Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3136372e3234392e3131322e302f32322d3234203d3e203238313331.roa
File: 3136372e3234392e3131322e302f32322d3234203d3e203238313331.roa (raw, json)
Hash identifier: 1e1SPcAYyTs/4zRRsl9Nm8a/dhbju6PGdFzy/xxo8BU=
Subject key identifier: 7A:46:09:49:46:E8:9F:6A:07:0A:F5:9E:92:78:BF:1D:0E:DE:EC:25
Certificate issuer: /CN=03981ED1B457034CCBAC00F384454B3A021E294E
Certificate serial: 13EC5F5C783001617749CD7FF5F883C9D233C2FD
Authority key identifier: 03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3136372e3234392e3131322e302f32322d3234203d3e203238313331.roa
Signing time: Thu 06 Mar 2025 03:55:53 +0000
ROA not before: Thu 06 Mar 2025 03:50:53 +0000
ROA not after: Thu 05 Mar 2026 03:55:53 +0000
asID: 28131
IP address blocks: 167.249.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:ec:5f:5c:78:30:01:61:77:49:cd:7f:f5:f8:83:c9:d2:33:c2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03981ED1B457034CCBAC00F384454B3A021E294E
Validity
Not Before: Mar 6 03:50:53 2025 GMT
Not After : Mar 5 03:55:53 2026 GMT
Subject: CN=7A46094946E89F6A070AF59E9278BF1D0EDEEC25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:95:83:8e:57:d7:21:00:83:12:99:65:2b:
43:5a:e7:45:e3:27:45:4a:c0:15:95:7a:37:93:0c:
8c:23:bc:39:c2:dc:6d:18:f6:2f:9d:22:99:59:86:
2e:65:3d:58:4d:7b:db:77:f8:75:24:e8:63:f1:b8:
f0:b1:4c:86:9c:63:60:19:24:72:40:66:1f:00:2e:
e5:bb:5e:bf:84:a2:b6:92:0e:e9:4d:99:a4:37:ec:
61:c4:38:0f:6f:a4:b6:1c:cb:f4:59:d4:bd:fd:32:
d5:3d:5c:f6:23:76:63:30:05:80:60:3e:00:e3:e3:
a2:74:4b:7f:7a:de:60:d4:53:f5:04:e4:d2:4f:f1:
9d:10:cd:64:65:c1:ac:ec:cd:54:34:2a:23:11:09:
85:be:ea:cd:ca:f5:ac:96:de:7c:b2:82:3c:42:20:
86:c9:6c:f0:58:db:46:cb:65:f5:ff:b0:0c:af:23:
a6:82:e0:c1:d1:fa:24:1b:50:2d:dc:f1:44:56:e3:
bd:b8:0d:54:d2:44:59:b6:3e:25:8e:63:75:fd:73:
14:54:24:01:0a:68:51:4b:3a:61:0d:be:4c:57:b0:
a9:41:4a:f8:c0:e5:a8:02:91:18:64:a6:15:14:70:
82:18:02:1d:6b:4d:9b:75:40:66:8a:87:2b:82:3d:
5e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:46:09:49:46:E8:9F:6A:07:0A:F5:9E:92:78:BF:1D:0E:DE:EC:25
X509v3 Authority Key Identifier:
keyid:03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3136372e3234392e3131322e302f32322d3234203d3e203238313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.112.0/22
Signature Algorithm: sha256WithRSAEncryption
be:04:26:fa:98:3d:f4:58:cd:26:de:da:3c:86:60:b0:c1:4f:
f6:b3:e3:f1:85:99:61:a6:c9:36:4d:b0:6f:f5:62:b3:b7:47:
9d:c5:42:c5:05:1d:7e:d9:0c:c4:26:97:a8:1a:5e:c3:fe:dc:
