Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/38pmcHAJZPCeSci8UcDXaSMZtKjM9jz6wsKuvwpPfg1Q/1/3137302e3234342e302e302f32322d3234203d3e203532363939.roa
File: 3137302e3234342e302e302f32322d3234203d3e203532363939.roa (raw, json)
Hash identifier: egWaWTv+uGqFizmVxyqNQ9v3xOuvL+L6upknRNd4/FE=
Subject key identifier: 0F:9A:38:E3:33:4C:9D:67:37:CA:12:94:E0:69:C0:B2:5A:65:22:DB
Certificate issuer: /CN=F1FC33733C237818426BB2F333733BF4467E91FD
Certificate serial: 109A2C576A72145E1D1A2C936843D19CAA9F42D3
Authority key identifier: F1:FC:33:73:3C:23:78:18:42:6B:B2:F3:33:73:3B:F4:46:7E:91:FD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F1FC33733C237818426BB2F333733BF4467E91FD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/38pmcHAJZPCeSci8UcDXaSMZtKjM9jz6wsKuvwpPfg1Q/1/3137302e3234342e302e302f32322d3234203d3e203532363939.roa
Signing time: Thu 04 Apr 2024 16:03:16 +0000
ROA not before: Thu 04 Apr 2024 15:58:16 +0000
ROA not after: Thu 03 Apr 2025 16:03:16 +0000
asID: 52699
IP address blocks: 170.244.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:9a:2c:57:6a:72:14:5e:1d:1a:2c:93:68:43:d1:9c:aa:9f:42:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1FC33733C237818426BB2F333733BF4467E91FD
Validity
Not Before: Apr 4 15:58:16 2024 GMT
Not After : Apr 3 16:03:16 2025 GMT
Subject: CN=0F9A38E3334C9D6737CA1294E069C0B25A6522DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:58:6d:5f:4c:91:70:5e:c9:c7:72:45:57:aa:
33:7b:05:8d:58:ee:50:39:4c:53:ac:f1:ab:5c:e0:
a6:10:4e:30:d4:1a:5c:f5:5a:60:1d:38:99:dc:29:
17:53:c2:11:2a:90:73:bd:c2:72:e0:cc:68:49:1b:
82:29:57:e9:3e:8c:53:fd:45:24:2f:1f:34:a5:73:
e2:f4:f2:2b:76:76:8c:9c:08:49:69:7f:76:93:61:
ee:37:23:bb:ce:94:0f:f8:c6:f3:e2:c3:8a:b5:81:
b8:55:df:f6:68:ef:c2:f4:2d:b1:8a:aa:23:e0:62:
ab:e9:6a:53:c0:3e:32:0a:45:33:2b:5f:8e:21:f7:
d9:f6:70:36:e7:bf:d6:48:d6:6f:e5:de:e6:ea:48:
96:d0:4e:2d:c3:4c:0e:c2:c0:1c:89:f4:75:47:ac:
9b:bb:45:8f:28:30:97:c1:6c:b3:da:ae:36:65:fe:
2e:aa:09:a2:b5:be:4d:43:0b:f0:04:b2:b0:5f:99:
6c:f4:2b:1c:77:df:b6:ff:d5:a3:8d:88:76:7a:74:
f2:49:38:93:73:cd:40:f7:68:31:1a:55:7f:27:db:
59:03:19:32:ae:26:56:8b:8a:7c:4b:7c:5f:c4:bb:
88:e7:f4:64:58:bd:96:97:4c:59:26:f7:77:8f:b3:
85:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9A:38:E3:33:4C:9D:67:37:CA:12:94:E0:69:C0:B2:5A:65:22:DB
X509v3 Authority Key Identifier:
keyid:F1:FC:33:73:3C:23:78:18:42:6B:B2:F3:33:73:3B:F4:46:7E:91:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/38pmcHAJZPCeSci8UcDXaSMZtKjM9jz6wsKuvwpPfg1Q/1/F1FC33733C237818426BB2F333733BF4467E91FD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F1FC33733C237818426BB2F333733BF4467E91FD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/38pmcHAJZPCeSci8UcDXaSMZtKjM9jz6wsKuvwpPfg1Q/1/3137302e3234342e302e302f32322d3234203d3e203532363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.244.0.0/22
Signature Algorithm: sha256WithRSAEncryption
11:e2:e3:73:52:a8:ee:b9:15:c7:7a:7a:8f:c5:0e:69:7b:c4:
6e:91:fb:01:1c:d4:db:3a:f3:33:9e:75:66:10:f0:f3:2a:56:
4a:b6:e5:6e:a8:dc:2c:e2:cf:2c:07:ec:8f:93:e8:37:9c:95:
0e:5d:b2:bc:d2:57:73:a3:7a:25:6d:6d:62:9f:fd:48:7e:e1:
9e:0f:99:7b:73:9b:f2:8d:69:ab:30:61:7c:97:b4:e4:43:68:
2f:84:fd:98:c0:6f:37:d1:c4:44:ac:02:69:c3:59:55:a1:15:
ec:b6:6a:30:e5:49:8c:5f:ee:11:51:79:eb:04:8e:bc:f0:52:
9d:02:d0:4f:04:5e:0c:08:d9:b4:6b:eb:55:61:e0:b9:91:b4:
16:16:1a:d2:f4:b1:49:cb:9e:c3:fa:8d:72:b6:e9:17:63:81:
d9:ea:4e:29:be:4d:27:bf:4d:5a:28:bd:b0:42:cb:20:cb:54:
a4:66:5c:4d:9a:79:47:f3:a3:04:c4:ab:5c:d4:05:0c:74:3f:
39:c3:2a:3f:cd:93:16:89:84:15:c6:6b:f5:b6:65:90:ee:72:
7d:7d:8b:0a:57:3a:6c:2b:18:b9:90:38:43:84:ec:ee:7a:74:
98:31:a4:95:06:88:8d:c0:06:4c:55:22:80:ae:2c:69:95:77:
a1:64:3c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:40:23 2025 by rpki-client