Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28211.roa
File: AS28211.roa (raw, json)
Hash identifier: 3BGC+cjVfuAQbws2Ue5aHnNxT7BtcLFAEYqJQ3UZK3o=
Subject key identifier: 87:44:51:D2:20:56:D1:AD:20:88:02:23:AD:35:72:83:C4:F4:9D:BD
Certificate issuer: /CN=416296490F899DB0183C491C69520DEECF540394
Certificate serial: 40E13F190D570CE184A7E848FD1E5002F7A2BBB5
Authority key identifier: 41:62:96:49:0F:89:9D:B0:18:3C:49:1C:69:52:0D:EE:CF:54:03:94
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/416296490F899DB0183C491C69520DEECF540394.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28211.roa
Signing time: Fri 03 May 2024 22:02:07 +0000
ROA not before: Fri 03 May 2024 21:57:07 +0000
ROA not after: Fri 02 May 2025 22:02:07 +0000
asID: 28211
IP address blocks: 189.113.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:e1:3f:19:0d:57:0c:e1:84:a7:e8:48:fd:1e:50:02:f7:a2:bb:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=416296490F899DB0183C491C69520DEECF540394
Validity
Not Before: May 3 21:57:07 2024 GMT
Not After : May 2 22:02:07 2025 GMT
Subject: CN=874451D22056D1AD20880223AD357283C4F49DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:df:a3:f5:0d:ea:e3:fb:fc:40:1d:a8:d1:39:
4c:20:c5:cb:bc:96:81:69:f1:a2:d2:02:47:d3:dd:
07:b9:fd:2e:7a:c2:8d:40:21:54:a3:12:f3:64:f0:
cd:28:da:5d:f3:94:7b:86:32:e5:59:4a:f7:03:12:
30:5a:91:e6:74:03:55:fa:97:e9:be:b3:21:1d:ae:
e8:1f:c9:7f:74:e8:1d:64:33:40:d3:13:9d:31:53:
a4:13:76:d0:65:c3:43:ea:06:13:3a:99:02:13:5b:
1a:42:a9:52:05:52:dc:01:66:bd:41:77:ce:9f:8c:
d5:8f:4b:37:3e:c8:e9:bf:fc:cc:22:1d:1b:d3:38:
c0:c5:19:8a:bb:e9:f0:2f:94:08:f7:95:c8:21:36:
7c:d7:f2:2d:d1:d9:d2:76:8c:a3:34:97:eb:1e:0b:
36:a9:9f:11:3a:cd:2c:d2:cb:cd:f3:2e:f9:1b:59:
87:30:f5:87:fa:3f:c5:a1:90:06:42:78:99:69:52:
d7:6a:11:26:8b:9b:78:08:9f:c9:f5:e3:b6:65:f4:
0d:db:ff:07:59:af:54:71:44:31:0e:88:d3:62:8e:
48:97:b4:ed:5d:93:cf:7e:f9:f8:dd:1c:6d:d5:cf:
ee:42:bb:6a:12:6b:23:60:28:88:3b:79:15:b7:d1:
ca:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:44:51:D2:20:56:D1:AD:20:88:02:23:AD:35:72:83:C4:F4:9D:BD
X509v3 Authority Key Identifier:
keyid:41:62:96:49:0F:89:9D:B0:18:3C:49:1C:69:52:0D:EE:CF:54:03:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/416296490F899DB0183C491C69520DEECF540394.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/416296490F899DB0183C491C69520DEECF540394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/0/AS28211.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.113.80.0/20
Signature Algorithm: sha256WithRSAEncryption
