95dwX3sN8Y/aCKRarlWEJKH+qR0=
Subject key identifier: D3:7D:5B:9B:C6:EC:24:9E:4D:9F:6A:55:85:87:7B:87:8E:25:D6:ED
Certificate issuer: /CN=B9DB8EACB9F78A564A559454E357E1E31344B1C8
Certificate serial: 42ADD3BB81A5BF423C04E7114DFF7528E6D571CB
Authority key identifier: B9:DB:8E:AC:B9:F7:8A:56:4A:55:94:54:E3:57:E1:E3:13:44:B1:C8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB8EACB9F78A564A559454E357E1E31344B1C8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3232203d3e20323634353235.roa
Signing time: Tue 30 Apr 2024 21:09:49 +0000
ROA not before: Tue 30 Apr 2024 21:04:49 +0000
ROA not after: Tue 29 Apr 2025 21:09:49 +0000
asID: 264525
IP address blocks: 128.201.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:ad:d3:bb:81:a5:bf:42:3c:04:e7:11:4d:ff:75:28:e6:d5:71:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9DB8EACB9F78A564A559454E357E1E31344B1C8
Validity
Not Before: Apr 30 21:04:49 2024 GMT
Not After : Apr 29 21:09:49 2025 GMT
Subject: CN=D37D5B9BC6EC249E4D9F6A5585877B878E25D6ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8c:21:3e:5b:e1:78:f8:1e:7e:fe:99:6b:5b:
7c:5b:22:2a:6c:8d:31:aa:f6:14:58:1d:49:e8:04:
d4:92:4e:fa:80:99:94:85:31:f9:eb:73:ca:7d:fb:
ca:a5:7f:54:d8:3d:4b:72:ba:1f:c3:e4:48:94:b7:
53:db:c5:32:bd:7f:6f:76:6c:58:fe:c4:1c:68:db:
f5:0d:fc:9b:88:52:60:d4:51:a8:0b:4e:cc:90:42:
2c:09:ac:5f:12:3b:fd:56:e3:2e:20:93:c7:13:b6:
58:6c:93:3a:c2:aa:d5:7c:de:5e:82:b6:50:c4:b4:
f1:07:cb:aa:6a:1f:65:d8:98:6c:a8:23:6f:9f:54:
53:4e:ff:0f:3e:d4:3e:97:2b:f3:5b:35:fb:24:7f:
5a:31:97:c4:78:de:34:20:51:db:71:30:41:eb:d2:
c1:52:94:85:40:61:30:66:d2:64:0f:63:33:f1:4a:
12:ef:a9:67:1f:87:03:7c:d5:d7:d1:8b:f9:25:3c:
d9:b4:89:26:d0:b2:a7:9c:a3:e6:ff:05:e5:4b:98:
48:41:0a:90:52:17:8e:40:53:b8:c5:db:a6:44:7a:
82:a7:bc:6b:16:c2:cd:5d:56:41:1c:68:9d:fb:d7:
46:f7:07:28:e6:f9:3b:0b:bb:c6:76:f7:59:3d:9f:
79:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7D:5B:9B:C6:EC:24:9E:4D:9F:6A:55:85:87:7B:87:8E:25:D6:ED
X509v3 Authority Key Identifier:
keyid:B9:DB:8E:AC:B9:F7:8A:56:4A:55:94:54:E3:57:E1:E3:13:44:B1:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/B9DB8EACB9F78A564A559454E357E1E31344B1C8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B9DB8EACB9F78A564A559454E357E1E31344B1C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3232203d3e20323634353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:d2:55:cd:b4:8f:b6:1d:14:ef:27:14:2a:f9:ed:a7:86:86:
65:e0:72:92:19:96:11:37:1b:3b:ca:d9:f9:8d:09:d6:fb:0e:
58:6e:52:95:73:c3:2c:97:c5:6c:aa:ee:8d:a5:08:29:cf:c0:
29:59:6d:f4:90:cc:f6:80:3e:82:ad:48:9f:b7:9c:5c:e9:e6:
55:2c:84:86:bf:70:e3:55:89:20:12:c5:60:6f:65:0b:59:a2:
1c:b2:37:2c:e2:89:b2:2a:66:33:bc:b3:30:53:20:d6:cb:76:
95:74:65:3d:ae:d9:d3:86:e0:dc:12:fa:a6:49:d6:e1:24:a8:
52:5c:7f:13:34:ba:41:f2:75:b1:ea:ab:05:ce:a3:e4:c3:65:
93:36:ff:15:99:e6:3f:4d:59:23:aa:98:8a:17:40:52:d7:0f:
48:ab:d6:b9:55:4b:dc:9d:45:c2:09:ca:b8:5b:6c:a4:e7:c8:
6e:a2:12:a2:1d:d0:04:79:35:5d:c8:0b:f1:75:55:96:4a:3c:
44:da:2b:1d:c9:59:7f:80:b3:e1:d8:b3:2a:d9:25:72:d9:6a:
03:23:7b:15:d3:3b:b3:f6:1b:ff:b0:79:26:d0:9e:86:5a:3b:
35:01:59:47:55:e7:29:f5:dc:02:ec:c2:fc:5f:37:0b:0a:e8:
cd:c9:bd:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:23:09 2025 by rpki-client