Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f34382d3438203d3e203532383438.roa
File: 323830343a3666383a3a2f34382d3438203d3e203532383438.roa (raw, json)
Hash identifier: 8xtcR24IPJaMX/rjvHeT8tMqZCtqzrZlmnUr2V0pZho=
Subject key identifier: 68:CD:25:C4:F0:49:CD:89:8E:11:72:E1:EC:2C:BB:7B:88:35:7E:1D
Certificate issuer: /CN=99143CBAF11D170944D719FD796009BC38F9F201
Certificate serial: 1FDF93B39FC0D6A9D67A9AE6C3CFAD0FBFED0BEA
Authority key identifier: 99:14:3C:BA:F1:1D:17:09:44:D7:19:FD:79:60:09:BC:38:F9:F2:01
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/99143CBAF11D170944D719FD796009BC38F9F201.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f34382d3438203d3e203532383438.roa
Signing time: Fri 21 Feb 2025 13:31:57 +0000
ROA not before: Fri 21 Feb 2025 13:26:57 +0000
ROA not after: Fri 20 Feb 2026 13:31:57 +0000
asID: 52848
IP address blocks: 2804:6f8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:df:93:b3:9f:c0:d6:a9:d6:7a:9a:e6:c3:cf:ad:0f:bf:ed:0b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99143CBAF11D170944D719FD796009BC38F9F201
Validity
Not Before: Feb 21 13:26:57 2025 GMT
Not After : Feb 20 13:31:57 2026 GMT
Subject: CN=68CD25C4F049CD898E1172E1EC2CBB7B88357E1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:16:09:e9:2a:49:86:a1:92:39:16:5f:bb:
39:2f:5c:bf:77:87:ed:7d:9f:6b:8d:d5:7b:71:d4:
d4:64:10:b5:a9:69:d1:f8:21:b6:b6:30:f3:91:1e:
2a:9e:16:13:22:f1:9a:64:1d:f4:59:ff:69:86:3c:
f9:b2:5a:4b:e9:1b:d6:b4:70:cd:b3:a6:fd:e6:6a:
4d:62:09:e0:a8:b4:e9:d0:93:89:a7:a4:38:32:5f:
df:40:40:46:e0:eb:eb:cf:bc:bc:1a:fd:b5:a0:e1:
89:9e:97:d0:63:52:1e:76:8d:ed:91:9b:96:61:37:
9c:a0:7a:d0:45:99:e4:3f:ca:3a:02:0e:3d:8b:69:
16:17:dd:90:63:83:3a:94:a0:b1:04:b4:55:58:9f:
40:af:ac:61:75:4a:67:65:ac:1f:3d:e4:7f:61:78:
79:06:7d:f6:e8:83:08:1c:e1:d1:fd:4c:5b:0f:f8:
f0:20:de:bd:1b:64:d0:a0:8f:94:3a:3e:0e:35:46:
9a:62:7a:43:2c:a6:3f:8a:90:1e:75:f3:80:07:a5:
1f:16:c5:d7:44:08:0a:ea:6f:f2:64:f4:70:98:93:
64:1c:04:e5:13:1e:a7:77:11:74:82:c1:66:ba:db:
e9:a0:84:7c:d0:d4:c9:64:70:21:58:af:4b:65:06:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CD:25:C4:F0:49:CD:89:8E:11:72:E1:EC:2C:BB:7B:88:35:7E:1D
X509v3 Authority Key Identifier:
keyid:99:14:3C:BA:F1:1D:17:09:44:D7:19:FD:79:60:09:BC:38:F9:F2:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/99143CBAF11D170944D719FD796009BC38F9F201.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/99143CBAF11D170944D719FD796009BC38F9F201.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Cxxd8DBNNtDavLj4anFvCe7iL34thAZh9AAvawhTSDd/0/323830343a3666383a3a2f34382d3438203d3e203532383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:6f8::/48
Signature Algorithm: sha256WithRSAEncryption
07:b4:f0:a1:21:b5:9d:23:e1:bf:b6:3f:1b:82:bd:a2:52:20:
2e:43:6f:e6:6e:12:24:ac:54:db:d3:95:2d:50:e0:1a:4a:5e:
ec:35:00:d4:0f:e8:67:c8:4d:b1:9f:9c:e3:65:19:ec:0a:af:
86:93:3d:76:78:58:87:0c:48:46:67:92:c4:35:5b:2c:81:3d:
23:0a:bb:af:0b:5e:4c:3f:0e:09:54:e5:c0:9a:8d:4a:c7:4d:
cd:2e:82:36:87:0b:a0:7b:1c:b1:f3:24:27:f8:bc:d0:42:7d:
2c:91:f3:19:e5:10:21:c0:50:98:ef:c3:ce:ee:fa:f5:49:ac:
cf:23:ad:60:0f:c0:02:ea:b7:1b:f7:4b:30:0a:e9:f3:02:72:
35:69:d2:4f:e3:07:12:e2:b5:29:80:8e:26:1e:82:f5:f4:06:
21:b5:67:ea:6e:29:b8:6a:a4:76:6b:32:62:63:24:ad:c2:1f:
c5:1d:cb:10:14:77:f9:06:97:86:a6:14:8a:9a:1c:b5:0a:68:
fa:65:a0:fb:0b:30:76:3c:85:63:23:fc:d0:5f:fa:65:b1:ff:
a8:1b:aa:72:b8:55:fc:c2:8b:94:91:12:9d:f9:52:af:11:b6:
7e:db:cc:89:8d:79:90:e7:ee:95:8c:88:74:7c:7a:89:a7:4c:
81:bf:57:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:29:34 2025 by rpki-client