Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3KyhStDUELmgmeEdfL97nv3dikuQxfC8pMAM5v4kVfVA/0/3138392e3132362e38352e302f32342d3234203d3e20323730353739.roa
File: 3138392e3132362e38352e302f32342d3234203d3e20323730353739.roa (raw, json)
Hash identifier: X3xKyxqRWei6IQivcbdy6xPpzvzvMEW752U9Tw3b/cY=
Subject key identifier: 3B:54:75:5F:94:DA:34:F0:47:C9:FC:3E:E0:DA:05:30:B4:30:11:AC
Certificate issuer: /CN=BF3B3B3C1A369FD0DDF2CE2059CBE4C98CB46092
Certificate serial: 3488148488DAB6958519114031FA811A7926E07F
Authority key identifier: BF:3B:3B:3C:1A:36:9F:D0:DD:F2:CE:20:59:CB:E4:C9:8C:B4:60:92
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF3B3B3C1A369FD0DDF2CE2059CBE4C98CB46092.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3KyhStDUELmgmeEdfL97nv3dikuQxfC8pMAM5v4kVfVA/0/3138392e3132362e38352e302f32342d3234203d3e20323730353739.roa
Signing time: Wed 01 Oct 2025 22:53:53 +0000
ROA not before: Wed 01 Oct 2025 22:48:53 +0000
ROA not after: Wed 30 Sep 2026 22:53:53 +0000
asID: 270579
IP address blocks: 189.126.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:88:14:84:88:da:b6:95:85:19:11:40:31:fa:81:1a:79:26:e0:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF3B3B3C1A369FD0DDF2CE2059CBE4C98CB46092
Validity
Not Before: Oct 1 22:48:53 2025 GMT
Not After : Sep 30 22:53:53 2026 GMT
Subject: CN=3B54755F94DA34F047C9FC3EE0DA0530B43011AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:de:c3:c7:cc:46:b9:b1:f3:0a:f5:b8:0b:6f:
14:c3:68:4c:a6:03:c4:e2:36:df:93:e8:32:46:a9:
60:9b:08:09:08:58:dd:b3:95:ab:38:08:58:2b:1a:
f3:d3:7d:37:ad:e2:be:da:38:69:4e:6c:ea:4c:1d:
ac:ab:ee:8a:76:4d:fb:0f:9a:19:b7:78:1e:14:d3:
45:95:19:5f:71:2d:d5:74:23:b8:b2:c1:32:64:0b:
22:20:6c:67:eb:59:b8:33:e4:26:fd:d3:a3:e6:30:
ba:b6:a7:d9:e5:5a:65:4e:15:1a:16:f6:a0:79:84:
51:ee:87:e4:ca:75:fe:9b:11:94:73:f3:7b:f2:e4:
7f:9d:b6:83:6e:64:4e:12:ff:f0:9e:1f:e6:ab:e5:
cf:c9:30:3a:6d:b8:b7:93:c9:76:65:42:d8:4a:4b:
3c:a8:63:ed:69:59:e1:8d:22:0a:5b:ae:f3:f7:c3:
52:99:89:db:47:de:cf:f0:43:d1:2e:c5:1d:0c:8f:
2e:0e:50:31:97:a3:e5:0c:03:97:54:cb:0d:65:6a:
62:56:d6:ce:61:58:68:b7:d2:11:4c:95:db:65:17:
c8:41:6d:23:cb:5c:98:fe:6f:55:d9:3c:f4:db:b0:
70:fd:55:bd:85:96:6a:8b:8a:56:61:d1:64:40:8a:
27:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:54:75:5F:94:DA:34:F0:47:C9:FC:3E:E0:DA:05:30:B4:30:11:AC
X509v3 Authority Key Identifier:
keyid:BF:3B:3B:3C:1A:36:9F:D0:DD:F2:CE:20:59:CB:E4:C9:8C:B4:60:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3KyhStDUELmgmeEdfL97nv3dikuQxfC8pMAM5v4kVfVA/0/BF3B3B3C1A369FD0DDF2CE2059CBE4C98CB46092.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF3B3B3C1A369FD0DDF2CE2059CBE4C98CB46092.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KyhStDUELmgmeEdfL97nv3dikuQxfC8pMAM5v4kVfVA/0/3138392e3132362e38352e302f32342d3234203d3e20323730353739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.126.85.0/24
