Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3133382e302e3139322e302f32322d3234203d3e203238313331.roa
File: 3133382e302e3139322e302f32322d3234203d3e203238313331.roa (raw, json)
Hash identifier: MWVxqT61yiEzzjMFTCposX7gtE+sEQ7wd0IdrYcsZ9Q=
Subject key identifier: CA:52:DF:A6:29:72:1D:67:66:44:69:F3:73:57:24:EE:69:B1:14:47
Certificate issuer: /CN=03981ED1B457034CCBAC00F384454B3A021E294E
Certificate serial: 636C311507A187926760A99F83B9605138D5D35B
Authority key identifier: 03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3133382e302e3139322e302f32322d3234203d3e203238313331.roa
Signing time: Thu 06 Mar 2025 03:55:53 +0000
ROA not before: Thu 06 Mar 2025 03:50:53 +0000
ROA not after: Thu 05 Mar 2026 03:55:53 +0000
asID: 28131
IP address blocks: 138.0.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:6c:31:15:07:a1:87:92:67:60:a9:9f:83:b9:60:51:38:d5:d3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03981ED1B457034CCBAC00F384454B3A021E294E
Validity
Not Before: Mar 6 03:50:53 2025 GMT
Not After : Mar 5 03:55:53 2026 GMT
Subject: CN=CA52DFA629721D67664469F3735724EE69B11447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1e:91:f9:d9:9a:ed:39:db:74:cf:a1:be:e0:
b0:1c:d4:a3:fa:f0:3e:2e:10:81:e2:84:94:45:ac:
58:4c:39:fe:d4:f2:e2:3c:b5:27:bb:65:92:23:fc:
ec:71:6d:0b:a8:17:3f:55:e1:22:ef:a6:cd:5b:2b:
de:78:73:79:c1:f3:0c:c6:a9:87:f3:fe:84:29:e0:
aa:92:b9:87:5c:6c:87:60:b9:95:9c:d4:ea:8a:ed:
fe:d7:68:2e:5d:4d:22:58:f8:1e:e0:3b:7d:0e:ff:
b0:22:aa:27:b6:36:10:77:1f:c2:ab:46:18:a5:4f:
da:3c:f8:90:6a:64:88:d2:24:dc:ca:49:22:ef:c3:
9f:70:6a:57:b3:f2:e5:7f:fc:9d:a3:22:dc:bb:47:
c4:37:a8:eb:6a:59:ef:82:21:d0:9e:85:94:2a:56:
f4:d6:35:36:6c:6a:d4:e7:1f:4b:82:64:80:4b:e4:
b4:f0:b7:cb:68:43:e9:26:a4:82:81:80:de:cb:e1:
b2:96:1d:4f:6b:01:92:ee:83:0d:e4:cb:4a:1a:72:
5d:48:00:c3:82:bf:82:b6:ef:32:09:7d:6b:aa:b4:
53:40:fb:f7:22:c1:d2:cc:13:96:be:3e:43:a8:fa:
56:c4:01:19:08:a8:3b:1c:b4:71:12:12:0a:7b:e9:
dc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:52:DF:A6:29:72:1D:67:66:44:69:F3:73:57:24:EE:69:B1:14:47
X509v3 Authority Key Identifier:
keyid:03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3133382e302e3139322e302f32322d3234203d3e203238313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.0.192.0/22
Signature Algorithm: sha256WithRSAEncryption
76:58:09:1d:bb:bb:3a:fd:4f:cf:e8:f8:88:72:a3:1a:35:d9:
39:1f:e4:91:79:82:a7:6f:27:10:a5:6a:35:89:5d:d5:3b:71:
b2:a0:55:12:5b:52:5d:27:a9:c9:75:9c:ed:51:11:55:f9:b1:
0f:e1:4e:9c:75:2d:f7:1c:34:28:61:1b:33:c4:63:9f:26:cc:
98:4a:11:f2:7f:6a:4b:11:e5:5a:9c:47:bc:0c:42:5e:2f:1a:
0a:4e:c0:bd:24:6f:d4:85:c5:07:39:67:eb:13:a6:3a:2b:f6:
ea:47:ec:3e:91:46:f4:de:2f:fb:61:3a:c1:b2:1e:d7:93:5a:
97:74:59:23:88:d8:7c:6d:11:aa:0b:55:1d:27:3d:0f:99:bf:
04:84:64:bf:66:1e:34:ec:c7:63:98:63:b0:51:d0:8a:41:c5:
06:98:09:34:ce:20:db:ab:77:6d:81:4c:e9:07:1d:d5:5d:c6:
6d:d4:17:4e:b4:30:75:07:01:ff:6f:86:2d:61:55:71:a9:42:
61:b8:37:b9:b9:a2:ce:35:1d:1a:5c:5a:db:97:7a:0c:b5:db:
f6:a3:b2:13:12:37:ed:6e:5d:c2:9f:95:fc:ec:be:61:1a:db:
dd:cc:e6:2e:18:b5:68:66:d0:2a:d4:12:b2:64:8c:c7:34:6d:
2d:45:4c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:18:16 2025 by rpki-client