Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3bc486tcyBavaohWf69oL8BvX2B9ATx5ZPNNTTQp38Rr/0/3230302e3131302e3230342e302f32322d3234203d3e20323730323533.roa
File: 3230302e3131302e3230342e302f32322d3234203d3e20323730323533.roa (raw, json)
Hash identifier: +G+qKxf2FXlBMcuQOT43Gudmcuqnu3ILuUddp1Cd7XE=
Subject key identifier: 01:A1:A2:8A:9A:2F:9B:13:25:24:B3:85:72:C3:B4:32:AA:3E:D9:9F
Certificate issuer: /CN=211F3D420A136AE7395A367C0DC2C730D3B84CBE
Certificate serial: 5347A5CE1E02DE4303944E4E02A66A4CD7D1BCFB
Authority key identifier: 21:1F:3D:42:0A:13:6A:E7:39:5A:36:7C:0D:C2:C7:30:D3:B8:4C:BE
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/211F3D420A136AE7395A367C0DC2C730D3B84CBE.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3bc486tcyBavaohWf69oL8BvX2B9ATx5ZPNNTTQp38Rr/0/3230302e3131302e3230342e302f32322d3234203d3e20323730323533.roa
Signing time: Tue 16 Jul 2024 15:44:19 +0000
ROA not before: Tue 16 Jul 2024 15:39:19 +0000
ROA not after: Tue 15 Jul 2025 15:44:19 +0000
asID: 270253
IP address blocks: 200.110.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:47:a5:ce:1e:02:de:43:03:94:4e:4e:02:a6:6a:4c:d7:d1:bc:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=211F3D420A136AE7395A367C0DC2C730D3B84CBE
Validity
Not Before: Jul 16 15:39:19 2024 GMT
Not After : Jul 15 15:44:19 2025 GMT
Subject: CN=01A1A28A9A2F9B132524B38572C3B432AA3ED99F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:29:7b:7e:62:5d:8e:91:50:32:cd:d8:85:ae:
d4:55:19:89:1b:49:da:ca:47:81:e0:30:4c:ad:f5:
58:cf:0c:74:4d:83:d9:1a:1a:91:40:e0:22:98:ed:
ea:41:d8:7c:81:b6:11:84:4d:47:df:76:8b:42:0a:
e8:2c:27:a6:3e:8a:68:dc:f8:1f:d2:d2:26:cb:df:
27:1b:f4:a4:26:ee:43:86:33:d9:86:ed:25:8d:26:
00:ad:7b:be:7b:fc:51:00:78:59:57:e7:17:93:af:
b4:e3:95:ec:49:91:3e:57:3d:8e:58:0f:63:f0:28:
c7:02:2b:61:03:38:d5:e2:6a:f9:50:fd:bb:5c:a5:
2b:d8:1c:16:90:c2:76:82:88:1b:f7:19:88:ee:d1:
0e:70:d0:ad:2e:eb:2b:59:2d:ec:d5:9e:02:27:76:
e8:6e:88:f1:1f:7f:80:9e:47:24:81:1c:53:a6:47:
20:bd:0c:fe:9e:2b:20:35:a9:ea:39:f3:3b:4a:93:
23:26:2a:25:de:9d:08:ef:ed:c1:15:29:3b:fb:7f:
e1:b1:a7:26:1e:1b:98:30:88:4d:b4:73:96:29:fa:
5c:6b:0f:48:33:d6:76:52:f6:9f:6b:57:86:36:5e:
25:c4:3f:12:28:cd:6a:47:a9:9d:db:59:62:0b:ed:
48:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:A2:8A:9A:2F:9B:13:25:24:B3:85:72:C3:B4:32:AA:3E:D9:9F
X509v3 Authority Key Identifier:
keyid:21:1F:3D:42:0A:13:6A:E7:39:5A:36:7C:0D:C2:C7:30:D3:B8:4C:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3bc486tcyBavaohWf69oL8BvX2B9ATx5ZPNNTTQp38Rr/0/211F3D420A136AE7395A367C0DC2C730D3B84CBE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/211F3D420A136AE7395A367C0DC2C730D3B84CBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3bc486tcyBavaohWf69oL8BvX2B9ATx5ZPNNTTQp38Rr/0/3230302e3131302e3230342e302f32322d3234203d3e20323730323533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.110.204.0/22
Signature Algorithm: sha256WithRSAEncryption
02:eb:cf:1a:3c:58:b5:0f:b1:6b:71:71:69:18:bc:6c:bf:f7:
8f:1a:46:93:7f:2f:86:d3:4b:28:9b:a4:7f:f6:27:97:83:1c:
87:af:91:7c:66:77:2f:9c:13:35:f1:d9:f3:8d:8e:1a:74:9b:
23:62:8b:57:09:a5:bf:67:d1:e7:b7:c3:2a:69:1c:24:9e:85:
f1:01:92:09:d8:f9:02:0b:f6:1e:1e:df:95:24:70:af:10:2e:
49:66:82:da:5e:e9:9f:33:07:75:37:c8:48:0d:05:a6:f8:bd:
b4:6b:ac:79:7d:88:e7:51:1b:a1:4a:34:84:c1:e7:a5:dd:ef:
f5:ea:04:e5:2c:87:01:d2:f7:e1:c2:74:5e:86:f1:1d:d7:41:
d6:38:5c:28:f3:80:0f:5a:cc:49:f9:5e:28:bb:21:ac:02:94:
31:b3:e3:e3:cb:22:c9:5e:1c:1b:54:80:06:14:1e:ea:ce:44:
78:36:b3:e7:98:e3:ac:da:e0:60:0f:10:a9:47:57:02:35:1f:
ad:c8:aa:f2:f4:a3:3a:2f:4c:b1:16:2e:21:18:bd:00:f7:11:
7f:95:2b:72:e9:9f:66:56:4e:20:88:71:2f:9f:4d:62:1a:07:
ba:04:50:53:6e:37:db:1d:48:8f:5e:1b:f7:ad:a9:01:07:e9:
db:26:eb:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:37:32 2025 by rpki-client