Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
File: 3137302e3234372e35322e302f32342d3234203d3e203238323730.roa (raw, json)
Hash identifier: RwSKlN1uV4c73vbKL+3oFPyYAHjYQ+FiUtPtkYwVilQ=
Subject key identifier: 84:85:5B:BA:87:BE:5F:3F:36:93:2C:31:4E:1C:B5:FA:B0:1E:05:7A
Certificate issuer: /CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Certificate serial: 5EED35DD2E20EF92C27080923BAA69DE6D8937D2
Authority key identifier: A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
Signing time: Thu 07 Nov 2024 20:40:14 +0000
ROA not before: Thu 07 Nov 2024 20:35:14 +0000
ROA not after: Thu 06 Nov 2025 20:40:14 +0000
asID: 28270
IP address blocks: 170.247.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:ed:35:dd:2e:20:ef:92:c2:70:80:92:3b:aa:69:de:6d:89:37:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Validity
Not Before: Nov 7 20:35:14 2024 GMT
Not After : Nov 6 20:40:14 2025 GMT
Subject: CN=84855BBA87BE5F3F36932C314E1CB5FAB01E057A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:68:4e:20:7f:4b:6c:aa:79:85:18:9f:29:00:
a2:86:66:ea:da:c1:fb:53:45:03:0d:93:90:d6:b3:
3a:da:35:1e:ee:8c:6d:3a:45:a8:0e:5a:4f:9c:bf:
a6:a6:07:55:79:6a:89:88:6b:6e:65:0c:d2:3f:3e:
88:9a:6e:1b:fc:18:10:f9:4b:ed:53:06:8b:f0:ee:
27:85:ca:25:69:08:39:66:6c:36:59:8c:a6:2f:07:
a1:7b:32:e2:b5:2b:95:de:ba:3d:1c:7f:43:81:10:
6d:93:ad:89:c0:37:41:7a:51:7a:d1:5a:36:e1:d2:
e4:88:6a:f7:ad:83:74:6e:50:c7:d8:47:99:82:ad:
64:92:87:c4:2c:fd:73:0f:99:99:c2:d4:9e:fc:58:
9d:eb:b4:21:9a:35:5b:94:15:1b:65:d8:13:23:75:
23:40:56:3d:55:f5:67:f1:c3:62:e5:25:6d:96:1d:
fb:88:83:ce:55:9b:34:f9:22:6d:58:b2:f2:ed:cb:
c9:b9:95:9d:f1:38:39:b5:93:69:49:c2:86:7a:b1:
1d:78:18:f3:8b:02:3c:b2:01:42:a5:1e:3b:ee:bc:
a9:96:60:66:44:14:12:e9:47:ec:de:3c:b0:48:55:
37:06:e0:7b:df:b1:6b:99:8c:22:ca:57:c0:41:09:
41:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:85:5B:BA:87:BE:5F:3F:36:93:2C:31:4E:1C:B5:FA:B0:1E:05:7A
X509v3 Authority Key Identifier:
keyid:A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3137302e3234372e35322e302f32342d3234203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.52.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:cd:c8:f5:b4:63:76:e8:7a:92:68:3b:8a:e5:d7:f8:62:51:
fe:9c:cd:f1:2a:28:79:3d:27:bc:92:84:41:77:a9:82:75:32:
86:18:9c:c4:47:be:11:80:3a:6d:8f:f3:c7:a0:7b:2f:11:5a:
a3:4e:fe:38:97:59:22:2f:87:37:51:0a:92:e3:34:59:7c:51:
8e:5b:c3:48:54:01:53:1c:29:14:c5:00:10:ad:c3:59:9e:f7:
cd:1e:8e:1f:97:10:44:41:f4:d2:bf:f2:d7:50:74:e7:8a:2d:
a5:c1:ca:35:d1:e1:74:cd:93:ff:c8:b7:8f:47:fc:c3:4c:b8:
63:c2:62:c4:0a:40:f9:dc:a3:c9:b5:e1:5e:1f:7f:58:50:c2:
b8:a4:e2:fb:3d:53:9c:90:a6:ba:07:eb:3c:2f:a4:0b:be:70:
7c:87:64:a1:91:98:17:42:82:df:aa:e3:bc:b5:45:b7:97:35:
6d:1f:4b:b1:d2:54:0d:f7:ca:6c:ba:7c:2d:0f:e5:8f:00:be:
57:6b:87:7e:63:bd:c4:07:23:0d:05:c8:85:af:00:08:e2:b5:
34:8b:85:81:b2:75:a9:7c:62:5d:60:12:e6:2f:08:9f:d8:c8:
0f:9b:42:fd:60:2d:42:88:46:12:c2:1d:65:44:53:a3:8d:d5:
d5:46:79:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 23:22:08 2024 by rpki-client on console-ams.rpki-client.org