Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3NF7aHvVeaZo3C5LtfYQpxAsXXCNE2y8YHLuZu7JLYqb/1/3137302e38332e33362e302f32322d3332203d3e20323032.roa
File: 3137302e38332e33362e302f32322d3332203d3e20323032.roa (raw, json)
Hash identifier: 54Itq7FQL/a53wqnxxEqqXTj4H0rSMxos5+I+kaZfZc=
Subject key identifier: FA:46:61:45:ED:AD:C0:06:D0:F6:C9:A9:3A:19:83:AF:08:B2:8D:86
Certificate issuer: /CN=C6515BA471C9733A2EE467323C9F6EE88BE098A6
Certificate serial: 5109B5450E3CBD3BBA214962D121B8BAF286A80C
Authority key identifier: C6:51:5B:A4:71:C9:73:3A:2E:E4:67:32:3C:9F:6E:E8:8B:E0:98:A6
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C6515BA471C9733A2EE467323C9F6EE88BE098A6.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3NF7aHvVeaZo3C5LtfYQpxAsXXCNE2y8YHLuZu7JLYqb/1/3137302e38332e33362e302f32322d3332203d3e20323032.roa
Signing time: Fri 05 Apr 2024 01:03:57 +0000
ROA not before: Fri 05 Apr 2024 00:58:57 +0000
ROA not after: Fri 04 Apr 2025 01:03:57 +0000
asID: 202
IP address blocks: 170.83.36.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:09:b5:45:0e:3c:bd:3b:ba:21:49:62:d1:21:b8:ba:f2:86:a8:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C6515BA471C9733A2EE467323C9F6EE88BE098A6
Validity
Not Before: Apr 5 00:58:57 2024 GMT
Not After : Apr 4 01:03:57 2025 GMT
Subject: CN=FA466145EDADC006D0F6C9A93A1983AF08B28D86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:95:0c:8d:14:a6:93:e9:25:bb:47:9f:0f:48:
45:8a:7b:53:9c:eb:b3:6e:3a:a7:4d:10:33:3c:af:
1c:46:fc:9c:4f:04:25:5e:a1:31:d7:f4:ee:f7:ab:
c6:ef:52:41:48:91:c5:90:ce:8f:4d:0c:ed:27:dc:
e1:e3:3e:ce:5c:2e:84:7e:fa:46:88:5f:c2:a1:e7:
1c:03:16:02:a6:76:8d:90:64:89:a0:3d:27:d0:32:
4c:80:93:e4:29:7a:5f:72:14:93:e1:6a:ef:12:4b:
8e:57:a3:78:7c:3d:97:af:66:75:22:7c:39:d3:d6:
69:5f:e5:00:82:05:d8:c5:3f:2a:b6:15:ce:49:9c:
d1:ba:98:df:3f:70:fb:dd:52:d6:96:59:cb:35:51:
8b:ed:a4:06:09:a3:20:a4:40:f1:98:33:da:47:b5:
29:44:a0:0a:4b:b2:68:94:af:f7:23:2c:2a:57:49:
3c:41:8e:51:dd:2f:db:47:2d:1e:65:ae:c9:d6:6c:
db:2f:b6:09:f7:63:8c:a6:26:a5:2d:bb:10:e5:03:
5b:d9:1a:99:8d:84:29:51:f6:dc:1b:b7:7e:77:c3:
51:28:02:53:62:24:73:89:b1:01:ab:32:d2:05:ed:
d3:0b:43:76:53:b3:c7:65:36:ea:a6:06:5b:6f:f3:
bc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:46:61:45:ED:AD:C0:06:D0:F6:C9:A9:3A:19:83:AF:08:B2:8D:86
X509v3 Authority Key Identifier:
keyid:C6:51:5B:A4:71:C9:73:3A:2E:E4:67:32:3C:9F:6E:E8:8B:E0:98:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3NF7aHvVeaZo3C5LtfYQpxAsXXCNE2y8YHLuZu7JLYqb/1/C6515BA471C9733A2EE467323C9F6EE88BE098A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C6515BA471C9733A2EE467323C9F6EE88BE098A6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3NF7aHvVeaZo3C5LtfYQpxAsXXCNE2y8YHLuZu7JLYqb/1/3137302e38332e33362e302f32322d3332203d3e20323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.36.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:86:f7:48:28:88:5b:cc:d5:73:3c:ab:7d:e9:60:3f:c0:8d:
9e:20:cc:0b:b5:34:26:aa:a1:89:f5:68:a5:b5:86:9a:9c:e6:
87:b2:17:d1:9e:e7:21:6d:4e:8b:bc:af:24:00:01:4a:0c:e2:
76:c5:38:a0:fa:dd:d3:72:e7:d0:80:37:1d:41:32:ff:60:95:
f0:9a:6c:cf:53:7b:12:22:fd:47:4d:d0:eb:22:f3:21:22:e8:
37:75:07:ac:17:43:a4:20:e8:45:aa:d7:7c:59:38:04:be:55:
41:d6:94:7c:5a:09:6c:3f:47:01:f1:54:50:51:40:91:4b:92:
c3:cb:6b:4a:59:54:09:18:3b:8b:1c:4a:7a:aa:b4:b3:86:ed:
27:37:48:e1:89:f5:b9:4d:f4:31:c3:87:d4:40:c8:a4:c7:ce:
12:77:d5:52:91:2f:5c:b8:61:f4:df:9e:c3:13:c5:4a:52:96:
b5:c2:cc:2b:67:2e:3f:42:bf:af:57:5d:3e:71:e0:bf:f9:e7:
7d:3c:ec:6a:1f:d2:3f:db:9b:25:cf:cd:06:7d:5f:32:8f:05:
10:73:08:aa:ac:26:c9:03:6c:f7:c8:23:90:08:e9:3b:0c:df:
78:ae:a4:03:af:6d:a4:87:5e:b6:31:26:d3:00:70:9c:85:a0:
5d:44:97:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:18:40 2025 by rpki-client