6d:2a:a7:18:34:56:5d:f9:e8:fb:61:1d:32:5e:91:0a:8b:c8:
cd:40:79:74:5d:51:06:b8:8f:99:c9:7b:30:9d:94:3e:2f:7c:
7c:4c:25:7f:78:08:91:bf:1c:76:b7:89:df:e2:de:b4:dd:4b:
3e:2b:c1:25:7a:c7:52:6d:f0:20:2d:64:f3:9a:71:93:53:a8:
62:ba:c5:8e:74:ab:df:7f:db:6d:68:42:7b:16:aa:14:46:74:
cd:1b:7e:7b:00:1f:44:59:fd:1a:bc:2b:b0:2a:de:1e:3e:45:
82:f4:59:bd:26:3f:04:4f:dd:a2:ec:2f:a4:7e:b5:16:12:c9:
c4:b6:d4:36:88:be:82:d2:61:a6:41:c3:11:cb:8e:10:fe:ec:
64:73:7a:9e:5c:74:64:6b:a2:7c:4a:b6:52:fd:ba:37:b9:04:
e7:58:fa:1a:bf:2f:b6:43:1e:d5:da:28:22:52:f5:ce:6b:7e:
7c:1b:48:95:21:2f:36:ee:8d:9b:e9:f9:d4:07:52:cf:f1:7a:
e6:24:11:88
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUE+xfXHgwAWF3Sc1/9fiDydIzwv0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDM5ODFFRDFCNDU3MDM0Q0NCQUMwMEYzODQ0NTRCM0Ew
MjFFMjk0RTAeFw0yNTAzMDYwMzUwNTNaFw0yNjAzMDUwMzU1NTNaMDMxMTAvBgNV
BAMTKDdBNDYwOTQ5NDZFODlGNkEwNzBBRjU5RTkyNzhCRjFEMEVERUVDMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpjZWDjlfXIQCDEpllK0Na50Xj
J0VKwBWVejeTDIwjvDnC3G0Y9i+dIplZhi5lPVhNe9t3+HUk6GPxuPCxTIacY2AZ
JHJAZh8ALuW7Xr+EoraSDulNmaQ37GHEOA9vpLYcy/RZ1L39MtU9XPYjdmMwBYBg
PgDj46J0S3963mDUU/UE5NJP8Z0QzWRlwazszVQ0KiMRCYW+6s3K9ayW3nyygjxC
IIbJbPBY20bLZfX/sAyvI6aC4MHR+iQbUC3c8URW4724DVTSRFm2PiWOY3X9cxRU
JAEKaFFLOmENvkxXsKlBSvjA5agCkRhkphUUcIIYAh1rTZt1QGaKhyuCPV77AgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUekYJSUbon2oHCvWekni/HQ7e7CUwHwYDVR0j
BBgwFoAUA5ge0bRXA0zLrADzhEVLOgIeKU4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNDJrRVF0OEdXR1laa1pKcktEZFpDNmdQemtOOUU4RnRjVGJEOTNnem1Q
RFgvMS8wMzk4MUVEMUI0NTcwMzRDQ0JBQzAwRjM4NDQ1NEIzQTAyMUUyOTRFLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAzOTgxRUQxQjQ1NzAzNEND
QkFDMDBGMzg0NDU0QjNBMDIxRTI5NEUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzQya0VRdDhHV0dZWmtaSnJLRGRaQzZnUHprTjlFOEZ0Y1RiRDkzZ3ptUERYLzEv
MzEzNjM3MmUzMjM0MzkyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy
MzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAKn+XAwDQYJKoZIhvcNAQELBQADggEBAL4EJvqY
PfRYzSbe2jyGYLDBT/az4/GFmWGmyTZNsG/1YrO3R53FQsUFHX7ZDMQml6gaXsP+
3G0qpxg0Vl356PthHTJekQqLyM1AeXRdUQa4j5nJezCdlD4vfHxMJX94CJG/HHa3
id/i3rTdSz4rwSV6x1Jt8CAtZPOacZNTqGK6xY50q99/221oQnsWqhRGdM0bfnsA
H0RZ/Rq8K7Aq3h4+RYL0Wb0mPwRP3aLsL6R+tRYSycS21DaIvoLSYaZBwxHLjhD+
7GRzep5cdGRronxKtlL9uje5BOdY+hq/L7ZDHtXaKCJS9c5rfnwbSJUhLzbujZvp
+dQHUs/xeuYkEYg=
-----END CERTIFICATE-----
Generated at Fri Apr 11 13:14:49 2025 by rpki-client