Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
File: 3137302e302e3230342e302f32322d3232203d3e203238323730.roa (raw, json)
Hash identifier: mL0QrRJJkjHLnteIeTS0vtMe+t0o4l1IlEq27g0fy0A=
Subject key identifier: 29:54:BF:97:2B:ED:BC:16:5D:B6:93:81:91:4E:CA:42:CD:2C:82:A7
Certificate issuer: /CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Certificate serial: 463031831B04DAFF76D1F67727A75F938B260F69
Authority key identifier: 7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
Signing time: Mon 14 Oct 2024 01:49:51 +0000
ROA not before: Mon 14 Oct 2024 01:44:51 +0000
ROA not after: Mon 13 Oct 2025 01:49:51 +0000
asID: 28270
IP address blocks: 170.0.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:30:31:83:1b:04:da:ff:76:d1:f6:77:27:a7:5f:93:8b:26:0f:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Validity
Not Before: Oct 14 01:44:51 2024 GMT
Not After : Oct 13 01:49:51 2025 GMT
Subject: CN=2954BF972BEDBC165DB69381914ECA42CD2C82A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3d:fb:bd:07:41:a8:71:e6:fc:19:e6:9a:42:
10:1d:f7:b1:94:09:6d:08:2d:be:03:e1:29:b5:ec:
16:a5:21:08:58:05:e8:09:16:67:36:49:16:bc:95:
3f:0f:d2:98:5f:47:e0:26:33:b5:a8:34:f5:67:d8:
0a:60:16:eb:5f:9d:5f:e1:65:a3:78:2b:94:47:61:
00:e7:97:f7:8d:04:4b:fc:8c:85:95:4d:b9:5c:f4:
8a:f9:37:b8:d9:c0:9d:77:ba:85:3c:9f:3a:bb:fc:
4d:31:2e:b8:3b:48:92:ef:28:67:77:a3:ae:f6:67:
2e:fd:e4:51:28:de:a5:11:ea:f5:60:49:f5:0d:d9:
d9:e1:1a:52:dd:ea:0a:b0:68:6d:a4:a5:6d:9f:85:
c8:43:cc:31:a1:ce:c3:3a:f1:ea:f7:54:1b:d0:05:
1f:fd:e2:1e:2c:ac:89:a5:fe:cb:c5:ed:8a:ca:6b:
96:c6:af:00:74:7d:d3:59:2b:cd:99:7b:54:32:af:
e8:6a:ee:b5:a2:7f:08:ca:7e:95:3b:7d:b4:b9:38:
ed:b3:ec:75:5a:48:13:5b:0f:70:81:04:37:d0:df:
db:7b:02:c8:9c:0b:f2:d4:ab:22:20:f9:c3:9d:de:
e8:b8:2d:d8:83:f3:81:07:06:8d:bc:7f:2f:e0:e6:
cd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:54:BF:97:2B:ED:BC:16:5D:B6:93:81:91:4E:CA:42:CD:2C:82:A7
X509v3 Authority Key Identifier:
keyid:7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/7CAD7FBEB62D41BEDEB82049A836E467615886FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e302e3230342e302f32322d3232203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.204.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:44:e2:b0:b6:96:f1:fc:94:6b:ec:68:3c:0b:fb:61:9b:39:
2a:7a:44:bf:5e:e4:d4:f0:c1:54:ec:3a:6d:ea:3a:5d:3a:a7:
09:b8:b1:70:22:00:16:9e:1b:46:e7:1e:3c:22:50:32:e3:47:
c1:ce:96:1c:dd:91:2a:03:29:e1:6f:4d:c7:e0:15:f5:e5:a1:
c2:ce:dc:42:f0:bc:b8:01:dd:fe:56:5c:f4:a5:4e:0e:fb:2a:
a5:20:f1:ae:12:84:36:98:23:77:34:84:d6:c9:6b:1c:52:eb:
63:45:5b:65:d3:0d:01:4d:99:e0:0b:c4:2a:86:7c:a0:18:70:
24:7b:bc:62:97:68:24:19:61:b8:1b:da:32:9e:03:ca:2e:fa:
7e:36:b9:3b:01:f8:af:8f:28:8e:27:71:fd:79:d4:48:a5:f4:
bf:e7:94:d0:af:9a:f7:b1:13:7a:f1:bf:df:21:48:90:48:56:
20:9f:bc:6e:83:05:84:86:cd:36:b6:49:88:dc:b7:b4:9c:91:
1a:f1:cc:c7:1e:78:bd:3d:73:86:dd:38:87:92:a2:3a:70:db:
fd:1e:64:d5:39:18:73:a0:cc:2b:a9:64:f7:cf:95:b9:95:92:
25:8d:81:96:ea:46:5a:5c:5c:ee:5b:6b:16:e1:b4:44:30:88:
21:0d:49:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 11:33:29 2025 by rpki-client