61:d1:1f:db:44:01:9b:27:e0:08:5a:94:8b:68:57:64:80:3c:
c5:a3:03:a3:b6:5e:39:64:e9:57:a9:8d:ff:25:58:3a:78:47:
98:83:9d:a8:10:45:e8:6f:86:19:e1:a0:62:ea:1d:a4:40:cf:
1e:c0:12:56:7a:0d:92:c2:2a:99:a6:ce:47:ca:69:6e:03:35:
ac:36:e9:be:d9:73:14:d2:09:7d:37:f7:9f:82:1d:f0:e1:e6:
11:54:33:62:df:90:62:ac:2d:e9:0a:65:f3:7d:ed:cf:18:6c:
41:84:ba:e0:da:01:e5:3c:90:1b:04:c4:b4:a4:1d:71:c6:93:
21:e3:6a:ce:af:4b:05:a5:10:71:ff:a1:89:c2:36:f4:3a:3d:
58:bc:d1:b4:53:65:8d:26:c7:37:df:2c:50:c7:74:71:90:76:
22:f7:2f:ff:5c:e4:2b:64:4e:9a:d4:7a:07:a9:47:fb:53:07:
38:65:0b:d8:42:98:68:2d:c3:dc:47:5d:43:75:7d:3e:55:d8:
1e:4d:bd:a9:96:a3:e5:bb:92:3a:a2:23:b1:83:7f:40:5b:d0:
48:89:c4:60:6b:a6:53:c3:ac:fe:60:6d:a9:76:35:a5:60:f4:
b4:be:b0:b3:ab:19:dc:c9:7c:82:08:3c:54:b0:76:c5:60:90:
e3:9b:e8:7c
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUQOE/GQ1XDOGEp+hI/R5QAveiu7UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDE2Mjk2NDkwRjg5OURCMDE4M0M0OTFDNjk1MjBERUVD
RjU0MDM5NDAeFw0yNDA1MDMyMTU3MDdaFw0yNTA1MDIyMjAyMDdaMDMxMTAvBgNV
BAMTKDg3NDQ1MUQyMjA1NkQxQUQyMDg4MDIyM0FEMzU3MjgzQzRGNDlEQkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA36P1Derj+/xAHajROUwgxcu8
loFp8aLSAkfT3Qe5/S56wo1AIVSjEvNk8M0o2l3zlHuGMuVZSvcDEjBakeZ0A1X6
l+m+syEdrugfyX906B1kM0DTE50xU6QTdtBlw0PqBhM6mQITWxpCqVIFUtwBZr1B
d86fjNWPSzc+yOm//MwiHRvTOMDFGYq76fAvlAj3lcghNnzX8i3R2dJ2jKM0l+se
CzapnxE6zSzSy83zLvkbWYcw9Yf6P8WhkAZCeJlpUtdqESaLm3gIn8n147Zl9A3b
/wdZr1RxRDEOiNNijkiXtO1dk89++fjdHG3Vz+5Cu2oSayNgKIg7eRW30covAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUh0RR0iBW0a0giAIjrTVyg8T0nb0wHwYDVR0j
BBgwFoAUQWKWSQ+JnbAYPEkcaVIN7s9UA5QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU
Y3kvMC80MTYyOTY0OTBGODk5REIwMTgzQzQ5MUM2OTUyMERFRUNGNTQwMzk0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQxNjI5NjQ5MEY4OTlEQjAx
ODNDNDkxQzY5NTIwREVFQ0Y1NDAzOTQuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr
BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK
NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8wL0FTMjgy
MTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAS9cVAwDQYJKoZIhvcNAQELBQADggEBAGHRH9tEAZsn4Aha
lItoV2SAPMWjA6O2Xjlk6Vepjf8lWDp4R5iDnagQRehvhhnhoGLqHaRAzx7AElZ6
DZLCKpmmzkfKaW4DNaw26b7ZcxTSCX0395+CHfDh5hFUM2LfkGKsLekKZfN97c8Y
bEGEuuDaAeU8kBsExLSkHXHGkyHjas6vSwWlEHH/oYnCNvQ6PVi80bRTZY0mxzff
LFDHdHGQdiL3L/9c5CtkTprUegepR/tTBzhlC9hCmGgtw9xHXUN1fT5V2B5NvamW
o+W7kjqiI7GDf0Bb0EiJxGBrplPDrP5gbal2NaVg9LS+sLOrGdzJfIIIPFSwdsVg
kOOb6Hw=
-----END CERTIFICATE-----
Generated at Tue Feb 18 13:41:17 2025 by rpki-client