Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Mrei7cs5dYYuqE8WRNZQjqUbDY4ofq3epGtQ9KsNFTo/0/323830343a3264383a3a2f33322d3634203d3e203532353332.roa
File: 323830343a3264383a3a2f33322d3634203d3e203532353332.roa (raw, json)
Hash identifier: SgWgXagZq6V0+SaGwgpXR/XQPBxlx83Rqc+trBVg3Os=
Subject key identifier: 5A:44:5D:B0:BB:48:25:E0:61:93:48:CF:22:8C:2E:FF:2E:32:68:31
Certificate issuer: /CN=B58A535DFA3CC3409F5D6F92075412F203C29CE7
Certificate serial: 0C3F2E8109D2E708F98CE3D7AEE26DE14946BA45
Authority key identifier: B5:8A:53:5D:FA:3C:C3:40:9F:5D:6F:92:07:54:12:F2:03:C2:9C:E7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B58A535DFA3CC3409F5D6F92075412F203C29CE7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Mrei7cs5dYYuqE8WRNZQjqUbDY4ofq3epGtQ9KsNFTo/0/323830343a3264383a3a2f33322d3634203d3e203532353332.roa
Signing time: Tue 02 Jul 2024 17:19:50 +0000
ROA not before: Tue 02 Jul 2024 17:14:50 +0000
ROA not after: Tue 01 Jul 2025 17:19:50 +0000
asID: 52532
IP address blocks: 2804:2d8::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:3f:2e:81:09:d2:e7:08:f9:8c:e3:d7:ae:e2:6d:e1:49:46:ba:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B58A535DFA3CC3409F5D6F92075412F203C29CE7
Validity
Not Before: Jul 2 17:14:50 2024 GMT
Not After : Jul 1 17:19:50 2025 GMT
Subject: CN=5A445DB0BB4825E0619348CF228C2EFF2E326831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:a9:cc:bd:06:93:88:0b:f4:46:1b:01:84:
94:6b:72:0b:04:8e:6e:7d:80:23:83:b7:f2:58:d8:
8a:61:ad:8c:08:fd:a7:f0:41:6f:5c:f7:0f:b9:9d:
bc:e7:64:71:cd:74:a1:05:fe:c6:ba:09:57:81:2f:
ec:3e:33:90:c6:62:2f:4d:e0:e3:6c:c1:d7:56:8f:
a0:a9:52:b1:76:8f:90:9f:f2:f6:5c:3a:43:cd:0e:
51:03:c5:c2:ea:9b:08:9e:7d:f3:7d:d1:93:c2:b5:
61:91:4a:00:73:9d:70:46:14:fd:51:db:53:e8:24:
bf:8a:ca:75:c3:47:4b:63:97:ad:22:d3:4b:5f:df:
46:f4:0c:fb:ea:55:ee:9f:ea:2a:56:1b:39:d6:8b:
52:64:5f:70:7c:49:45:49:54:19:e5:64:90:84:1b:
ac:e5:f3:ac:fb:7b:9d:63:5e:9b:44:bb:4b:95:fb:
20:6c:90:ea:f6:21:ae:a0:cd:09:36:bf:bb:4f:84:
0f:70:fe:24:ce:a9:47:65:82:c3:f2:e7:3a:b4:75:
ff:be:de:5e:19:1d:f6:73:2f:d7:2f:2b:87:b5:5c:
e6:e1:a7:17:45:8b:5f:f8:a0:9f:42:a8:3d:4e:f7:
5c:62:49:15:ad:dc:6d:27:57:cf:07:95:67:5f:67:
26:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:44:5D:B0:BB:48:25:E0:61:93:48:CF:22:8C:2E:FF:2E:32:68:31
X509v3 Authority Key Identifier:
keyid:B5:8A:53:5D:FA:3C:C3:40:9F:5D:6F:92:07:54:12:F2:03:C2:9C:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Mrei7cs5dYYuqE8WRNZQjqUbDY4ofq3epGtQ9KsNFTo/0/B58A535DFA3CC3409F5D6F92075412F203C29CE7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B58A535DFA3CC3409F5D6F92075412F203C29CE7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Mrei7cs5dYYuqE8WRNZQjqUbDY4ofq3epGtQ9KsNFTo/0/323830343a3264383a3a2f33322d3634203d3e203532353332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2d8::/32
