Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/323830343a353765303a3a2f33322d3438203d3e20323638303932.roa
File: 323830343a353765303a3a2f33322d3438203d3e20323638303932.roa (raw, json)
Hash identifier: o0UDeEeZneGysjnd9/xLKf0lvSiQg1651qcCT/Maem8=
Subject key identifier: 41:65:A9:51:6E:C7:CE:5F:CD:9C:09:D8:62:0A:C0:B8:73:F5:81:DF
Certificate issuer: /CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Certificate serial: 3EF129DDC56A2CBA85E1EBE71A537D3B4F82BDFC
Authority key identifier: 0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/323830343a353765303a3a2f33322d3438203d3e20323638303932.roa
Signing time: Wed 05 Mar 2025 19:00:01 +0000
ROA not before: Wed 05 Mar 2025 18:55:01 +0000
ROA not after: Wed 04 Mar 2026 19:00:01 +0000
asID: 268092
IP address blocks: 2804:57e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:f1:29:dd:c5:6a:2c:ba:85:e1:eb:e7:1a:53:7d:3b:4f:82:bd:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Validity
Not Before: Mar 5 18:55:01 2025 GMT
Not After : Mar 4 19:00:01 2026 GMT
Subject: CN=4165A9516EC7CE5FCD9C09D8620AC0B873F581DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a3:81:2f:c9:6d:88:09:be:04:56:da:ae:5e:
4c:b0:7c:46:7c:18:5e:51:df:4f:90:b5:90:10:6c:
07:ae:b9:bd:1c:22:ca:eb:e7:7f:25:56:e0:57:19:
ae:96:d5:f5:8e:cc:42:e2:ac:0a:0e:29:ae:25:30:
f5:31:25:8d:41:62:18:51:7a:8f:c5:b8:f5:07:28:
e4:b9:51:93:fb:8b:41:f3:de:2e:6a:58:7a:b6:a2:
d1:08:d9:e9:a5:71:3f:d1:5d:ee:a6:b4:1e:88:48:
28:09:e9:63:d2:b4:6b:dd:bb:b1:09:1f:d1:39:e6:
0f:a8:2e:13:a7:71:84:f6:39:01:a7:10:71:6e:77:
bf:5d:9b:88:14:77:1e:53:e1:9f:96:f6:ef:54:3b:
10:5d:6d:9b:0a:b6:14:be:38:fc:bd:98:c1:4d:f1:
bc:08:c8:18:d7:e0:b5:d0:5e:29:9a:6c:3e:bc:e3:
c4:70:45:61:b0:81:2d:b7:56:83:be:9f:71:4e:6a:
b5:94:40:88:71:d8:57:9d:83:db:71:6a:fc:ad:11:
75:0b:1e:78:40:d5:cd:6a:c2:ac:6f:ff:2c:e0:b7:
7a:08:ca:c2:33:00:51:fe:91:cb:9a:10:94:25:15:
cb:6a:09:d0:89:34:33:f5:37:ec:07:7d:5f:05:dd:
78:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:65:A9:51:6E:C7:CE:5F:CD:9C:09:D8:62:0A:C0:B8:73:F5:81:DF
X509v3 Authority Key Identifier:
keyid:0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/323830343a353765303a3a2f33322d3438203d3e20323638303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:57e0::/32
Signature Algorithm: sha256WithRSAEncryption
22:86:fc:d2:01:b9:26:83:84:8a:97:5b:a0:8c:f8:d1:9d:2d:
9b:d0:12:44:8c:dc:19:9c:6c:d4:55:76:e4:67:15:7f:5d:a9:
d4:bc:12:17:9d:ea:9d:93:f5:a9:bb:03:8d:61:a8:85:be:73:
