Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3137302e302e3234302e302f32322d3234203d3e203238313331.roa
File: 3137302e302e3234302e302f32322d3234203d3e203238313331.roa (raw, json)
Hash identifier: HKbLS7E+Az6NGi4/iA6D4cS57BiWvM5NlPyC844QPL8=
Subject key identifier: 3C:C4:A9:AE:11:96:F8:3B:43:BF:CE:5B:2B:CA:12:F0:6C:91:61:70
Certificate issuer: /CN=03981ED1B457034CCBAC00F384454B3A021E294E
Certificate serial: 5AE286CF9BDFAE3B83FAFB29A5E6CA807CD6B498
Authority key identifier: 03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3137302e302e3234302e302f32322d3234203d3e203238313331.roa
Signing time: Thu 06 Mar 2025 03:55:54 +0000
ROA not before: Thu 06 Mar 2025 03:50:54 +0000
ROA not after: Thu 05 Mar 2026 03:55:54 +0000
asID: 28131
IP address blocks: 170.0.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:e2:86:cf:9b:df:ae:3b:83:fa:fb:29:a5:e6:ca:80:7c:d6:b4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03981ED1B457034CCBAC00F384454B3A021E294E
Validity
Not Before: Mar 6 03:50:54 2025 GMT
Not After : Mar 5 03:55:54 2026 GMT
Subject: CN=3CC4A9AE1196F83B43BFCE5B2BCA12F06C916170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d0:7f:1d:cb:5f:e9:12:44:47:1c:c3:32:85:
c2:da:8b:f4:a3:88:92:dd:a4:cb:17:8a:35:94:02:
ec:b5:23:c7:46:ce:c5:97:95:f1:f4:0b:a2:49:bf:
62:cc:96:f6:49:75:23:db:1f:a6:0a:cb:55:6d:b9:
df:bc:01:5c:76:f8:f4:80:67:c8:30:52:dc:27:1c:
b6:e4:d1:65:54:b3:c6:b6:33:73:00:5d:37:aa:c3:
e0:f3:ac:78:07:f6:bb:57:fd:63:07:27:fe:62:bd:
23:06:75:53:39:65:a7:2f:4d:1a:ca:af:06:76:8b:
ce:8e:8c:70:13:bb:7a:e6:b5:a0:f4:78:7f:69:f1:
db:47:30:59:0f:74:40:70:3b:b7:55:d3:7a:b6:c2:
95:4c:6b:3c:03:53:43:e7:6d:af:11:44:30:17:e7:
78:56:93:95:26:a7:d4:4c:ee:a9:27:59:cf:bc:19:
bc:6c:19:0a:d7:ee:5d:47:d6:f4:79:bd:32:eb:dd:
ac:28:41:d8:96:24:90:75:26:c8:c2:6d:7d:67:58:
18:05:17:6a:2e:6b:94:f2:22:4e:11:2b:61:2b:87:
a8:a9:88:60:76:45:08:db:6e:66:fe:dd:7d:06:d3:
46:70:84:bf:33:e3:b9:fc:b6:44:10:94:63:70:b2:
f2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C4:A9:AE:11:96:F8:3B:43:BF:CE:5B:2B:CA:12:F0:6C:91:61:70
X509v3 Authority Key Identifier:
keyid:03:98:1E:D1:B4:57:03:4C:CB:AC:00:F3:84:45:4B:3A:02:1E:29:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/03981ED1B457034CCBAC00F384454B3A021E294E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/03981ED1B457034CCBAC00F384454B3A021E294E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/42kEQt8GWGYZkZJrKDdZC6gPzkN9E8FtcTbD93gzmPDX/1/3137302e302e3234302e302f32322d3234203d3e203238313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.240.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:13:f7:1d:56:e7:f9:87:d7:8e:87:9a:64:1c:17:5b:47:ba:
44:52:0d:b1:b5:d3:6d:0e:cc:79:3e:c5:25:d8:04:e5:d4:e4:
17:32:37:d3:4a:65:1f:ce:85:3c:40:03:38:2f:91:35:2f:12:
73:b5:a9:69:e3:8e:ba:09:dd:0b:eb:94:e5:45:88:a6:05:27:
b9:cc:dc:95:f8:ed:f3:3d:7b:d2:c1:70:1b:a1:5a:8e:5b:5c:
ba:d2:64:39:22:0a:0c:d9:28:78:80:86:c2:b9:15:74:16:07:
ed:a4:ee:1d:74:65:9c:13:93:2f:67:ac:5e:0a:61:1b:4c:c4:
10:d7:57:f2:fd:c5:e3:68:58:20:55:03:98:3e:f8:d9:18:c1:
c3:4d:39:84:cd:39:ea:6a:49:c5:11:26:e3:7f:9c:2e:6c:8b:
b7:36:4a:9a:29:f9:49:3d:c7:b7:fc:4f:ec:ce:73:3d:ba:af:
40:43:69:e5:76:d2:7b:4d:76:35:c4:8a:15:1b:e2:96:91:4f:
59:cf:2f:85:61:30:1b:83:fd:f0:8e:eb:4c:1b:c8:1a:86:0e:
df:66:ae:bb:93:83:3c:d3:52:6d:81:0e:19:08:22:13:1c:66:
74:dd:00:cd:c8:73:46:f6:89:66:5c:ac:1c:bc:71:cd:0c:6f:
2c:02:0f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:26:48 2025 by rpki-client