Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3133312e3130382e3130302e302f32342d3234203d3e203631363732.roa
File: 3133312e3130382e3130302e302f32342d3234203d3e203631363732.roa (raw, json)
Hash identifier: z5nA7m6WGn/QXSkX60ATQBgXUW3yzKPaYy/4sBHvcys=
Subject key identifier: E5:EE:11:54:EC:40:71:7E:6B:E6:02:31:20:43:24:70:45:FE:68:CA
Certificate issuer: /CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Certificate serial: 5C71C5FB989B3DC9B29E23AF243B6C11CAE32375
Authority key identifier: 19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3133312e3130382e3130302e302f32342d3234203d3e203631363732.roa
Signing time: Fri 07 Mar 2025 11:53:49 +0000
ROA not before: Fri 07 Mar 2025 11:48:49 +0000
ROA not after: Fri 06 Mar 2026 11:53:49 +0000
asID: 61672
IP address blocks: 131.108.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.crl
rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 04:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:71:c5:fb:98:9b:3d:c9:b2:9e:23:af:24:3b:6c:11:ca:e3:23:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Validity
Not Before: Mar 7 11:48:49 2025 GMT
Not After : Mar 6 11:53:49 2026 GMT
Subject: CN=E5EE1154EC40717E6BE602312043247045FE68CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:dd:f0:d1:d6:fc:83:68:c4:98:ba:b7:d6:f4:
76:38:50:35:84:72:81:b6:f6:9d:48:86:c2:b3:31:
d6:e8:12:84:09:74:8e:91:30:46:4b:43:9b:05:f6:
43:c1:74:f5:72:a2:d9:17:d9:33:ec:18:21:fa:57:
a4:63:34:a5:8a:98:9b:fe:87:82:54:77:2d:22:41:
88:0e:3f:fe:09:ad:e9:5b:84:11:92:86:5f:a4:b8:
6d:50:8d:a2:7d:6e:ce:2d:6f:5f:4e:0e:c0:f4:35:
90:e9:4e:19:43:d7:a3:2a:e5:be:da:f7:d3:bd:6e:
08:4c:bc:45:72:fe:17:9b:9c:f8:40:4b:38:19:53:
e2:bb:b5:27:35:f4:f3:d3:1a:90:2e:f6:a6:16:e8:
be:9a:ba:8a:b2:cb:18:47:dc:c7:5d:7a:87:69:4d:
16:88:0f:ff:af:48:e1:77:7f:b1:50:ca:51:66:e7:
c2:6f:43:18:04:aa:f2:54:8e:55:00:cc:eb:2b:3b:
7a:82:42:95:4c:10:b9:0e:1e:65:cc:7c:d1:2b:30:
59:ee:0b:42:38:b8:3c:a0:0a:74:f0:5e:d8:88:78:
6b:1e:44:b1:20:e1:d8:ad:53:a9:b9:21:6c:3c:f2:
49:b3:03:52:6d:26:3a:8f:f9:21:18:f9:4d:58:f8:
35:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:EE:11:54:EC:40:71:7E:6B:E6:02:31:20:43:24:70:45:FE:68:CA
X509v3 Authority Key Identifier:
keyid:19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3133312e3130382e3130302e302f32342d3234203d3e203631363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.100.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f2:11:aa:a1:26:40:2f:20:12:13:fe:55:98:d7:8e:94:c2:
2b:a5:05:c2:c0:1f:22:af:15:93:be:01:5d:bf:13:ab:5b:e8:
