Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/0/3137302e38302e302e302f32322d3232203d3e20323633363237.roa
File: 3137302e38302e302e302f32322d3232203d3e20323633363237.roa (raw, json)
Hash identifier: ZFh/mfAs7fGHn+HUjhY6TllzxnfuSH0HwScdtUfBSbg=
Subject key identifier: 8F:CD:38:63:67:99:D2:35:B9:81:72:BD:07:CF:E7:F1:9D:18:86:B7
Certificate issuer: /CN=11A01506231611C87461442475B1401AD5DE38D2
Certificate serial: 10D54A0C1FB92130CF3AF471650B43DDBBF3382A
Authority key identifier: 11:A0:15:06:23:16:11:C8:74:61:44:24:75:B1:40:1A:D5:DE:38:D2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11A01506231611C87461442475B1401AD5DE38D2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/0/3137302e38302e302e302f32322d3232203d3e20323633363237.roa
Signing time: Tue 25 Mar 2025 20:13:32 +0000
ROA not before: Tue 25 Mar 2025 20:08:32 +0000
ROA not after: Tue 24 Mar 2026 20:13:32 +0000
asID: 263627
IP address blocks: 170.80.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d5:4a:0c:1f:b9:21:30:cf:3a:f4:71:65:0b:43:dd:bb:f3:38:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11A01506231611C87461442475B1401AD5DE38D2
Validity
Not Before: Mar 25 20:08:32 2025 GMT
Not After : Mar 24 20:13:32 2026 GMT
Subject: CN=8FCD38636799D235B98172BD07CFE7F19D1886B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:23:66:64:15:30:d5:bf:dc:b3:c7:05:8a:0e:
13:94:8a:a2:20:77:ba:f7:e7:b8:9b:02:4e:05:e7:
31:77:d4:4d:c1:e9:10:1e:69:1d:43:fe:d8:1f:31:
00:4d:69:61:c4:36:57:e9:19:71:6d:6d:95:68:65:
4f:5b:84:e4:c7:b4:a4:e9:25:60:47:a4:d5:9d:d8:
66:9a:9c:d1:8a:4d:ba:de:c6:4d:bf:b6:4e:a2:65:
32:64:5e:d6:50:ae:8b:c3:da:18:b1:8a:8c:4c:32:
e7:b8:4c:ec:42:7e:5b:6e:45:12:92:70:8a:bc:a0:
fa:97:fc:24:36:63:3f:f1:de:41:3b:1c:b9:3e:1f:
d7:e5:35:3a:14:7a:73:02:c7:f6:a1:15:59:a5:8b:
71:7b:43:f8:8e:59:d8:41:d2:5b:86:32:aa:ef:d2:
df:cf:be:bf:20:0a:f2:dc:30:ce:64:0b:45:b8:c4:
99:90:05:12:88:75:81:f2:df:79:c5:3f:94:4d:4e:
86:d5:75:7f:30:0a:73:98:2b:9f:fc:36:70:fc:20:
c6:36:bf:d3:38:de:18:4f:67:38:ed:2b:d4:98:57:
02:28:30:2a:c8:aa:d7:ac:bf:7b:61:c1:0f:b5:49:
c4:2b:ed:84:e7:12:b8:b9:88:d3:f4:90:0b:b3:67:
23:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:CD:38:63:67:99:D2:35:B9:81:72:BD:07:CF:E7:F1:9D:18:86:B7
X509v3 Authority Key Identifier:
keyid:11:A0:15:06:23:16:11:C8:74:61:44:24:75:B1:40:1A:D5:DE:38:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/0/11A01506231611C87461442475B1401AD5DE38D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11A01506231611C87461442475B1401AD5DE38D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3yjGaXpjhPnDEXhRq8h8dQT8u3qbvCzjSmTVv3xTLzWi/0/3137302e38302e302e302f32322d3232203d3e20323633363237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.80.0.0/22
Signature Algorithm: sha256WithRSAEncryption
88:13:92:98:f7:9a:e7:7c:92:bf:41:bd:dd:95:74:c5:0c:c6:
da:f3:52:c2:4f:1f:11:6a:c7:f5:db:ba:0d:0c:97:be:39:27:
57:e3:0c:db:ec:d8:d5:b7:18:57:2d:9f:10:39:10:35:5b:c1:
e2:89:5c:00:fe:64:12:ea:f8:9f:4f:20:6b:8c:ee:a6:51:d4:
a0:22:81:c7:cd:10:6c:f2:8b:1e:eb:23:b5:28:c2:b1:7c:bb:
14:dc:1e:d5:0c:c8:80:88:a1:63:d6:05:38:97:da:58:fb:95:
2f:f1:a7:19:22:32:1a:0c:25:b4:0d:7e:1d:97:05:4f:84:a3:
ea:3c:89:fe:cb:d8:43:fb:34:2c:19:e1:fa:1c:bb:73:b8:1d:
83:92:56:e0:ef:62:a4:7c:df:ee:1b:92:c8:49:78:15:2f:48:
7f:ba:40:d8:c5:1f:d5:c0:52:4d:6b:71:f0:94:af:ec:f5:b5:
27:36:e2:94:3b:13:d8:b0:b5:0a:19:c5:7c:d6:47:68:70:d7:
80:19:e8:f0:8c:c3:ff:cb:e9:3f:8a:12:1e:dc:fe:67:a5:20:
5a:77:37:a8:15:66:9b:5d:0d:4f:19:b6:56:0c:1c:cc:ba:74:
fc:0f:41:ef:44:51:2a:5d:72:1d:c1:9a:c1:25:d4:f9:9f:3e:
33:66:01:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:13:33 2025 by rpki-client