83:e9:ec:99:c1:2b:28:b0:20:38:13:32:d0:c1:a5:b6:c9:ac:
99:cd:d4:65:77:3f:4d:53:79:b0:52:db:38:b1:60:95:a4:a2:
b1:1d:2d:47:34:8e:73:f7:b8:43:ed:f1:af:b4:2b:b1:48:28:
0f:77:49:cb:74:f8:74:7e:ad:0d:4b:93:a2:c2:b5:c6:5d:0e:
a6:79:8a:9b:ea:89:d2:47:71:4e:19:38:00:2b:be:ba:b8:3a:
66:8f:52:55:61:10:13:92:d2:5c:91:04:29:e8:0d:b0:a0:01:
21:88:cd:8d:98:6c:e3:1b:74:19:ef:7d:f3:a8:79:7a:71:b3:
97:f7:98:9e:26:cf:2d:7b:18:ca:14:99:a0:ee:b9:1e:3e:bb:
b3:fc:12:21:6c:35:b4:fd:3b:30:6f:9e:2d:3a:81:36:f2:e5:
b9:97:16:14:93:53:29:5e:bf:c0:fc:e4:dd:77:15:0f:55:1d:
b1:4b:b7:48:f4:d1:03:72:a7:d4:95:da:6a:64:17:46:dc:e7:
e2:ca:a1:e7
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIUPvEp3cVqLLqF4evnGlN9O0+CvfwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEMzNzNEOEY3NjhCMTA1REEwMjQwQzZBRUE0MENEMUFE
NzYyRUJBNDAeFw0yNTAzMDUxODU1MDFaFw0yNjAzMDQxOTAwMDFaMDMxMTAvBgNV
BAMTKDQxNjVBOTUxNkVDN0NFNUZDRDlDMDlEODYyMEFDMEI4NzNGNTgxREYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyo4EvyW2ICb4EVtquXkywfEZ8
GF5R30+QtZAQbAeuub0cIsrr538lVuBXGa6W1fWOzELirAoOKa4lMPUxJY1BYhhR
eo/FuPUHKOS5UZP7i0Hz3i5qWHq2otEI2emlcT/RXe6mtB6ISCgJ6WPStGvdu7EJ
H9E55g+oLhOncYT2OQGnEHFud79dm4gUdx5T4Z+W9u9UOxBdbZsKthS+OPy9mMFN
8bwIyBjX4LXQXimabD6848RwRWGwgS23VoO+n3FOarWUQIhx2Fedg9txavytEXUL
HnhA1c1qwqxv/yzgt3oIysIzAFH+kcuaEJQlFctqCdCJNDP1N+wHfV8F3XiXAgMB
AAGjggJQMIICTDAdBgNVHQ4EFgQUQWWpUW7Hzl/NnAnYYgrAuHP1gd8wHwYDVR0j
BBgwFoAUDDc9j3aLEF2gJAxq6kDNGtdi66QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM1NuYUp3ZmpHWVk1VWVObmdkV012ajRxaFpjdGVSVG1qb0xaU1pnaU43
TEsvMS8wQzM3M0Q4Rjc2OEIxMDVEQTAyNDBDNkFFQTQwQ0QxQUQ3NjJFQkE0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzBDMzczRDhGNzY4QjEwNURB
MDI0MEM2QUVBNDBDRDFBRDc2MkVCQTQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNTbmFKd2ZqR1lZNVVlTm5nZFdNdmo0cWhaY3RlUlRtam9MWlNaZ2lON0xLLzEv
MzIzODMwMzQzYTM1Mzc2NTMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzNjM4
MzAzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKARX4DANBgkqhkiG9w0BAQsFAAOCAQEAIob80gG5
JoOEipdboIz40Z0tm9ASRIzcGZxs1FV25GcVf12p1LwSF53qnZP1qbsDjWGohb5z
g+nsmcErKLAgOBMy0MGltsmsmc3UZXc/TVN5sFLbOLFglaSisR0tRzSOc/e4Q+3x
r7QrsUgoD3dJy3T4dH6tDUuTosK1xl0OpnmKm+qJ0kdxThk4ACu+urg6Zo9SVWEQ
E5LSXJEEKegNsKABIYjNjZhs4xt0Ge9986h5enGzl/eYnibPLXsYyhSZoO65Hj67
s/wSIWw1tP07MG+eLTqBNvLluZcWFJNTKV6/wPzk3XcVD1UdsUu3SPTRA3Kn1JXa
amQXRtzn4sqh5w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 04:29:51 2025 by rpki-client