Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3137372e31312e3130322e302f32342d3234203d3e203631363732.roa
File: 3137372e31312e3130322e302f32342d3234203d3e203631363732.roa (raw, json)
Hash identifier: DKFd/+hUP/Jv95CqP74XPNhUD1Zszu0tUcebd2JnH88=
Subject key identifier: 83:EE:86:6C:2D:F3:6D:29:CC:76:6F:4F:90:0A:E5:94:A5:32:21:D1
Certificate issuer: /CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Certificate serial: 7F4EAE2718201ECC06457D4BC5CCD8E2315577B8
Authority key identifier: 19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3137372e31312e3130322e302f32342d3234203d3e203631363732.roa
Signing time: Thu 06 Mar 2025 18:53:31 +0000
ROA not before: Thu 06 Mar 2025 18:48:31 +0000
ROA not after: Thu 05 Mar 2026 18:53:31 +0000
asID: 61672
IP address blocks: 177.11.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:4e:ae:27:18:20:1e:cc:06:45:7d:4b:c5:cc:d8:e2:31:55:77:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Validity
Not Before: Mar 6 18:48:31 2025 GMT
Not After : Mar 5 18:53:31 2026 GMT
Subject: CN=83EE866C2DF36D29CC766F4F900AE594A53221D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:4e:73:f7:f3:6a:e9:7b:9c:59:ed:e5:97:
27:1c:21:ce:b3:2a:3b:7b:0b:4d:06:e0:85:04:f9:
f8:a7:0a:ba:5e:2a:c2:f6:60:ec:01:95:f1:45:2b:
bc:b1:32:a4:51:7e:59:3e:f5:6f:1b:74:d0:c4:6d:
aa:91:9d:fd:b3:4c:c9:b5:ec:3e:9d:f9:02:a2:4b:
fe:21:15:59:98:f5:e2:ad:07:9a:57:b0:f4:cb:f9:
4b:07:76:8d:e1:ec:a8:3a:ae:a7:14:d5:89:78:14:
f1:ea:3b:4d:ba:a1:b4:4d:11:86:4a:59:3a:38:44:
43:6b:4b:ae:aa:dc:02:2f:6b:83:b6:a6:76:8d:a4:
5d:7a:7c:2f:80:39:3b:0e:eb:c6:14:9a:09:38:1b:
20:4c:63:cb:5c:a8:70:e9:6a:e5:1e:5c:0f:79:ab:
ad:9e:f6:3e:4c:92:b2:e9:49:44:df:3d:ab:d0:7e:
c1:f7:6e:67:43:3e:be:12:43:d8:05:73:e4:06:69:
b0:1e:e0:0b:f7:83:7f:ce:9b:7f:0e:bc:34:f6:89:
d1:14:a1:36:4e:fc:60:53:89:cb:1d:0d:17:74:b6:
cc:44:39:97:d2:b2:88:c5:f9:47:ef:4c:79:5c:c7:
56:65:f0:5f:48:71:eb:de:00:3e:00:40:61:1e:4e:
f8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EE:86:6C:2D:F3:6D:29:CC:76:6F:4F:90:0A:E5:94:A5:32:21:D1
X509v3 Authority Key Identifier:
keyid:19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/3137372e31312e3130322e302f32342d3234203d3e203631363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.11.102.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:04:a5:5f:4c:b6:cd:b1:9e:32:d7:53:92:ef:f5:98:a1:e7:
2d:d5:4a:0e:72:d9:7e:0a:50:7a:3d:df:aa:81:53:b1:15:9b:
73:7f:e9:32:60:11:b8:da:c5:ad:fa:a2:32:3c:fb:f0:64:67:
5b:2a:51:36:39:47:e1:70:22:db:e4:61:cd:0d:b4:42:83:5e:
ed:3e:0a:18:77:3e:ed:7e:84:ac:9a:b7:10:7e:26:af:04:ee:
6d:b6:61:0b:aa:c5:c0:05:56:39:74:18:ea:43:54:15:76:c5:
4f:6b:a4:c6:75:80:6d:7d:f1:5c:3f:d0:4d:c4:e5:d9:07:97:
83:41:8d:22:6e:78:49:a2:bb:5a:d7:a4:d5:da:6a:8b:9f:08:
45:fc:48:0e:33:20:53:e8:8c:66:11:84:ff:10:91:19:5c:c9:
53:fa:40:8d:3d:54:02:f3:90:d8:19:dd:eb:d5:b2:a7:03:6f:
2d:5d:ab:be:f2:b9:38:30:bc:95:3a:ab:3c:15:88:fe:d6:ac:
18:13:6a:60:cb:52:6f:77:c3:70:87:2a:d1:d5:2f:44:06:ab:
7d:ea:10:6a:f5:09:08:9a:f3:69:b4:d0:c9:05:9c:72:62:92:
e0:29:1d:a8:28:40:fd:a7:c3:50:9e:74:11:1c:67:c6:87:86:
86:85:60:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:22:49 2025 by rpki-client