Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3ExApo75MGCDxkT4GEsH6mAUc9i19FizoCf2QPfySsfE/1/34352e3232352e382e302f32322d3234203d3e20323636393731.roa
File: 34352e3232352e382e302f32322d3234203d3e20323636393731.roa (raw, json)
Hash identifier: uPZ74WNs7i/D48VeCL29g9yLBvl339SYFjXLkrUuWbc=
Subject key identifier: AB:25:01:4B:14:E7:BB:09:9D:81:8D:11:FF:8E:01:C7:E2:0A:C7:33
Certificate issuer: /CN=24EB26B6D82E1565FFCB1BE8BC0C2CBBB5A80782
Certificate serial: 69404F89C3E8DB6D71A92E3B921C95F0684D417F
Authority key identifier: 24:EB:26:B6:D8:2E:15:65:FF:CB:1B:E8:BC:0C:2C:BB:B5:A8:07:82
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/24EB26B6D82E1565FFCB1BE8BC0C2CBBB5A80782.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3ExApo75MGCDxkT4GEsH6mAUc9i19FizoCf2QPfySsfE/1/34352e3232352e382e302f32322d3234203d3e20323636393731.roa
Signing time: Wed 05 Mar 2025 21:40:29 +0000
ROA not before: Wed 05 Mar 2025 21:35:29 +0000
ROA not after: Wed 04 Mar 2026 21:40:29 +0000
asID: 266971
IP address blocks: 45.225.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:40:4f:89:c3:e8:db:6d:71:a9:2e:3b:92:1c:95:f0:68:4d:41:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24EB26B6D82E1565FFCB1BE8BC0C2CBBB5A80782
Validity
Not Before: Mar 5 21:35:29 2025 GMT
Not After : Mar 4 21:40:29 2026 GMT
Subject: CN=AB25014B14E7BB099D818D11FF8E01C7E20AC733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8c:a0:d0:ca:f5:39:27:00:79:e0:87:d0:eb:
fc:d5:f8:83:55:3f:44:98:f3:92:fc:31:ae:21:58:
3c:dd:7b:83:48:36:c6:53:6b:bc:b9:23:62:cd:5a:
83:76:d0:50:09:81:90:84:15:48:85:c9:e8:2c:78:
23:46:4d:38:43:e0:ab:d8:cb:da:f5:35:11:06:66:
00:4c:a5:83:bf:18:4c:87:0e:dc:cb:75:20:f5:ac:
2d:bd:86:14:bf:b8:08:34:8d:23:ca:d1:b4:29:86:
97:4d:53:7b:6e:a2:91:e3:bb:a8:6b:fe:c4:3a:57:
f7:f1:03:41:71:6e:98:82:57:a4:6d:d8:0e:10:5a:
52:8a:64:61:a2:eb:75:0d:64:33:31:c5:3e:86:03:
c1:29:72:16:e5:bc:af:f9:e8:b8:50:aa:cb:ea:40:
d4:09:50:ca:64:39:00:14:2e:6e:85:9a:eb:91:2c:
1c:f8:0d:34:17:72:41:fb:6c:d4:2b:94:c9:38:24:
19:bc:df:0d:3f:f0:27:af:c3:72:53:0f:1e:c2:c1:
e6:3c:02:b3:55:fa:8c:0d:75:6d:2f:55:04:cd:65:
47:81:37:cc:a4:71:58:2b:f4:23:89:34:20:2f:7e:
d0:2d:39:3b:69:68:c5:e6:09:ab:22:ee:22:37:54:
17:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:25:01:4B:14:E7:BB:09:9D:81:8D:11:FF:8E:01:C7:E2:0A:C7:33
X509v3 Authority Key Identifier:
keyid:24:EB:26:B6:D8:2E:15:65:FF:CB:1B:E8:BC:0C:2C:BB:B5:A8:07:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3ExApo75MGCDxkT4GEsH6mAUc9i19FizoCf2QPfySsfE/1/24EB26B6D82E1565FFCB1BE8BC0C2CBBB5A80782.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/24EB26B6D82E1565FFCB1BE8BC0C2CBBB5A80782.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3ExApo75MGCDxkT4GEsH6mAUc9i19FizoCf2QPfySsfE/1/34352e3232352e382e302f32322d3234203d3e20323636393731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.225.8.0/22
Signature Algorithm: sha256WithRSAEncryption
24:ac:4a:3b:24:3e:0c:2e:b0:7a:70:d4:c9:28:c0:62:c7:c7:
25:88:58:39:41:82:33:5e:d8:8e:2c:1c:4c:0c:fc:57:b2:27:
d5:cb:55:b1:a7:a6:7c:9a:2a:9a:79:ba:fc:6d:7d:97:50:56:
a8:9a:1e:08:63:8d:c7:80:62:77:3d:ce:61:8a:2e:d7:b7:dd:
c0:f9:86:c5:4f:af:5b:b6:83:4a:a4:0c:12:95:af:12:a4:07:
3e:04:c6:48:47:65:8b:91:e7:22:b9:8f:4b:42:13:82:46:df:
5e:ac:a8:b7:fe:55:2e:0d:39:65:a3:4a:87:c8:ac:4e:d6:d6:
1a:00:a7:e2:f9:c9:15:e1:9e:4b:44:b2:bc:18:56:78:66:c8:
65:c7:e4:70:56:6f:10:3d:5d:ca:a5:7c:22:00:a9:c1:d8:73:
fa:7a:b6:7a:96:ab:67:eb:44:b9:f7:b5:3d:b0:04:66:02:db:
d2:c1:01:36:70:74:c0:f7:90:c7:b3:49:d4:39:95:4f:53:79:
55:8f:79:7c:42:62:23:c1:24:9a:54:88:37:a1:10:ee:68:ab:
15:4a:42:14:79:77:01:19:a3:9a:d8:cd:40:c9:34:99:fa:63:
1e:29:25:29:80:d9:a4:9b:c8:63:3d:04:a0:bb:60:a4:5e:96:
fa:11:9b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:47:33 2025 by rpki-client