Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
File: 3137302e302e3230342e302f32322d3232203d3e203238323730.roa (raw, json)
Hash identifier: JLuOsO5oj4c3OmDXpboO9fNv82rsr98lvk/p33QK8n4=
Subject key identifier: 0F:E6:3F:59:0F:AD:76:3E:74:38:CB:66:7A:41:CA:74:E6:F2:80:18
Certificate issuer: /CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Certificate serial: 146459458BDFDC43FF41EE7D680EB48FACBE83F9
Authority key identifier: A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
Signing time: Thu 07 Nov 2024 20:40:16 +0000
ROA not before: Thu 07 Nov 2024 20:35:16 +0000
ROA not after: Thu 06 Nov 2025 20:40:16 +0000
asID: 28270
IP address blocks: 170.0.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:64:59:45:8b:df:dc:43:ff:41:ee:7d:68:0e:b4:8f:ac:be:83:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Validity
Not Before: Nov 7 20:35:16 2024 GMT
Not After : Nov 6 20:40:16 2025 GMT
Subject: CN=0FE63F590FAD763E7438CB667A41CA74E6F28018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:86:b2:25:9e:b9:a3:41:2d:c3:6b:2e:21:8a:
24:d1:1c:09:9c:98:81:f5:39:43:9e:0b:12:ae:08:
51:35:20:c4:2d:4f:14:04:f9:a3:3f:ad:a8:82:8a:
67:ec:3d:d5:04:94:2e:1c:90:74:31:96:8c:2d:69:
84:a8:6d:63:c5:7e:86:8c:5f:63:de:da:63:2d:2a:
53:85:9c:12:04:64:03:f0:5c:00:c1:4d:69:8b:44:
4a:ad:fd:b7:90:39:d0:d3:75:95:85:16:62:3d:4e:
a3:54:99:94:52:17:b7:e8:c5:16:91:95:8c:c3:b2:
2c:89:f5:33:87:2e:0f:46:12:87:f3:c7:75:56:d7:
61:9f:c0:c4:f1:18:f2:b8:e7:95:83:29:ec:5c:0c:
16:7e:28:50:70:71:c4:5f:23:66:e0:fe:21:31:93:
c9:64:d0:2e:e0:65:1f:b3:c4:b9:ab:59:b6:54:10:
b3:ed:19:29:b3:e2:05:e8:8a:ba:74:11:39:ef:89:
c5:f5:46:da:10:7b:ed:dd:75:fd:f7:7e:52:70:ab:
c0:16:8b:0f:fd:88:67:42:61:07:50:fb:03:f3:e9:
f9:e8:ab:db:91:1c:c7:fc:a7:5b:22:56:3c:0d:0e:
f0:24:c9:14:c2:3c:9d:6e:11:d9:c6:01:a0:94:94:
bf:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E6:3F:59:0F:AD:76:3E:74:38:CB:66:7A:41:CA:74:E6:F2:80:18
X509v3 Authority Key Identifier:
keyid:A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.204.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:98:56:90:8e:c9:38:b4:18:3c:eb:07:8b:44:05:ae:f9:d5:
44:7a:d5:37:18:8b:53:f3:9a:d2:6c:6b:64:75:f3:dd:0a:ad:
59:a7:46:61:3b:7d:22:1d:8f:82:6b:4d:5a:85:1e:70:b5:31:
e7:e9:cd:16:b8:e8:0e:d6:d7:e5:23:a2:c8:db:82:3e:79:37:
b6:ea:28:14:2b:2d:3e:7f:d0:8c:58:40:12:7b:81:23:3e:e1:
7f:5e:11:cb:14:3f:47:0b:96:e6:61:54:d4:37:b0:c4:69:ca:
e4:3f:10:35:bf:12:01:7e:4e:bd:8a:89:f9:31:99:cb:03:31:
3a:47:f2:a7:63:9f:3e:13:d6:5b:d3:43:e0:89:93:60:8d:4a:
3f:10:86:14:3e:15:c4:79:51:01:07:76:e4:e4:55:2a:ef:fb:
d9:44:55:a4:4b:8e:7f:a1:b2:4d:52:2b:46:13:1b:20:60:10:
f6:8e:ad:42:8e:7e:2f:82:40:47:26:2f:64:6a:93:7a:68:42:
03:c9:c0:ff:45:02:ed:39:71:d7:61:93:4d:57:41:7d:de:ec:
70:9a:59:2f:f1:70:85:44:99:a9:05:bf:8d:8b:c9:cb:0d:6e:
a8:aa:e7:1b:e5:ab:ad:ed:50:48:f7:8f:c6:e2:87:a3:f1:4e:
ad:05:8a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 23:22:08 2024 by rpki-client on console-ams.rpki-client.org