Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32332d3233203d3e20323638303932.roa
File: 34352e3136382e3232302e302f32332d3233203d3e20323638303932.roa (raw, json)
Hash identifier: 4c7AvlYANXrNOotM9/OhwuBkPgiQbi9mzktPehIW5t4=
Subject key identifier: 54:E2:2C:AD:42:06:29:C7:3C:E2:C2:7C:A5:FD:8E:9E:41:3F:0B:C1
Certificate issuer: /CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Certificate serial: 7BF5A64EC01D7C0240493BEFD88C344DAB6C31DC
Authority key identifier: 0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32332d3233203d3e20323638303932.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 268092
IP address blocks: 45.168.220.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f5:a6:4e:c0:1d:7c:02:40:49:3b:ef:d8:8c:34:4d:ab:6c:31:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C373D8F768B105DA0240C6AEA40CD1AD762EBA4
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=54E22CAD420629C73CE2C27CA5FD8E9E413F0BC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:40:2f:8c:cd:de:ab:ce:44:52:c1:6c:b4:
37:e3:50:b4:b4:ec:e3:fe:ae:25:8d:6d:a6:31:10:
af:f5:b0:35:40:bb:50:d0:e5:94:b3:8a:09:d2:bb:
51:c6:67:46:28:3f:81:60:c5:e9:ab:46:ae:70:0a:
c3:5b:f5:df:5c:bd:ea:53:9d:86:15:93:ad:7a:5a:
3f:d2:d4:d0:91:0d:a5:cd:3f:f9:86:8f:52:b9:14:
a7:96:f1:7a:7e:7f:9d:fe:fe:c7:cb:5c:cf:29:b6:
b1:4f:c8:c4:f0:f1:81:9c:6b:0f:3a:74:5f:38:c5:
50:96:76:15:e0:66:e7:44:c8:b8:87:dc:d2:61:a8:
2f:42:2c:aa:9a:7e:7a:12:24:c7:1d:50:3f:4d:2e:
dd:98:74:b5:90:34:cd:c9:01:51:b4:ff:51:1c:7c:
67:19:5b:f2:b1:56:47:54:ad:7f:d4:6d:63:9b:76:
35:ad:86:8f:c2:1f:f3:61:b6:57:94:80:0a:23:2f:
05:5d:cb:81:60:e0:e5:6b:03:39:ee:5e:36:bc:a8:
f7:6d:13:2e:28:3d:ff:7a:7b:7c:47:e1:66:eb:a4:
84:18:75:63:33:8c:50:eb:34:0b:0c:46:16:69:de:
f2:c0:35:65:16:47:1f:ec:28:a0:14:d6:eb:69:28:
35:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E2:2C:AD:42:06:29:C7:3C:E2:C2:7C:A5:FD:8E:9E:41:3F:0B:C1
X509v3 Authority Key Identifier:
keyid:0C:37:3D:8F:76:8B:10:5D:A0:24:0C:6A:EA:40:CD:1A:D7:62:EB:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0C373D8F768B105DA0240C6AEA40CD1AD762EBA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3SnaJwfjGYY5UeNngdWMvj4qhZcteRTmjoLZSZgiN7LK/1/34352e3136382e3232302e302f32332d3233203d3e20323638303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.220.0/23
Signature Algorithm: sha256WithRSAEncryption
65:2d:a0:35:bc:60:35:07:e4:ec:0f:ed:81:d3:3c:4c:e5:6e:
82:b8:63:0a:da:c3:34:3a:3d:cb:f6:43:69:a6:c4:f0:0b:b8:
85:ab:e6:99:6f:f8:b8:55:f5:6c:ec:f8:0b:d7:e4:f9:d5:1d:
de:99:5a:f4:6f:3c:9f:56:e4:ef:bc:09:fa:35:e3:db:5d:db:
76:2b:86:3d:0b:2b:da:f6:79:af:2a:fb:30:ed:f7:a1:b1:b9:
38:9c:ac:19:99:43:54:93:c0:d4:e1:c3:62:7d:c0:70:38:17:
f5:4e:dc:c4:a8:84:f2:50:fe:92:85:c3:45:fc:f1:ba:d6:38:
89:bc:ef:ee:e9:72:1c:9b:09:ed:46:f5:fb:1e:38:e9:bb:06:
62:91:b9:e4:71:62:5d:6b:e5:9c:55:30:89:4e:76:ec:a9:59:
b1:09:3a:0f:8a:bd:ea:57:a9:a9:27:f4:fe:5b:ff:50:dc:86:
0d:ce:fe:5e:5c:7a:6c:bd:b6:5d:26:b0:40:d3:2d:a7:1b:3e:
09:e7:2e:b2:83:36:3e:c1:25:db:a2:fe:72:7f:ef:85:ed:3f:
71:5c:1a:43:44:4c:93:16:c4:29:52:ce:30:54:3f:74:29:05:
31:cc:3f:ce:ae:11:70:dd:e5:9e:73:4a:22:7e:86:67:08:19:
cc:01:cb:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:14:23 2025 by rpki-client