Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/323830343a316362633a343030303a3a2f33342d3334203d3e203631363732.roa
File: 323830343a316362633a343030303a3a2f33342d3334203d3e203631363732.roa (raw, json)
Hash identifier: xb/G6HhIVSO7m3+3eLTVZYp7oMrR0aCtYXIDfwY0VwU=
Subject key identifier: D5:32:47:D1:42:95:53:62:1D:65:DD:FB:FE:92:17:7E:5A:13:EC:E0
Certificate issuer: /CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Certificate serial: 1765C011B70808BAE9D001E939CC4AF9A8E5603F
Authority key identifier: 19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/323830343a316362633a343030303a3a2f33342d3334203d3e203631363732.roa
Signing time: Thu 06 Mar 2025 18:53:30 +0000
ROA not before: Thu 06 Mar 2025 18:48:30 +0000
ROA not after: Thu 05 Mar 2026 18:53:30 +0000
asID: 61672
IP address blocks: 2804:1cbc:4000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:65:c0:11:b7:08:08:ba:e9:d0:01:e9:39:cc:4a:f9:a8:e5:60:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19FA718A7689F718ABB4C46D0D9B0A0C03666281
Validity
Not Before: Mar 6 18:48:30 2025 GMT
Not After : Mar 5 18:53:30 2026 GMT
Subject: CN=D53247D1429553621D65DDFBFE92177E5A13ECE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dc:13:5c:e1:49:50:53:17:81:89:4b:b3:31:
ca:56:d6:eb:e2:37:e6:49:29:d7:e9:53:af:22:8d:
2d:f7:77:b8:f1:39:d1:1f:b7:3d:39:89:22:28:3a:
1f:e8:90:37:e1:2b:59:de:e1:46:8f:06:ef:9c:a1:
6a:4a:59:82:6c:c8:72:00:77:f3:fd:65:f2:0a:6c:
2a:38:6b:83:40:aa:50:2a:31:1b:44:aa:74:81:cc:
cd:ba:1c:99:8f:9e:28:3e:6e:22:a8:e9:15:a0:36:
a9:1b:4c:af:d5:30:a0:5e:82:07:64:28:22:d0:7a:
e9:a1:17:82:6a:71:43:22:a0:57:6d:7d:f7:05:e1:
9e:d0:ef:4a:12:c8:cd:42:ca:fa:69:29:2b:76:41:
96:4a:57:6b:dc:a8:a8:c3:6a:81:7d:c9:36:30:23:
1f:a7:21:1a:0e:62:8e:aa:dc:bf:a1:c6:75:af:8a:
ef:26:4b:d2:b7:97:75:6c:84:d9:90:ca:44:c0:6a:
19:36:82:0e:4a:04:df:0d:e5:51:3b:68:a5:4c:21:
00:a6:90:e8:02:b9:86:2f:c0:f0:b9:e2:59:69:41:
f7:cb:f1:51:68:f4:9b:9f:5c:b9:54:c2:08:3d:c3:
3a:6b:77:08:c2:71:e6:77:f9:9d:70:de:6a:21:48:
cb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:32:47:D1:42:95:53:62:1D:65:DD:FB:FE:92:17:7E:5A:13:EC:E0
X509v3 Authority Key Identifier:
keyid:19:FA:71:8A:76:89:F7:18:AB:B4:C4:6D:0D:9B:0A:0C:03:66:62:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19FA718A7689F718ABB4C46D0D9B0A0C03666281.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3UHaLLWT5iSd8N5hAqQmHUnKXJLP2uFSRgkM7sYpv7FX/1/323830343a316362633a343030303a3a2f33342d3334203d3e203631363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1cbc:4000::/34
Signature Algorithm: sha256WithRSAEncryption
1d:9b:ac:62:dd:ed:d1:b6:24:00:d4:86:24:de:83:ee:19:de:
80:43:42:8d:d7:da:2b:69:eb:a4:1f:87:0e:4a:f9:3a:d8:90:
67:db:8c:b1:00:60:38:bd:9c:99:93:09:1e:da:2b:52:a2:de:
df:4d:42:66:6f:7a:65:c8:c3:a5:76:2c:4d:dd:d6:16:e0:81:
53:f8:e4:15:d0:c7:60:59:74:22:b5:31:dd:af:ca:eb:50:db:
d0:38:d7:26:c4:fb:11:15:6f:25:bd:f8:92:c6:92:50:b4:1d:
34:8b:b5:4b:86:b2:4b:7f:28:78:d9:2c:24:c4:80:3c:e8:8b:
c3:8f:23:7e:ac:24:91:7d:fc:84:fb:aa:df:28:e7:c3:84:c6:
bc:25:4c:64:38:65:a3:e5:f9:41:6d:8e:91:e5:2d:9a:d9:5d:
69:78:52:61:fc:bf:f8:4c:a2:8e:94:38:f4:00:69:65:9c:38:
f6:ed:e5:fe:2a:19:8d:80:53:45:82:33:72:6f:fe:a4:97:d1:
c7:f0:63:30:ca:5e:c5:ce:f1:b3:f1:67:61:60:6c:59:59:7d:
4d:90:f8:15:6d:76:0f:46:84:9a:17:90:1c:d2:0e:b6:7c:13:
67:1f:db:23:69:65:db:5f:a0:73:6e:ae:17:1d:95:90:45:9c:
78:27:80:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:19:30 2025 by rpki-client