Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3230312e3134392e3132302e302f32322d3232203d3e203238323730.roa
File: 3230312e3134392e3132302e302f32322d3232203d3e203238323730.roa (raw, json)
Hash identifier: OEOZVST22Ph/0Nw5Ody5DP/MUEs84VQrrfzVrBIj6EY=
Subject key identifier: E1:06:31:15:C6:23:12:EF:6A:94:B1:F2:DE:88:16:75:A8:65:2E:90
Certificate issuer: /CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Certificate serial: 280DEEF927D103FFA91E20C3A2B3AA3665AA1340
Authority key identifier: A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3230312e3134392e3132302e302f32322d3232203d3e203238323730.roa
Signing time: Thu 07 Nov 2024 20:40:15 +0000
ROA not before: Thu 07 Nov 2024 20:35:15 +0000
ROA not after: Thu 06 Nov 2025 20:40:15 +0000
asID: 28270
IP address blocks: 201.149.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:0d:ee:f9:27:d1:03:ff:a9:1e:20:c3:a2:b3:aa:36:65:aa:13:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C
Validity
Not Before: Nov 7 20:35:15 2024 GMT
Not After : Nov 6 20:40:15 2025 GMT
Subject: CN=E1063115C62312EF6A94B1F2DE881675A8652E90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:43:60:28:a7:41:03:d0:42:57:71:b8:2a:a0:
27:27:4c:3b:ee:f0:a7:fd:41:4b:53:69:61:5e:90:
a6:0a:b1:17:d4:6a:f9:3c:3c:e7:6b:9f:e2:17:8c:
bb:56:74:3c:97:62:e8:56:a1:6c:d4:e6:4d:f2:2e:
8f:2a:c8:7c:05:d1:f4:6a:2f:f5:a3:1e:24:2d:56:
d9:7f:0a:e3:e6:5a:c0:9d:45:8b:b6:05:39:f4:7d:
5e:80:84:56:4a:8e:76:1e:d8:a1:a6:30:fc:40:dd:
d5:b6:02:6e:6c:0d:17:36:69:ec:2e:3f:56:8d:c8:
a7:0d:d8:9d:a7:06:42:a6:13:a6:6b:cc:19:e8:1f:
4f:0a:af:2f:11:08:02:79:94:15:2f:c7:ff:76:6f:
06:a3:a5:2b:2b:2f:84:3d:04:f3:f2:3b:06:72:1f:
d8:8e:85:ef:09:c2:18:75:f8:fe:78:90:a8:64:85:
b7:76:e2:30:6b:e2:a0:db:bc:33:a1:69:92:98:1c:
92:4f:8e:c8:ec:dc:bc:70:d9:cd:69:f9:1e:d4:6d:
f7:45:a9:1c:7f:46:c2:c9:e7:65:7d:4a:42:da:41:
ae:29:f6:b1:64:2f:39:76:e9:e7:e4:83:f2:1d:df:
49:20:1c:32:d0:42:c2:43:11:7a:7a:14:92:79:ad:
2e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:06:31:15:C6:23:12:EF:6A:94:B1:F2:DE:88:16:75:A8:65:2E:90
X509v3 Authority Key Identifier:
keyid:A8:F9:9C:2E:E0:BA:1D:37:CC:7A:BE:7C:50:89:84:BA:A0:B0:8D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8F99C2EE0BA1D37CC7ABE7C508984BAA0B08D5C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3230312e3134392e3132302e302f32322d3232203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.149.120.0/22
Signature Algorithm: sha256WithRSAEncryption
56:15:60:44:59:f3:59:b2:ae:4d:5c:dd:85:58:bd:dd:2f:93:
95:1f:9e:8b:cb:f7:26:71:9f:bd:77:05:50:b3:a3:12:72:ef:
52:2c:cc:5e:7e:85:a8:d1:13:e6:21:a5:63:db:9d:ff:30:51:
be:19:5e:52:cc:eb:02:17:11:05:9e:55:84:dd:d2:3f:27:51:
46:23:f1:ad:4a:df:81:37:fd:85:be:5b:1e:eb:00:3d:b4:0c:
09:ad:e0:62:e3:11:02:ab:b3:1b:62:93:f3:10:ee:21:c4:00:
94:a9:f4:05:81:4b:94:d7:6d:60:bb:d0:c9:36:c5:10:74:d1:
4b:c8:b3:5c:5c:b0:5d:dd:66:ba:cd:0a:f7:e2:d3:ba:a4:11:
da:63:89:6c:7e:9b:c9:4e:6e:ee:af:b0:e9:2f:84:e9:42:0c:
e9:39:2a:b5:81:fb:71:13:63:34:a4:59:2f:f0:ef:b6:c8:34:
e5:21:dc:93:6a:68:a8:94:39:1f:42:88:68:b1:fa:e1:87:2a:
82:cb:24:dc:b5:28:f7:be:26:81:14:7c:1e:bf:e9:21:72:43:
e7:ab:db:9b:8a:a8:72:04:d7:b4:c2:9c:d5:20:78:dc:a7:3b:
fe:74:5a:85:8b:b5:a5:08:ea:06:79:52:49:62:81:99:fa:d0:
c9:d6:60:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 23:22:08 2024 by rpki-client on console-ams.rpki-client.org