Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3H9QCx2HAzmUgn4Xy7inndDm2fDLyuEHmqnw74RuwDh8/1/3134332e3133372e37362e302f32322d3234203d3e20323633363638.roa
File: 3134332e3133372e37362e302f32322d3234203d3e20323633363638.roa (raw, json)
Hash identifier: jS2yt6iWqnU4Fu3w0oDSmPWdZIRbmkruFgSjKM6ouBM=
Subject key identifier: AA:D7:D2:11:D6:E3:07:2B:68:7B:29:9B:26:17:EB:0A:16:A2:D2:0F
Certificate issuer: /CN=3536DA9FA1CF7E312AAF7721ED15384E063AE2E2
Certificate serial: 10FB120661B6AEE96C23DBD7ACE0685C575E3D04
Authority key identifier: 35:36:DA:9F:A1:CF:7E:31:2A:AF:77:21:ED:15:38:4E:06:3A:E2:E2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3536DA9FA1CF7E312AAF7721ED15384E063AE2E2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3H9QCx2HAzmUgn4Xy7inndDm2fDLyuEHmqnw74RuwDh8/1/3134332e3133372e37362e302f32322d3234203d3e20323633363638.roa
Signing time: Thu 06 Mar 2025 10:43:01 +0000
ROA not before: Thu 06 Mar 2025 10:38:01 +0000
ROA not after: Thu 05 Mar 2026 10:43:01 +0000
asID: 263668
IP address blocks: 143.137.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:fb:12:06:61:b6:ae:e9:6c:23:db:d7:ac:e0:68:5c:57:5e:3d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3536DA9FA1CF7E312AAF7721ED15384E063AE2E2
Validity
Not Before: Mar 6 10:38:01 2025 GMT
Not After : Mar 5 10:43:01 2026 GMT
Subject: CN=AAD7D211D6E3072B687B299B2617EB0A16A2D20F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a1:e1:3e:82:64:5a:2a:c8:25:f0:a5:b4:b9:
17:f2:12:78:43:2a:9a:26:d3:63:f1:7a:60:e8:06:
af:68:0d:59:02:cb:a4:b5:89:65:c2:eb:f0:44:f8:
3b:b3:be:81:6b:4f:3c:1b:b7:49:5d:85:54:b1:f5:
51:68:35:4c:c4:d3:43:00:7e:dd:d6:f3:f1:76:a3:
53:0d:17:7f:28:00:10:14:51:c4:b4:05:8f:92:28:
d3:da:9a:29:82:8d:5f:9c:3e:f8:03:aa:75:94:11:
4d:42:8c:25:79:b8:58:84:41:d6:ee:f8:32:8f:66:
26:33:5a:aa:8e:30:db:0d:03:a8:82:5c:a4:ec:0e:
53:8a:22:8b:03:67:74:0d:3c:65:a6:94:a9:bc:f7:
22:70:e1:f8:75:c4:5b:0e:59:ca:97:3b:2f:7b:88:
2b:c7:cd:e0:84:bd:8e:28:38:ef:a9:3c:f3:ed:d5:
3c:97:3b:15:04:6e:fd:66:1d:48:13:b1:0d:90:b2:
cc:4f:25:bf:84:50:06:42:e5:ad:73:bf:1e:b2:8a:
0f:99:64:ab:70:3b:37:32:c0:8e:a3:ff:0a:e3:e4:
a2:6e:33:d5:41:58:54:63:39:6f:fa:9d:04:f6:76:
0c:97:70:6f:40:6e:12:0e:3d:31:07:e1:77:8b:7b:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D7:D2:11:D6:E3:07:2B:68:7B:29:9B:26:17:EB:0A:16:A2:D2:0F
X509v3 Authority Key Identifier:
keyid:35:36:DA:9F:A1:CF:7E:31:2A:AF:77:21:ED:15:38:4E:06:3A:E2:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3H9QCx2HAzmUgn4Xy7inndDm2fDLyuEHmqnw74RuwDh8/1/3536DA9FA1CF7E312AAF7721ED15384E063AE2E2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3536DA9FA1CF7E312AAF7721ED15384E063AE2E2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3H9QCx2HAzmUgn4Xy7inndDm2fDLyuEHmqnw74RuwDh8/1/3134332e3133372e37362e302f32322d3234203d3e20323633363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.137.76.0/22
Signature Algorithm: sha256WithRSAEncryption
13:f9:51:ae:51:a4:55:fa:90:43:00:d8:2e:45:33:b8:d4:d1:
78:92:d8:56:3c:ae:47:c0:87:23:d4:21:fe:f6:e7:21:b9:9f:
7a:8d:b4:8a:2b:67:9b:cb:ac:d2:67:d3:b4:b9:80:83:bd:d8:
c9:6f:59:80:18:01:c5:dd:b1:ea:dd:81:c2:f9:37:40:e5:22:
c2:44:96:56:dc:16:9b:08:5b:12:32:4f:ab:09:7b:5a:91:eb:
0e:b4:19:ee:b4:dd:49:1a:50:02:1c:f7:e8:a8:26:74:68:a4:
17:83:b6:26:56:7b:c0:22:88:fc:b8:80:bc:17:5c:05:77:9a:
e8:f0:fd:aa:80:87:25:59:26:79:03:1e:cb:e5:46:37:ad:d9:
d8:b0:70:35:fa:7b:b9:dd:a7:f3:cf:0e:56:94:bc:c9:00:d5:
a7:31:60:2d:45:ec:b9:81:71:6b:ed:eb:4e:46:1c:27:a1:66:
a7:10:b7:58:4d:66:6c:ce:66:6d:96:55:2e:e2:8c:6e:0b:15:
8e:e3:98:01:ac:69:50:09:7f:1e:c6:7b:fb:4a:a7:5c:e6:67:
c2:49:2e:7e:7e:57:45:33:37:d1:c2:38:65:9a:4c:cc:de:e3:
2a:a0:ba:c0:d0:db:c8:a2:df:3d:d3:51:61:6c:35:23:97:9f:
9f:02:9f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:05:21 2025 by rpki-client