Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32322d3232203d3e20323638303932.roa
File: 34352e3136382e3232302e302f32322d3232203d3e20323638303932.roa (raw, json)
Hash identifier: d8gEOw3yaWx9YkBF9tV3V21KI/F4TaWylBAjufneWSk=
Subject key identifier: 5B:16:D1:EC:66:A4:3D:6E:A7:91:AB:B9:BF:60:37:00:00:BC:7F:21
Certificate issuer: /CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Certificate serial: 351DFBB64D1F2C45D47B88126DCDE691A0D7AA44
Authority key identifier: 0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32322d3232203d3e20323638303932.roa
Signing time: Wed 05 Mar 2025 19:00:01 +0000
ROA not before: Wed 05 Mar 2025 18:55:01 +0000
ROA not after: Wed 04 Mar 2026 19:00:01 +0000
asID: 268092
IP address blocks: 45.168.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1d:fb:b6:4d:1f:2c:45:d4:7b:88:12:6d:cd:e6:91:a0:d7:aa:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Validity
Not Before: Mar 5 18:55:01 2025 GMT
Not After : Mar 4 19:00:01 2026 GMT
Subject: CN=5B16D1EC66A43D6EA791ABB9BF60370000BC7F21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:6b:ef:98:0a:21:9e:dc:42:d6:33:4c:27:
ec:af:2d:b8:25:33:04:db:6a:18:7e:49:76:f6:a8:
b3:6c:39:2f:8d:aa:2e:7c:a2:e9:a1:f8:a7:1f:d5:
d3:c9:f6:aa:65:a3:ca:ae:f6:fb:27:1d:3c:32:fe:
d9:79:d2:76:ba:92:5a:3a:07:2d:a3:53:5a:c7:d4:
18:87:55:04:f0:08:aa:8e:02:e7:23:04:3e:fd:dc:
67:ec:c5:11:6b:52:d9:90:85:21:f2:3d:4c:cb:17:
31:a6:b6:06:43:74:98:54:bd:bc:54:e3:57:be:a8:
6a:dd:5f:0e:11:4d:84:a2:9c:96:63:f0:f4:54:2e:
e4:1c:00:59:f7:e4:42:9e:48:82:ae:d4:99:c3:77:
22:f4:a9:bb:08:f4:80:17:22:9b:f8:b6:52:c3:26:
17:5c:af:a0:b4:4d:43:c8:4e:7c:2f:d5:14:d9:64:
ca:08:fe:cb:7c:88:0e:fc:4a:2f:2b:57:79:ca:14:
5f:52:27:06:ca:84:fd:a2:38:79:2c:b8:12:22:c7:
e2:ae:01:36:8b:aa:5c:c3:32:73:fb:27:fc:e2:63:
b7:8c:34:da:c6:f6:eb:b9:74:36:7b:f1:f0:54:a7:
0b:a2:c0:64:b3:2a:b4:35:1f:7a:b9:3d:bd:d2:81:
59:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:16:D1:EC:66:A4:3D:6E:A7:91:AB:B9:BF:60:37:00:00:BC:7F:21
X509v3 Authority Key Identifier:
keyid:0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32322d3232203d3e20323638303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.220.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:b5:6b:c5:45:5e:50:fc:75:17:3c:78:38:cf:56:92:2c:e3:
15:ab:86:04:d3:ef:3f:2b:c0:9b:55:bd:57:4b:64:f0:99:35:
07:b2:40:86:5c:a4:f5:ee:ea:09:db:85:5a:6d:aa:de:f3:6b:
a4:89:03:b3:88:83:c7:ef:33:41:52:05:df:90:ec:c9:d1:1f:
88:f4:18:99:90:74:90:b2:52:f5:de:d7:55:dd:3e:e2:2c:18:
30:43:37:f6:7d:ef:89:11:e0:c2:e1:d1:20:91:19:78:bb:70:
a0:a5:31:5a:90:ba:e5:cd:4c:ad:6c:11:87:e2:b6:53:fe:0d:
e7:27:12:16:ba:36:f2:c8:d6:b9:a7:da:7e:35:7c:82:e3:08:
6c:96:c9:6d:03:13:99:cd:dc:94:ef:82:7c:2b:f4:c6:70:7a:
ae:df:8b:24:23:63:39:83:cb:8a:3e:3c:ac:18:50:52:32:e6:
f2:23:b2:14:f3:21:83:c6:b4:98:69:a9:a2:23:97:4a:d2:07:
07:3a:8f:e5:0d:ee:54:96:df:5b:d3:5b:c9:27:eb:ea:16:6c:
94:ed:13:11:0c:31:48:36:db:b8:f8:30:99:9a:c0:fe:a7:2e:
72:04:ab:e0:57:a6:30:5f:f0:30:6a:d9:c8:f1:95:80:81:06:
5f:29:e1:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:29:01 2025 by rpki-client