Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
File: 3136382e3132312e35322e302f32322d3232203d3e203238323730.roa (raw, json)
Hash identifier: A0uNpbtjbve4cow25bhnsh3ChefJiXIkaN71WpHo7s8=
Subject key identifier: 28:B9:3F:F4:71:44:A8:26:21:A3:39:77:EA:CC:AA:90:62:9F:CA:B0
Certificate issuer: /CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Certificate serial: 12744A3EF7C720AF32DF5350AA383E24BDC9676F
Authority key identifier: A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
Signing time: Thu 07 Nov 2024 20:40:14 +0000
ROA not before: Thu 07 Nov 2024 20:35:14 +0000
ROA not after: Thu 06 Nov 2025 20:40:14 +0000
asID: 28270
IP address blocks: 168.121.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:74:4a:3e:f7:c7:20:af:32:df:53:50:aa:38:3e:24:bd:c9:67:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Validity
Not Before: Nov 7 20:35:14 2024 GMT
Not After : Nov 6 20:40:14 2025 GMT
Subject: CN=28B93FF47144A82621A33977EACCAA90629FCAB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1c:47:e6:bb:65:b7:b8:56:95:f2:8a:a7:7b:
d8:f5:40:cf:91:0f:af:37:10:0d:86:45:02:97:71:
97:24:e6:c9:84:9c:58:27:50:2b:17:1f:13:f3:c9:
35:91:b7:58:9d:82:6f:9a:0c:e5:fc:a6:80:b9:38:
bb:01:34:90:d6:c7:85:c5:04:8e:ae:d5:da:b2:cc:
5e:b6:dc:9b:6a:c4:cc:b3:43:29:89:a9:2d:28:78:
51:ec:6b:5c:c6:cb:0e:9c:e1:c5:5a:e0:39:c1:d1:
53:27:e9:e0:cd:ae:e1:37:fc:0f:28:52:66:9b:ab:
24:f8:61:b2:af:ee:a3:9b:9c:00:39:59:eb:58:06:
04:c0:4a:06:4d:cc:bd:b9:01:ec:85:6f:24:c7:1c:
7d:51:80:82:17:9f:14:4f:4d:f9:29:7a:ce:45:94:
f6:57:dd:97:1d:83:f9:83:d4:3b:f0:03:4d:fd:0a:
de:e1:b9:1a:4a:74:ec:af:f5:bb:0c:c9:20:d9:68:
e7:d8:41:96:d8:8e:ff:ad:af:a9:ab:dc:77:a0:32:
c4:5f:05:d2:18:d7:ef:ee:af:5d:fc:e3:31:f8:38:
79:d4:e1:2c:c7:2c:72:58:2c:bb:75:66:c4:4f:5e:
64:6c:05:a9:81:b0:31:a2:ab:c6:18:9c:f9:03:f0:
6c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B9:3F:F4:71:44:A8:26:21:A3:39:77:EA:CC:AA:90:62:9F:CA:B0
X509v3 Authority Key Identifier:
keyid:A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3136382e3132312e35322e302f32322d3232203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.52.0/22
Signature Algorithm: sha256WithRSAEncryption
23:4b:70:1d:94:59:b1:3d:0d:a6:fe:73:cb:c9:e7:8b:f3:21:
fa:20:07:04:b0:6f:a7:a4:b7:46:e4:6d:f7:1c:f0:bb:79:0c:
b4:34:51:b8:ab:ad:87:f8:2b:48:4e:91:74:e0:97:d2:33:d8:
f8:39:8c:1c:94:52:7c:13:ab:eb:1b:99:bf:b9:64:da:a4:b1:
36:e0:20:97:28:18:2b:eb:6a:13:ff:5f:a3:ba:e0:cc:ab:d4:
e3:91:d7:4b:6b:80:04:ad:24:0f:99:62:9a:ae:ce:77:da:28:
ef:a6:1c:dd:f0:1f:4a:df:ab:14:4a:c2:7e:0a:69:0e:42:bc:
84:72:1a:35:bc:e0:c9:62:2d:81:29:5b:2e:7c:38:2c:73:4b:
f7:f6:be:98:a1:6f:ed:d2:b1:0c:f8:cd:65:d0:30:c3:8b:26:
02:ee:8f:56:26:6f:f7:81:3c:99:a6:be:09:3b:69:ea:62:53:
e5:82:b4:e8:df:76:bb:16:5e:b7:8e:e9:f4:1f:59:96:e3:33:
15:bc:ee:5a:42:fe:d6:ab:cb:29:c6:d2:3f:7b:43:02:04:5e:
0f:55:eb:31:3d:b7:ac:b1:a2:20:e1:4b:38:fd:58:47:cf:3e:
3b:13:d9:e8:47:45:94:c3:c2:c2:74:13:2b:c1:4b:c5:c1:94:
50:45:61:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 23:22:08 2024 by rpki-client on console-ams.rpki-client.org