Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/1/3134332e3133372e34332e302f32342d3234203d3e20323634303330.roa
File: 3134332e3133372e34332e302f32342d3234203d3e20323634303330.roa (raw, json)
Hash identifier: obzGQwGLkG2yyQ/ppKnvEIG68o/AJh7l9SY8hOQNFT8=
Subject key identifier: D6:3D:21:14:26:80:8A:82:CC:6A:96:49:8B:FC:97:E8:CA:B9:68:72
Certificate issuer: /CN=972925A57A172EFE7255E798517DAC0C695452AC
Certificate serial: 1DF02209E6EB870D11CA32A0E3D08F3691F3F699
Authority key identifier: 97:29:25:A5:7A:17:2E:FE:72:55:E7:98:51:7D:AC:0C:69:54:52:AC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/972925A57A172EFE7255E798517DAC0C695452AC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/1/3134332e3133372e34332e302f32342d3234203d3e20323634303330.roa
Signing time: Thu 04 Apr 2024 19:23:19 +0000
ROA not before: Thu 04 Apr 2024 19:18:19 +0000
ROA not after: Thu 03 Apr 2025 19:23:19 +0000
asID: 264030
IP address blocks: 143.137.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:f0:22:09:e6:eb:87:0d:11:ca:32:a0:e3:d0:8f:36:91:f3:f6:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=972925A57A172EFE7255E798517DAC0C695452AC
Validity
Not Before: Apr 4 19:18:19 2024 GMT
Not After : Apr 3 19:23:19 2025 GMT
Subject: CN=D63D211426808A82CC6A96498BFC97E8CAB96872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:8f:fc:03:f2:85:93:10:65:36:d2:f6:4d:
f1:5a:35:86:30:55:94:6c:1b:72:fa:b1:fa:ac:6c:
18:30:89:1d:eb:97:b5:39:81:66:e7:bf:0b:0d:5c:
0d:d5:96:0f:d5:95:7f:52:75:29:4a:82:81:18:bd:
1c:2d:86:3c:b6:f7:0e:84:ab:01:5c:7b:c1:d3:92:
ec:6d:69:2b:54:be:64:7e:0d:19:b5:4a:88:13:02:
0c:61:0c:88:85:1f:3a:2f:42:07:b5:07:a9:ef:f5:
e7:f4:7f:77:d8:e2:28:fd:73:29:94:07:bc:cf:93:
d1:bb:83:f1:5b:c7:19:a4:89:df:44:b0:f6:6c:e8:
1a:bb:c2:e4:44:f2:2d:d9:3c:3e:a6:f2:b4:f6:c8:
dd:a5:55:42:f2:b1:9a:34:cd:60:04:c8:f6:fd:cf:
5e:95:0f:28:7d:e9:60:4d:3d:1b:36:db:d5:76:40:
73:10:5e:b8:9b:77:e3:ab:55:3a:4c:3c:d2:8a:ef:
cb:5f:12:e5:3a:9f:f4:69:5e:fc:47:d6:c2:d6:9e:
1f:9d:22:e3:c9:0d:f6:45:8e:aa:b2:b7:1f:6c:ac:
e1:3d:e0:59:ed:94:e8:40:ea:3b:ed:75:4c:2b:45:
80:a0:b6:5e:92:04:be:a5:8a:24:08:a1:c5:a3:30:
54:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3D:21:14:26:80:8A:82:CC:6A:96:49:8B:FC:97:E8:CA:B9:68:72
X509v3 Authority Key Identifier:
keyid:97:29:25:A5:7A:17:2E:FE:72:55:E7:98:51:7D:AC:0C:69:54:52:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/1/972925A57A172EFE7255E798517DAC0C695452AC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/972925A57A172EFE7255E798517DAC0C695452AC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3xD2BY2ZffMwD5god8DAU2GRfp3WsgJLTGNcZJZUefCV/1/3134332e3133372e34332e302f32342d3234203d3e20323634303330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.137.43.0/24
