Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2vWe8PfEetJr3Vv3FDN5qhKWaVo5pym3QCzG2BsiEpSQ/1/3230302e3137302e37362e302f32322d3234203d3e20323634353932.roa
File: 3230302e3137302e37362e302f32322d3234203d3e20323634353932.roa (raw, json)
Hash identifier: oExCq5Kv8j4KLUaME7OyHkUv+OnDlOVIRiT03fO/B18=
Subject key identifier: B5:39:2B:0D:68:42:00:31:C4:10:49:79:AC:EA:E2:9E:D8:67:7A:AF
Certificate issuer: /CN=85DB34EBE698EED57C70A2DA30F6870FD1E74CE3
Certificate serial: 3D9A302605C82F6156C8802985A3ED9FF029F5ED
Authority key identifier: 85:DB:34:EB:E6:98:EE:D5:7C:70:A2:DA:30:F6:87:0F:D1:E7:4C:E3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85DB34EBE698EED57C70A2DA30F6870FD1E74CE3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2vWe8PfEetJr3Vv3FDN5qhKWaVo5pym3QCzG2BsiEpSQ/1/3230302e3137302e37362e302f32322d3234203d3e20323634353932.roa
Signing time: Fri 05 Apr 2024 00:54:04 +0000
ROA not before: Fri 05 Apr 2024 00:49:04 +0000
ROA not after: Fri 04 Apr 2025 00:54:04 +0000
asID: 264592
IP address blocks: 200.170.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:9a:30:26:05:c8:2f:61:56:c8:80:29:85:a3:ed:9f:f0:29:f5:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85DB34EBE698EED57C70A2DA30F6870FD1E74CE3
Validity
Not Before: Apr 5 00:49:04 2024 GMT
Not After : Apr 4 00:54:04 2025 GMT
Subject: CN=B5392B0D68420031C4104979ACEAE29ED8677AAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:86:ce:94:9a:23:70:55:4d:85:be:7d:2e:c9:
79:c6:5c:9a:c8:a9:b6:83:46:98:35:94:1e:4d:97:
88:be:09:6f:1d:8b:be:02:70:e7:c7:6b:d3:0d:5a:
af:fb:87:32:18:6d:39:de:bd:ee:7f:08:5b:15:f1:
e9:e1:fc:bc:ed:99:13:eb:c2:77:1e:f8:c8:75:29:
e0:ce:01:d2:6d:bb:99:17:e7:e9:8b:34:36:90:a3:
9d:6c:0f:19:98:26:55:5e:47:29:b7:6a:d9:fb:97:
f3:b2:76:88:33:10:af:05:04:35:c3:29:28:d5:3a:
bd:db:60:11:c5:81:71:0c:cf:00:94:d7:43:1b:fc:
d4:1a:dd:cf:8c:b4:e2:9e:b9:18:ef:5c:9d:58:6a:
88:b9:ec:d0:82:4b:80:0a:63:31:59:a6:28:be:43:
ca:28:f9:c1:9b:bc:e6:b5:a7:e8:cd:97:92:99:b3:
c3:3c:0a:ea:e3:0f:a8:27:e3:57:8c:c2:6f:08:bf:
46:11:ba:74:eb:28:8d:68:79:73:cf:02:48:21:a8:
8e:25:99:12:98:fd:23:70:61:d2:2d:ed:d0:67:d7:
11:20:de:a2:54:d5:85:e7:7d:90:2e:72:77:4c:aa:
3c:2a:fb:be:a8:94:43:a0:28:bc:be:cc:51:df:e9:
55:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:39:2B:0D:68:42:00:31:C4:10:49:79:AC:EA:E2:9E:D8:67:7A:AF
X509v3 Authority Key Identifier:
keyid:85:DB:34:EB:E6:98:EE:D5:7C:70:A2:DA:30:F6:87:0F:D1:E7:4C:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2vWe8PfEetJr3Vv3FDN5qhKWaVo5pym3QCzG2BsiEpSQ/1/85DB34EBE698EED57C70A2DA30F6870FD1E74CE3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85DB34EBE698EED57C70A2DA30F6870FD1E74CE3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2vWe8PfEetJr3Vv3FDN5qhKWaVo5pym3QCzG2BsiEpSQ/1/3230302e3137302e37362e302f32322d3234203d3e20323634353932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.170.76.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:54:b6:5a:2d:28:05:12:d4:17:e7:21:c4:09:ee:b0:7c:de:
9a:61:7f:d4:21:bb:a7:c8:69:f6:b1:1c:95:65:53:40:18:59:
58:17:bb:a3:80:de:70:e5:5c:09:d8:fb:d4:c9:de:a4:eb:c0:
c1:2b:d3:1d:96:c4:1d:e3:70:75:46:ae:b6:d5:59:c1:1f:0a:
b2:a0:dd:85:79:b9:0e:3b:02:bd:b1:bb:35:90:67:3b:60:1f:
e4:ea:65:36:27:cd:7a:a1:c8:01:61:a6:dc:c8:9f:c7:92:00:
f0:7e:1b:91:2a:67:d9:79:67:d6:f9:20:02:c5:a2:ea:64:85:
e7:7a:32:79:a1:d3:46:2d:b4:ba:94:93:1f:40:9e:39:a7:17:
b3:ac:a8:4f:cd:e4:39:a0:9b:d1:be:43:c1:02:44:a5:8b:c9:
e9:be:fa:d3:10:7f:4f:11:a6:c2:14:dd:57:8e:e5:89:c4:20:
96:b6:c4:42:36:69:bc:80:86:73:00:c7:9c:49:ad:ad:08:b8:
35:c9:12:f1:e7:3a:d9:91:6b:f2:4e:96:bb:69:97:59:70:de:
26:e7:af:b1:eb:d2:d1:d9:18:75:1a:86:0d:ae:40:32:a8:4e:
d2:19:06:94:78:4f:2a:aa:b4:a6:06:83:40:ff:13:78:ef:f5:
df:e9:f5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:03:49 2025 by rpki-client