be:fc:1d:8e:21:5c:8c:d4:df:4f:48:dc:da:3c:c3:f9:47:fe:
e8:4d:88:14:59:57:4a:4b:ca:83:22:d6:59:cf:38:ff:27:78:
41:cf:9a:be:22:4e:f7:36:d9:14:00:1f:0e:72:38:a3:6c:f8:
14:61:37:95:2c:d2:60:48:2c:5a:d7:da:87:20:e7:e4:72:05:
2b:fe:80:ee:ba:a1:5a:07:92:7e:30:93:48:c6:17:f2:e2:76:
6a:44:37:f7:c2:f4:21:8a:27:b2:2b:59:01:f2:16:43:2a:33:
98:f2:dc:a3:82:3d:3e:a9:87:a2:78:bc:ff:44:bf:f1:d0:63:
ae:88:c7:6f:58:03:37:f0:ac:3b:a5:a6:d1:65:6a:ad:4f:4a:
ea:da:2d:3e:16:2b:ec:e6:26:ae:3e:ed:99:e8:68:fb:a2:35:
6f:ce:49:e6:f3:3e:c4:f7:7c:dd:14:3a:76:29:88:9b:a6:4a:
67:03:41:7d:e5:47:37:c4:ae:54:08:f0:58:54:79:d5:47:8c:
e7:be:df:6e:1a:bf:de:74:73:2a:72:a8:e5:1d:be:ef:5a:a4:
63:a6:54:ef
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUXHHF+5ibPcmyniOvJDtsEcrjI3UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTlGQTcxOEE3Njg5RjcxOEFCQjRDNDZEMEQ5QjBBMEMw
MzY2NjI4MTAeFw0yNTAzMDcxMTQ4NDlaFw0yNjAzMDYxMTUzNDlaMDMxMTAvBgNV
BAMTKEU1RUUxMTU0RUM0MDcxN0U2QkU2MDIzMTIwNDMyNDcwNDVGRTY4Q0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB3fDR1vyDaMSYurfW9HY4UDWE
coG29p1IhsKzMdboEoQJdI6RMEZLQ5sF9kPBdPVyotkX2TPsGCH6V6RjNKWKmJv+
h4JUdy0iQYgOP/4JrelbhBGShl+kuG1QjaJ9bs4tb19ODsD0NZDpThlD16Mq5b7a
99O9bghMvEVy/hebnPhASzgZU+K7tSc19PPTGpAu9qYW6L6auoqyyxhH3Mddeodp
TRaID/+vSOF3f7FQylFm58JvQxgEqvJUjlUAzOsrO3qCQpVMELkOHmXMfNErMFnu
C0I4uDygCnTwXtiIeGseRLEg4ditU6m5IWw88kmzA1JtJjqP+SEY+U1Y+DWpAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQU5e4RVOxAcX5r5gIxIEMkcEX+aMowHwYDVR0j
BBgwFoAUGfpxinaJ9xirtMRtDZsKDANmYoEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM1VIYUxMV1Q1aVNkOE41aEFxUW1IVW5LWEpMUDJ1RlNSZ2tNN3NZcHY3
RlgvMS8xOUZBNzE4QTc2ODlGNzE4QUJCNEM0NkQwRDlCMEEwQzAzNjY2MjgxLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE5RkE3MThBNzY4OUY3MThB
QkI0QzQ2RDBEOUIwQTBDMDM2NjYyODEuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNVSGFMTFdUNWlTZDhONWhBcVFtSFVuS1hKTFAydUZTUmdrTTdzWXB2N0ZYLzEv
MzEzMzMxMmUzMTMwMzgyZTMxMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2
MzEzNjM3MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBACDbGQwDQYJKoZIhvcNAQELBQADggEBAHnyEaqh
JkAvIBIT/lWY146UwiulBcLAHyKvFZO+AV2/E6tb6L78HY4hXIzU309I3No8w/lH
/uhNiBRZV0pLyoMi1lnPOP8neEHPmr4iTvc22RQAHw5yOKNs+BRhN5Us0mBILFrX
2ocg5+RyBSv+gO66oVoHkn4wk0jGF/LidmpEN/fC9CGKJ7IrWQHyFkMqM5jy3KOC
PT6ph6J4vP9Ev/HQY66Ix29YAzfwrDulptFlaq1PSuraLT4WK+zmJq4+7ZnoaPui
NW/OSebzPsT3fN0UOnYpiJumSmcDQX3lRzfErlQI8FhUedVHjOe+324av950cypy
qOUdvu9apGOmVO8=
-----END CERTIFICATE-----
Generated at Thu Apr 10 06:41:01 2025 by rpki-client