Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
File: 3138392e35302e3134342e302f32302d3230203d3e203238323730.roa (raw, json)
Hash identifier: n2lbhhGRF22Y/sNGMosTj7nb77L8NEh0Tkdu3daV4mU=
Subject key identifier: 99:1C:B1:8E:CF:7E:CB:79:21:CC:92:58:C3:4A:E1:FB:55:CE:6E:35
Certificate issuer: /CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Certificate serial: 611E45A0810022920ECA8D84BD85D342FA2A1ADB
Authority key identifier: A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
Signing time: Thu 07 Nov 2024 20:40:12 +0000
ROA not before: Thu 07 Nov 2024 20:35:12 +0000
ROA not after: Thu 06 Nov 2025 20:40:12 +0000
asID: 28270
IP address blocks: 189.50.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:1e:45:a0:81:00:22:92:0e:ca:8d:84:bd:85:d3:42:fa:2a:1a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Validity
Not Before: Nov 7 20:35:12 2024 GMT
Not After : Nov 6 20:40:12 2025 GMT
Subject: CN=991CB18ECF7ECB7921CC9258C34AE1FB55CE6E35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:0d:38:52:46:b8:3a:2d:0b:1e:c7:4a:c9:d6:
a9:fe:01:d0:f4:7d:89:60:98:36:92:38:1e:ee:f2:
ae:84:60:49:0c:1d:e0:af:b9:3f:a1:24:08:2b:fd:
29:5e:5f:45:b1:21:a1:ca:e7:0c:c8:f8:fc:40:1a:
f9:52:56:ab:33:47:34:aa:c5:6f:1a:0d:6f:88:e5:
f5:c0:dd:5c:a4:1f:40:0c:9c:f5:16:7c:9d:18:54:
4c:07:99:cc:00:de:aa:56:1b:86:3f:98:f1:47:6d:
72:18:f5:81:bd:ca:08:07:d0:83:72:4d:dd:4b:45:
bb:92:d4:b7:fb:9f:5e:49:6a:6a:2b:6f:bb:57:a6:
ea:84:aa:f6:63:4f:9c:4d:36:f5:36:a8:bd:14:b5:
e7:4e:68:22:a5:8a:06:71:34:e6:cb:ec:70:72:49:
35:15:e8:1e:3c:89:95:ae:77:d0:14:ae:cc:89:08:
4f:98:d1:4a:c5:c0:2e:40:65:56:00:a0:4e:a0:8b:
4a:a1:5e:bb:51:ca:56:ba:cf:ca:e1:ac:f0:c6:f6:
75:be:ac:16:d8:bc:41:82:22:de:69:65:54:6a:bf:
6b:96:a2:64:88:da:06:e4:d3:21:8a:ff:83:ab:0d:
84:84:46:29:1d:03:94:14:94:19:40:ff:32:0f:42:
1d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1C:B1:8E:CF:7E:CB:79:21:CC:92:58:C3:4A:E1:FB:55:CE:6E:35
X509v3 Authority Key Identifier:
keyid:A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.50.144.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:aa:06:50:2f:9b:cd:a4:a9:34:64:ed:2b:25:1b:81:a7:e3:
23:52:b1:2e:18:b3:c0:66:9b:e1:57:9b:39:e1:3b:53:2d:58:
b5:2e:4a:e9:c1:bb:8d:56:88:e0:ee:14:ed:89:6b:d1:7c:53:
9c:dd:5a:20:00:b5:02:b3:01:8a:77:a9:e2:7e:90:fc:44:3b:
e2:61:70:79:7b:7a:19:74:dd:7d:71:f4:2c:a1:df:06:5f:b1:
cb:1e:eb:64:73:b9:8a:30:4f:b6:c9:42:44:bd:be:95:55:70:
78:f8:0d:e7:7c:46:ec:a6:ca:45:32:cc:86:05:00:02:58:87:
db:f5:57:75:e5:4e:ce:47:a6:86:9f:f6:ae:3f:bc:31:cf:bb:
62:7a:fc:a8:ea:5e:eb:fd:c3:dd:f0:64:15:fc:27:04:7b:02:
55:c5:17:1b:1c:fe:89:4c:0a:3b:f4:bb:75:7a:8d:f6:71:b9:
86:24:b3:d4:4a:c0:da:8b:e8:ff:ac:7d:72:d6:1c:3b:e1:77:
62:9b:4a:1b:6d:3e:e7:2f:7e:a3:2a:4e:80:af:b2:dc:44:13:
aa:a7:45:67:1a:44:78:48:87:91:f9:c1:58:30:3d:a6:f7:64:
fc:02:4a:c7:c7:d8:70:1a:19:6d:98:57:65:95:e6:aa:df:dc:
73:2d:dd:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:25:22 2025 by rpki-client