Signature Algorithm: sha256WithRSAEncryption
92:25:b3:01:57:92:f9:fe:54:a2:b7:0e:a0:4e:15:6a:5d:00:
89:69:a5:1c:8a:c0:87:f4:4d:97:1a:9f:c1:26:e3:83:bb:3c:
b0:27:5f:b5:bc:b1:d5:f7:94:be:7f:50:d9:0c:d1:e2:4e:b4:
88:9f:2f:1a:3e:94:af:c4:62:b6:7c:2e:96:1b:f3:75:93:2e:
d8:a9:ed:a6:59:60:75:70:79:58:f3:9e:42:71:2f:ae:ee:92:
00:35:94:1a:7d:30:3f:d3:12:fb:31:af:27:2c:74:ad:66:76:
b8:a9:e4:c4:23:a8:f4:14:58:96:df:33:26:31:6b:70:6b:ee:
16:f4:42:6f:d9:9b:84:1c:e3:4c:3c:c2:ef:ce:27:3f:ed:91:
2a:74:bd:a4:94:39:71:55:9d:4f:2b:fe:64:81:9b:f8:64:64:
aa:b4:21:2b:d0:48:68:59:1e:37:d2:ec:d7:30:73:a0:c6:1f:
19:de:4d:63:d8:53:85:40:6f:c4:4f:c2:fd:92:db:27:24:66:
6c:d4:f7:1f:43:e4:af:41:a4:69:55:02:88:31:05:99:91:e1:
9d:23:5e:40:2b:c9:2f:77:b9:ea:75:2b:61:ab:29:b5:4f:0f:
19:ed:67:2f:8d:65:ca:d6:70:9a:24:e9:1d:1b:12:7f:ee:10:
b6:90:1c:28
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUNIgUhIjatpWFGRFAMfqBGnkm4H8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkYzQjNCM0MxQTM2OUZEMERERjJDRTIwNTlDQkU0Qzk4
Q0I0NjA5MjAeFw0yNTEwMDEyMjQ4NTNaFw0yNjA5MzAyMjUzNTNaMDMxMTAvBgNV
BAMTKDNCNTQ3NTVGOTREQTM0RjA0N0M5RkMzRUUwREEwNTMwQjQzMDExQUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh3sPHzEa5sfMK9bgLbxTDaEym
A8TiNt+T6DJGqWCbCAkIWN2zlas4CFgrGvPTfTet4r7aOGlObOpMHayr7op2TfsP
mhm3eB4U00WVGV9xLdV0I7iywTJkCyIgbGfrWbgz5Cb906PmMLq2p9nlWmVOFRoW
9qB5hFHuh+TKdf6bEZRz83vy5H+dtoNuZE4S//CeH+ar5c/JMDptuLeTyXZlQthK
SzyoY+1pWeGNIgpbrvP3w1KZidtH3s/wQ9EuxR0Mjy4OUDGXo+UMA5dUyw1lamJW
1s5hWGi30hFMldtlF8hBbSPLXJj+b1XZPPTbsHD9Vb2FlmqLilZh0WRAiidnAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUO1R1X5TaNPBHyfw+4NoFMLQwEawwHwYDVR0j
BBgwFoAUvzs7PBo2n9Dd8s4gWcvkyYy0YJIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM0t5aFN0RFVFTG1nbWVFZGZMOTdudjNkaWt1UXhmQzhwTUFNNXY0a1Zm
VkEvMC9CRjNCM0IzQzFBMzY5RkQwRERGMkNFMjA1OUNCRTRDOThDQjQ2MDkyLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JGM0IzQjNDMUEzNjlGRDBE
REYyQ0UyMDU5Q0JFNEM5OENCNDYwOTIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNLeWhTdERVRUxtZ21lRWRmTDk3bnYzZGlrdVF4ZkM4cE1BTTV2NGtWZlZBLzAv
MzEzODM5MmUzMTMyMzYyZTM4MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3
MzAzNTM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAC9flUwDQYJKoZIhvcNAQELBQADggEBAJIlswFX
kvn+VKK3DqBOFWpdAIlppRyKwIf0TZcan8Em44O7PLAnX7W8sdX3lL5/UNkM0eJO
tIifLxo+lK/EYrZ8LpYb83WTLtip7aZZYHVweVjznkJxL67ukgA1lBp9MD/TEvsx
rycsdK1mdrip5MQjqPQUWJbfMyYxa3Br7hb0Qm/Zm4Qc40w8wu/OJz/tkSp0vaSU
OXFVnU8r/mSBm/hkZKq0ISvQSGhZHjfS7Ncwc6DGHxneTWPYU4VAb8RPwv2S2yck
ZmzU9x9D5K9BpGlVAogxBZmR4Z0jXkAryS93uep1K2GrKbVPDxntZy+NZcrWcJok
6R0bEn/uELaQHCg=
-----END CERTIFICATE-----
Generated at Tue Nov 4 05:10:03 2025 by rpki-client