Signature Algorithm: sha256WithRSAEncryption
58:a9:07:4f:f4:cc:a5:a3:da:63:6f:a2:69:09:88:77:4f:7d:
c3:d4:d2:f9:a1:c6:13:7e:d9:55:9e:28:4f:ab:be:98:5d:0c:
96:b1:10:df:57:e8:7e:60:7e:9a:90:3b:68:86:50:6e:3e:a7:
45:8c:f5:9e:94:b0:6c:07:3b:7e:ff:a2:0e:65:84:2b:b6:fb:
b7:76:4a:7e:3e:1e:cb:ee:45:80:b5:50:c7:68:f6:12:ff:82:
20:39:46:ba:94:f1:65:f8:60:7d:a1:36:e5:b3:10:53:ec:d7:
69:18:d9:48:ce:27:55:b1:19:57:1a:b1:40:d1:c1:ba:6b:dd:
95:96:2d:52:83:33:5f:d2:e5:fd:88:11:03:3a:57:e8:d0:47:
41:d0:ad:27:63:26:df:10:53:20:ed:c6:4c:28:17:f4:78:fb:
5f:04:0b:86:bf:3e:d5:5a:df:4d:a3:53:ca:0c:8b:a9:b7:93:
3e:69:11:ee:79:df:14:c1:50:d4:5a:5b:5f:b8:ad:21:ed:95:
10:0a:bf:c7:f9:d5:8b:04:95:e6:ca:c0:15:ff:04:2d:b3:5a:
83:33:d4:c8:dd:4c:3d:65:a3:c3:2e:fc:e1:c0:a8:63:58:b6:
ee:2d:57:02:e5:1d:3f:c8:c0:d0:52:56:f5:96:a2:cf:b3:61:
93:14:e5:a2
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUHfAiCebrhw0RyjKg49CPNpHz9pkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTcyOTI1QTU3QTE3MkVGRTcyNTVFNzk4NTE3REFDMEM2
OTU0NTJBQzAeFw0yNDA0MDQxOTE4MTlaFw0yNTA0MDMxOTIzMTlaMDMxMTAvBgNV
BAMTKEQ2M0QyMTE0MjY4MDhBODJDQzZBOTY0OThCRkM5N0U4Q0FCOTY4NzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQiY/8A/KFkxBlNtL2TfFaNYYw
VZRsG3L6sfqsbBgwiR3rl7U5gWbnvwsNXA3Vlg/VlX9SdSlKgoEYvRwthjy29w6E
qwFce8HTkuxtaStUvmR+DRm1SogTAgxhDIiFHzovQge1B6nv9ef0f3fY4ij9cymU
B7zPk9G7g/Fbxxmkid9EsPZs6Bq7wuRE8i3ZPD6m8rT2yN2lVULysZo0zWAEyPb9
z16VDyh96WBNPRs229V2QHMQXribd+OrVTpMPNKK78tfEuU6n/RpXvxH1sLWnh+d
IuPJDfZFjqqytx9srOE94FntlOhA6jvtdUwrRYCgtl6SBL6liiQIocWjMFQvAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQU1j0hFCaAioLMapZJi/yX6Mq5aHIwHwYDVR0j
BBgwFoAUlyklpXoXLv5yVeeYUX2sDGlUUqwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM3hEMkJZMlpmZk13RDVnb2Q4REFVMkdSZnAzV3NnSkxUR05jWkpaVWVm
Q1YvMS85NzI5MjVBNTdBMTcyRUZFNzI1NUU3OTg1MTdEQUMwQzY5NTQ1MkFDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk3MjkyNUE1N0ExNzJFRkU3
MjU1RTc5ODUxN0RBQzBDNjk1NDUyQUMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzN4RDJCWTJaZmZNd0Q1Z29kOERBVTJHUmZwM1dzZ0pMVEdOY1pKWlVlZkNWLzEv
MzEzNDMzMmUzMTMzMzcyZTM0MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2
MzQzMDMzMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBACPiSswDQYJKoZIhvcNAQELBQADggEBAFipB0/0
zKWj2mNvomkJiHdPfcPU0vmhxhN+2VWeKE+rvphdDJaxEN9X6H5gfpqQO2iGUG4+
p0WM9Z6UsGwHO37/og5lhCu2+7d2Sn4+HsvuRYC1UMdo9hL/giA5RrqU8WX4YH2h
NuWzEFPs12kY2UjOJ1WxGVcasUDRwbpr3ZWWLVKDM1/S5f2IEQM6V+jQR0HQrSdj
Jt8QUyDtxkwoF/R4+18EC4a/PtVa302jU8oMi6m3kz5pEe553xTBUNRaW1+4rSHt
lRAKv8f51YsElebKwBX/BC2zWoMz1MjdTD1lo8Mu/OHAqGNYtu4tVwLlHT/IwNBS
VvWWos+zYZMU5aI=
-----END CERTIFICATE-----
Generated at Thu Apr 10 04:41:59 2025 by rpki-client