Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
File: 3136382e3132312e35322e302f32322d3232203d3e203238323730.roa (raw, json)
Hash identifier: aGQwdzYFBCV2uXOlYARlDw8sNDEmqKcgUbKb7Gj4DeM=
Subject key identifier: 62:74:49:F3:84:61:21:1A:D2:20:0E:47:1B:42:36:6A:98:D7:9B:EE
Certificate issuer: /CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Certificate serial: 3F9F4376EDE71B0241514904A7CB7CE36D00EDF2
Authority key identifier: 7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
Signing time: Mon 14 Oct 2024 01:49:51 +0000
ROA not before: Mon 14 Oct 2024 01:44:51 +0000
ROA not after: Mon 13 Oct 2025 01:49:51 +0000
asID: 28270
IP address blocks: 168.121.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:9f:43:76:ed:e7:1b:02:41:51:49:04:a7:cb:7c:e3:6d:00:ed:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Validity
Not Before: Oct 14 01:44:51 2024 GMT
Not After : Oct 13 01:49:51 2025 GMT
Subject: CN=627449F38461211AD2200E471B42366A98D79BEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:90:d5:a2:be:0e:4b:d9:e6:8c:94:fe:a1:
6a:71:a6:3d:8f:7e:0d:2b:af:29:00:2e:c0:1a:93:
4b:16:20:69:63:d0:bd:e3:5e:43:5d:9f:f1:89:97:
7e:ed:25:35:f7:c4:45:ac:c3:2f:b2:81:10:c1:4a:
d0:c5:e5:e9:44:dd:3d:99:7d:61:f5:63:a0:39:13:
0c:77:f6:c6:33:15:15:02:8c:83:5d:34:2a:2d:75:
48:8d:f4:10:73:8e:b8:f5:bd:25:c5:43:b3:42:b1:
fc:d2:15:2e:78:f4:cd:65:91:b6:cc:be:ea:3a:4f:
45:67:44:ed:7f:01:71:c4:fd:8e:6a:54:ea:bb:72:
0a:fa:44:16:d0:45:d0:cc:7f:29:72:5f:92:2f:08:
43:79:06:d1:e6:7b:90:79:e6:e8:b7:b5:02:15:2e:
c7:ff:74:0e:15:28:9f:56:d3:22:98:5b:af:72:c4:
a4:b2:2d:84:24:ec:d9:aa:8d:a7:00:75:0d:c0:d8:
28:74:99:56:50:7f:51:3b:17:b4:ad:41:57:52:c0:
0f:3c:29:01:d8:09:db:c4:cf:ab:53:07:24:ca:9a:
80:9e:3d:1e:a2:07:cb:ba:2c:d7:3f:fb:7e:0b:3f:
02:ce:04:5c:f8:6d:3c:59:a0:45:97:c8:40:44:63:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:74:49:F3:84:61:21:1A:D2:20:0E:47:1B:42:36:6A:98:D7:9B:EE
X509v3 Authority Key Identifier:
keyid:7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/7CAD7FBEB62D41BEDEB82049A836E467615886FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.52.0/22
Signature Algorithm: sha256WithRSAEncryption
10:28:c8:81:4c:21:ca:8e:79:76:86:a9:3f:8d:16:bf:fb:fd:
3a:b1:1c:03:9b:84:28:f4:2c:c3:94:44:e8:91:57:e9:35:85:
33:13:a8:9e:cc:00:97:13:24:08:e4:e2:50:99:cc:77:b4:b1:
98:10:8a:dd:64:23:37:ce:66:84:7c:16:58:84:08:46:4b:73:
9d:37:cb:53:dd:0d:62:27:7d:42:df:ad:22:70:05:fb:6d:9b:
44:10:c4:2c:28:40:c6:76:a8:96:1a:c1:48:a5:af:2a:57:9f:
3e:8d:3a:5b:cf:bc:4a:96:ae:53:19:49:6d:fb:70:6f:71:6a:
2e:70:df:38:7d:7e:91:9b:80:11:8a:18:0d:29:a0:bf:53:cc:
14:6a:15:d3:c1:ca:a7:f9:6a:31:a8:02:eb:02:8f:bd:e1:ef:
c5:e5:95:76:41:da:5c:a1:6d:36:bb:e8:ef:9e:c8:84:38:7a:
a1:4d:3c:77:dd:dd:e3:7c:59:46:81:05:1d:0a:79:9c:ba:f2:
91:6e:20:3c:68:68:65:1a:e9:0e:cc:a2:e1:be:2b:9f:6d:3c:
43:0a:12:7e:e7:30:96:48:a9:fc:0b:93:81:93:79:c3:27:3e:
1d:16:3c:7e:e0:16:36:d7:c4:f6:05:78:e5:28:a6:43:19:98:
90:16:bc:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:21:32 2025 by rpki-client