Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
File: 3137302e3234372e35322e302f32342d3234203d3e203238323730.roa (raw, json)
Hash identifier: gecr+WnYo3LWq0gxQ84f56AJEGjgjB32pLWwrJ/PBw8=
Subject key identifier: 06:F3:5C:64:F1:7C:87:3B:FC:97:0B:98:98:04:0D:2A:29:C0:21:CD
Certificate issuer: /CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Certificate serial: 7D6D2CFB814952C6A8D37832DCF0CE0C07B539C0
Authority key identifier: 7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
Signing time: Mon 14 Oct 2024 01:49:51 +0000
ROA not before: Mon 14 Oct 2024 01:44:51 +0000
ROA not after: Mon 13 Oct 2025 01:49:51 +0000
asID: 28270
IP address blocks: 170.247.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:6d:2c:fb:81:49:52:c6:a8:d3:78:32:dc:f0:ce:0c:07:b5:39:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Validity
Not Before: Oct 14 01:44:51 2024 GMT
Not After : Oct 13 01:49:51 2025 GMT
Subject: CN=06F35C64F17C873BFC970B9898040D2A29C021CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8b:46:e4:c2:0f:88:c7:2a:e6:f1:93:25:ce:
f0:67:32:d6:95:16:47:a3:89:c3:cc:2e:66:ef:8e:
c4:16:f8:d5:3b:2e:fc:d3:62:68:84:ca:be:3f:99:
ea:9c:95:c6:fd:84:20:98:f8:f1:b7:55:6e:1f:f8:
aa:a5:53:fe:c5:fd:54:d8:31:4d:bc:ee:7d:bf:6a:
a4:86:d8:d1:80:7b:eb:f9:d7:d7:80:a0:04:4c:ce:
89:57:1b:04:8d:34:f5:28:bc:b6:cd:97:5b:8b:e0:
52:7f:86:2c:9d:86:41:c8:e1:22:ed:75:e8:77:37:
27:77:29:d3:46:51:e7:92:85:8a:6a:34:e1:ae:d5:
a1:ec:cd:fa:7e:4e:0f:b2:d5:d4:79:2d:c1:e8:fe:
b6:11:62:71:03:b0:59:f4:70:54:5a:75:b3:9b:a6:
d8:5e:5a:11:2b:35:90:f9:de:a1:94:43:32:a1:54:
be:eb:02:7c:3e:51:15:d6:cb:ac:da:8c:aa:55:83:
a3:cb:08:c0:b1:b4:f9:e7:ba:7d:dc:89:b6:71:c2:
a3:dc:fb:38:52:86:08:d6:e0:77:79:b9:14:28:92:
a9:59:7b:f7:2f:d8:1f:2c:00:37:2a:16:b9:1a:1f:
fe:e2:48:a8:d0:2a:f0:94:2b:28:2a:24:af:c4:1e:
fd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F3:5C:64:F1:7C:87:3B:FC:97:0B:98:98:04:0D:2A:29:C0:21:CD
X509v3 Authority Key Identifier:
keyid:7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/7CAD7FBEB62D41BEDEB82049A836E467615886FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.52.0/24
Signature Algorithm: sha256WithRSAEncryption
43:86:06:16:eb:db:64:67:1d:86:56:08:67:4c:0f:87:ae:82:
df:3d:70:a9:9b:b2:dc:67:95:b3:e3:17:d4:8c:1e:70:ca:c3:
56:81:82:24:38:2a:b1:3e:f7:9c:b8:71:df:c0:47:14:3e:35:
55:e1:3c:fe:b0:77:42:13:3d:81:ee:03:d5:07:50:d2:47:52:
69:b4:8b:c1:0b:df:e8:ac:26:06:9c:ff:4d:32:70:3a:8b:cf:
9d:5a:5b:3b:c2:59:2c:df:90:f0:82:4f:43:3b:85:66:7c:94:
fb:15:ec:7b:e8:bd:00:02:67:5e:a1:bf:b5:85:e9:4e:d1:c7:
b1:a4:2f:98:13:7e:cb:4f:d3:68:5e:3b:ff:6a:3e:9f:94:58:
28:68:91:a0:92:10:93:e1:c1:01:e4:45:a2:28:d1:4a:1b:30:
97:fa:4f:44:3c:a1:df:24:2c:9b:a1:ee:0f:ed:75:51:40:4c:
a3:3c:b1:ce:ec:bc:7f:60:66:b2:91:ad:be:d6:3f:21:48:dd:
d5:80:41:a3:13:5a:c8:bd:cd:3a:13:20:ce:7b:06:6f:65:fb:
24:b1:76:7d:6f:7b:6f:d3:c8:82:b9:4f:7f:28:29:ea:45:d5:
7f:12:3d:39:3f:8a:d3:f8:63:b8:3c:f6:9e:20:10:7e:e1:08:
68:5b:9f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 18:22:42 2025 by rpki-client