Signature Algorithm: sha256WithRSAEncryption
24:df:d3:5e:d1:bb:1c:c6:08:4e:cb:9a:80:ee:b4:84:42:67:
93:38:96:76:d7:ca:99:89:71:9f:e7:ab:f9:6d:de:40:5b:7a:
af:1a:90:c9:87:f6:d8:0f:c4:d0:40:41:df:df:59:cc:e2:29:
90:c4:71:f8:8e:a5:e6:c4:d2:37:ab:21:26:d5:78:bf:e9:d2:
45:01:8c:b5:1c:4c:4b:e6:af:a6:de:5b:43:1a:61:94:78:91:
dd:43:c0:b9:7b:b1:b4:48:c7:e8:63:66:19:69:55:ea:c3:11:
fe:ac:37:c1:30:91:ef:f7:85:7d:f2:2d:71:11:ec:f0:d0:35:
94:12:7b:ba:b8:5e:7d:bb:32:d8:12:66:9d:41:63:5a:0b:ca:
8f:80:04:47:ba:8b:77:e7:b8:3c:01:43:2f:39:36:b6:07:8a:
be:33:81:67:e1:74:4f:4a:d8:cb:cf:61:d5:03:1e:8f:72:67:
8f:53:da:d3:d3:ab:e3:ef:9c:54:1c:fa:3e:3a:92:dd:6c:45:
32:e3:e9:70:26:ba:67:81:b7:5e:7c:a5:d5:74:12:83:4b:45:
37:80:57:fb:0a:7f:52:bb:46:89:83:17:35:c7:16:ef:ac:50:
e3:4e:b9:bb:6f:1d:30:eb:1e:34:ae:05:20:51:09:39:c1:9a:
8c:39:4a:b7
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgIUDD8ugQnS5wj5jOPXruJt4UlGukUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjU4QTUzNURGQTNDQzM0MDlGNUQ2RjkyMDc1NDEyRjIw
M0MyOUNFNzAeFw0yNDA3MDIxNzE0NTBaFw0yNTA3MDExNzE5NTBaMDMxMTAvBgNV
BAMTKDVBNDQ1REIwQkI0ODI1RTA2MTkzNDhDRjIyOEMyRUZGMkUzMjY4MzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0QKnMvQaTiAv0RhsBhJRrcgsE
jm59gCODt/JY2IphrYwI/afwQW9c9w+5nbznZHHNdKEF/sa6CVeBL+w+M5DGYi9N
4ONswddWj6CpUrF2j5Cf8vZcOkPNDlEDxcLqmwieffN90ZPCtWGRSgBznXBGFP1R
21PoJL+KynXDR0tjl60i00tf30b0DPvqVe6f6ipWGznWi1JkX3B8SUVJVBnlZJCE
G6zl86z7e51jXptEu0uV+yBskOr2Ia6gzQk2v7tPhA9w/iTOqUdlgsPy5zq0df++
3l4ZHfZzL9cvK4e1XObhpxdFi1/4oJ9CqD1O91xiSRWt3G0nV88HlWdfZyZdAgMB
AAGjggJMMIICSDAdBgNVHQ4EFgQUWkRdsLtIJeBhk0jPIowu/y4yaDEwHwYDVR0j
BBgwFoAUtYpTXfo8w0CfXW+SB1QS8gPCnOcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM01yZWk3Y3M1ZFlZdXFFOFdSTlpRanFVYkRZNG9mcTNlcEd0UTlLc05G
VG8vMC9CNThBNTM1REZBM0NDMzQwOUY1RDZGOTIwNzU0MTJGMjAzQzI5Q0U3LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I1OEE1MzVERkEzQ0MzNDA5
RjVENkY5MjA3NTQxMkYyMDNDMjlDRTcuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB
lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNNcmVpN2NzNWRZWXVxRThXUk5aUWpxVWJEWTRvZnEzZXBHdFE5S3NORlRvLzAv
MzIzODMwMzQzYTMyNjQzODNhM2EyZjMzMzIyZDM2MzQyMDNkM2UyMDM1MzIzNTMz
MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8E
ETAPMA0EAgACMAcDBQAoBALYMA0GCSqGSIb3DQEBCwUAA4IBAQAk39Ne0bscxghO
y5qA7rSEQmeTOJZ218qZiXGf56v5bd5AW3qvGpDJh/bYD8TQQEHf31nM4imQxHH4
jqXmxNI3qyEm1Xi/6dJFAYy1HExL5q+m3ltDGmGUeJHdQ8C5e7G0SMfoY2YZaVXq
wxH+rDfBMJHv94V98i1xEezw0DWUEnu6uF59uzLYEmadQWNaC8qPgARHuot357g8
AUMvOTa2B4q+M4Fn4XRPStjLz2HVAx6PcmePU9rT06vj75xUHPo+OpLdbEUy4+lw
JrpngbdefKXVdBKDS0U3gFf7Cn9Su0aJgxc1xxbvrFDjTrm7bx0w6x40rgUgUQk5
wZqMOUq3
-----END CERTIFICATE-----
Generated at Tue Apr 8 12:56:13 2025 by rpki-client