Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa
File: 323830343a316230343a3a2f33322d3438203d3e203533303438.roa (raw, json)
Hash identifier: +9m7yJ3Xsscg2irG7uu8cTTMsviDWZ0aUTCGXW3DImw=
Subject key identifier: 22:1C:EB:84:AB:0C:89:0F:C7:74:B3:27:D4:2E:6B:C6:AE:77:8E:65
Certificate issuer: /CN=E70D2018024CE6AFCA39C3D63C91946107DC165C
Certificate serial: 02A528C1879D86CBDFE0547D20CBBA54C0A4EFA0
Authority key identifier: E7:0D:20:18:02:4C:E6:AF:CA:39:C3:D6:3C:91:94:61:07:DC:16:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa
Signing time: Thu 22 Feb 2024 15:30:00 +0000
ROA not before: Thu 22 Feb 2024 15:25:00 +0000
ROA not after: Thu 20 Feb 2025 15:30:00 +0000
asID: 53048
IP address blocks: 2804:1b04::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:a5:28:c1:87:9d:86:cb:df:e0:54:7d:20:cb:ba:54:c0:a4:ef:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E70D2018024CE6AFCA39C3D63C91946107DC165C
Validity
Not Before: Feb 22 15:25:00 2024 GMT
Not After : Feb 20 15:30:00 2025 GMT
Subject: CN=221CEB84AB0C890FC774B327D42E6BC6AE778E65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e0:7e:97:81:cf:0e:72:78:16:0b:47:87:4f:
d7:2f:4a:72:57:41:53:2e:2f:2c:7d:72:9d:f0:09:
aa:25:b0:88:9f:a4:12:76:d9:02:2d:6f:23:e0:0d:
09:42:f2:00:4a:b4:bc:1b:8a:8e:b6:f4:b2:6f:95:
6a:a3:e8:20:b5:27:1d:a5:4f:9d:cf:93:fa:a3:c8:
30:79:50:d2:14:c2:4e:db:10:44:2d:e8:74:13:92:
d7:8b:67:21:2d:78:d9:4e:f0:68:1f:ad:0e:12:62:
b8:de:19:94:65:83:1d:a3:e5:c5:52:79:d6:54:76:
12:f0:c1:2f:35:7d:7e:36:ef:86:6c:49:24:81:b0:
90:d4:08:f5:96:7c:f9:08:5f:04:ee:dc:8c:a4:7e:
9d:94:97:c9:20:a6:45:ba:70:28:d3:26:51:e2:88:
a1:77:2e:52:95:0e:76:0c:52:84:18:90:81:e4:ac:
e5:51:14:95:f8:96:bb:49:ed:fc:b4:9e:31:9a:31:
3a:fd:96:62:8e:ab:e1:17:a3:dd:5b:8f:f6:89:8f:
81:94:5b:ca:18:49:2b:06:3f:d6:09:b1:07:b9:06:
46:34:4c:79:54:6e:e7:6a:7f:11:9a:22:c5:42:f4:
7e:13:55:25:9d:c2:87:2d:9f:13:70:13:05:a6:bd:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1C:EB:84:AB:0C:89:0F:C7:74:B3:27:D4:2E:6B:C6:AE:77:8E:65
X509v3 Authority Key Identifier:
keyid:E7:0D:20:18:02:4C:E6:AF:CA:39:C3:D6:3C:91:94:61:07:DC:16:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/323830343a316230343a3a2f33322d3438203d3e203533303438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1b04::/32
Signature Algorithm: sha256WithRSAEncryption
50:04:7c:dc:d3:63:da:d5:90:38:4c:92:ec:78:dd:83:56:9d:
55:47:19:a3:c8:06:d9:75:81:1f:12:27:be:00:4c:7c:e6:40:
24:25:aa:c7:a6:60:de:6d:0c:16:d7:5e:61:44:14:71:20:ad:
