Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
File: 323830343a386531303a3a2f33322d3332203d3e20323733343030.roa (raw, json)
Hash identifier: C3n72HilBKGoPB3gVqYf/26T/+gJur3NpqbW/i/o1DY=
Subject key identifier: D6:CC:BC:06:08:4C:BA:9E:79:ED:57:3F:E3:D9:B2:38:A9:3A:6F:F5
Certificate issuer: /CN=569BF931593F4C319AE13FDDED528F2CBDC53798
Certificate serial: 56A3AB8857EE450217B2D267CBBCFF4B3C0C9E58
Authority key identifier: 56:9B:F9:31:59:3F:4C:31:9A:E1:3F:DD:ED:52:8F:2C:BD:C5:37:98
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/569BF931593F4C319AE13FDDED528F2CBDC53798.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
Signing time: Tue 04 Feb 2025 20:34:59 +0000
ROA not before: Tue 04 Feb 2025 20:29:59 +0000
ROA not after: Tue 03 Feb 2026 20:34:59 +0000
asID: 273400
IP address blocks: 2804:8e10::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:a3:ab:88:57:ee:45:02:17:b2:d2:67:cb:bc:ff:4b:3c:0c:9e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=569BF931593F4C319AE13FDDED528F2CBDC53798
Validity
Not Before: Feb 4 20:29:59 2025 GMT
Not After : Feb 3 20:34:59 2026 GMT
Subject: CN=D6CCBC06084CBA9E79ED573FE3D9B238A93A6FF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b0:0f:71:b7:77:45:6f:ef:8b:7f:cb:9e:8c:
48:3f:2f:eb:b4:8b:6e:bb:ea:b7:5a:88:30:8d:db:
28:a5:39:98:d8:bf:5e:6b:3f:72:45:63:16:98:c9:
65:46:d2:a2:f8:bc:f5:70:61:6a:af:75:2a:0e:4b:
42:e4:35:97:f7:bf:cd:04:92:e4:fb:07:cc:34:2b:
16:00:c3:43:34:14:e0:8d:30:b9:ba:8a:cc:c5:49:
3c:55:27:44:a5:9d:d6:5f:76:0e:8f:15:6b:c0:88:
3f:cf:71:bf:43:9d:83:78:b0:3a:ed:f9:7c:b0:dc:
9c:83:4f:4a:42:c0:56:13:22:24:9c:ef:e4:1c:e4:
31:29:74:b7:d7:ba:de:9e:f1:13:43:1d:54:87:f4:
5a:cc:73:74:00:88:50:5a:48:0b:83:d0:df:8f:d3:
97:41:17:3d:85:06:8f:e4:66:76:82:34:b3:b6:f9:
03:2c:32:3d:a8:42:e7:a6:f5:3f:21:da:4b:4c:9d:
83:78:dd:e9:7f:9d:cf:15:98:14:e4:e6:16:ac:ee:
da:a1:71:dd:28:7f:af:38:c0:50:c9:0d:7e:81:6a:
34:f5:8e:3f:8d:0c:13:dd:79:e3:62:20:e0:38:be:
dc:c3:b4:92:45:cf:37:80:f1:3a:65:0b:fa:e0:00:
04:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CC:BC:06:08:4C:BA:9E:79:ED:57:3F:E3:D9:B2:38:A9:3A:6F:F5
X509v3 Authority Key Identifier:
keyid:56:9B:F9:31:59:3F:4C:31:9A:E1:3F:DD:ED:52:8F:2C:BD:C5:37:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/569BF931593F4C319AE13FDDED528F2CBDC53798.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/569BF931593F4C319AE13FDDED528F2CBDC53798.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8e10::/32
Signature Algorithm: sha256WithRSAEncryption
02:9d:2b:3e:f9:46:f2:b0:7f:3d:ac:5d:c3:9d:23:a0:1e:17:
5e:36:6d:fd:0d:c2:ec:1c:ad:54:11:0c:e9:02:17:ea:5c:e3:
0c:43:c8:06:2d:f6:16:37:02:b4:e5:9e:7d:a3:53:df:bf:1a:
fe:9a:1e:bb:40:6b:a3:dc:c5:9f:93:f4:24:23:7f:32:09:4b:
7e:68:71:d1:03:96:77:d6:3b:73:90:ad:47:41:7e:1e:ad:ac:
3a:42:69:b6:1d:2d:4a:b8:45:f5:4c:03:48:5a:81:9f:23:0f:
95:b7:cc:20:25:dc:4d:29:f9:4c:22:d7:72:bc:51:b0:28:53:
e7:04:93:2e:39:2d:f2:d8:69:ef:1c:e2:38:98:97:ee:bc:37:
e7:5c:93:e7:bd:95:09:95:b7:c5:76:29:c9:8a:57:35:86:29:
be:7a:9e:7b:95:88:d1:69:da:f1:1d:bd:02:0a:d4:be:8a:a2:
81:ed:05:67:ac:10:88:fd:c8:8d:5b:52:21:dd:8e:6a:e9:67:
48:e2:49:9b:6c:a8:24:5b:ad:da:ee:3c:08:be:b4:8e:da:97:
ae:c4:4a:2f:3b:f5:b4:f3:4d:2d:09:88:16:ae:2c:77:00:38:
89:db:90:fd:62:87:96:d5:16:36:63:4a:84:54:52:e3:17:c8:
16:f4:8b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:32:40 2025 by rpki-client