89:ea:71:04:21:08:4f:13:61:96:f5:98:b3:57:39:3a:67:1a:
b0:dc:b0:60:82:22:c1:c6:06:7c:e1:7a:7b:90:85:87:7a:91:
0d:60:6b:45:17:2d:b1:4d:18:54:b5:bb:fb:86:21:66:35:30:
f8:06:38:e8:57:a1:bd:1d:7d:db:bc:07:34:e0:d3:66:ff:a9:
19:2c:27:57:18:82:b5:dd:77:14:e5:cc:c3:46:83:f5:a1:d7:
06:3e:e3:08:9f:0a:7c:8d:5a:19:f9:5b:96:fa:29:6e:cb:27:
d0:15:7c:7a:56:84:34:10:2a:2f:24:34:f6:81:e3:56:92:eb:
56:8f:ec:3d:e7:81:89:9f:60:12:9f:e9:af:e0:40:b9:e4:4a:
06:d8:37:ed:4c:05:d0:2b:2d:fd:37:0a:71:b4:db:55:a3:a8:
f9:75:cf:3e:68:f3:2a:a5:43:54:77:d3:96:b4:e4:f8:b9:12:
04:d2:c5:bc:65:3e:37:05:80:1f:8e:ee:d1:d2:c1:25:fc:24:
81:56:43:d8
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgIUAqUowYedhsvf4FR9IMu6VMCk76AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTcwRDIwMTgwMjRDRTZBRkNBMzlDM0Q2M0M5MTk0NjEw
N0RDMTY1QzAeFw0yNDAyMjIxNTI1MDBaFw0yNTAyMjAxNTMwMDBaMDMxMTAvBgNV
BAMTKDIyMUNFQjg0QUIwQzg5MEZDNzc0QjMyN0Q0MkU2QkM2QUU3NzhFNjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe4H6Xgc8OcngWC0eHT9cvSnJX
QVMuLyx9cp3wCaolsIifpBJ22QItbyPgDQlC8gBKtLwbio629LJvlWqj6CC1Jx2l
T53Pk/qjyDB5UNIUwk7bEEQt6HQTkteLZyEteNlO8GgfrQ4SYrjeGZRlgx2j5cVS
edZUdhLwwS81fX4274ZsSSSBsJDUCPWWfPkIXwTu3Iykfp2Ul8kgpkW6cCjTJlHi
iKF3LlKVDnYMUoQYkIHkrOVRFJX4lrtJ7fy0njGaMTr9lmKOq+EXo91bj/aJj4GU
W8oYSSsGP9YJsQe5BkY0THlUbudqfxGaIsVC9H4TVSWdwoctnxNwEwWmvesvAgMB
AAGjggJOMIICSjAdBgNVHQ4EFgQUIhzrhKsMiQ/HdLMn1C5rxq53jmUwHwYDVR0j
BBgwFoAU5w0gGAJM5q/KOcPWPJGUYQfcFlwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM1g1dWZ4Mm5yUkNrdjdzZVlxdVBHZTFjSFVTcGpZMVZZVm9SNEJnTkNF
QWkvMC9FNzBEMjAxODAyNENFNkFGQ0EzOUMzRDYzQzkxOTQ2MTA3REMxNjVDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0U3MEQyMDE4MDI0Q0U2QUZD
QTM5QzNENjNDOTE5NDYxMDdEQzE2NUMuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNYNXVmeDJuclJDa3Y3c2VZcXVQR2UxY0hVU3BqWTFWWVZvUjRCZ05DRUFpLzAv
MzIzODMwMzQzYTMxNjIzMDM0M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzMzMw
MzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB
/wQRMA8wDQQCAAIwBwMFACgEGwQwDQYJKoZIhvcNAQELBQADggEBAFAEfNzTY9rV
kDhMkux43YNWnVVHGaPIBtl1gR8SJ74ATHzmQCQlqsemYN5tDBbXXmFEFHEgrYnq
cQQhCE8TYZb1mLNXOTpnGrDcsGCCIsHGBnzhenuQhYd6kQ1ga0UXLbFNGFS1u/uG
IWY1MPgGOOhXob0dfdu8BzTg02b/qRksJ1cYgrXddxTlzMNGg/Wh1wY+4wifCnyN
Whn5W5b6KW7LJ9AVfHpWhDQQKi8kNPaB41aS61aP7D3ngYmfYBKf6a/gQLnkSgbY
N+1MBdArLf03CnG021WjqPl1zz5o8yqlQ1R305a05Pi5EgTSxbxlPjcFgB+O7tHS
wSX8JIFWQ9g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:24 2024 by rpki-client on console-ams.rpki-client.org