Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
File: 3133382e39342e382e302f32322d3332203d3e203238333630.roa (raw, json)
Hash identifier: 7xnUV8TVx1qFRE2xPZ6+p184T34Q01d6h8kLHhs8rKM=
Subject key identifier: 5F:23:CF:0C:86:CE:1A:D3:3C:0C:96:9C:A4:89:00:C0:21:2C:4D:05
Certificate issuer: /CN=011E03C9169DEFF662F6BE1D9EBF430BFA9E0453
Certificate serial: 1C5DE153DB8AC9E275243C595CFBFBA168B777B3
Authority key identifier: 01:1E:03:C9:16:9D:EF:F6:62:F6:BE:1D:9E:BF:43:0B:FA:9E:04:53
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
Signing time: Fri 10 Jan 2025 19:58:17 +0000
ROA not before: Fri 10 Jan 2025 19:53:17 +0000
ROA not after: Fri 09 Jan 2026 19:58:17 +0000
asID: 28360
IP address blocks: 138.94.8.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:5d:e1:53:db:8a:c9:e2:75:24:3c:59:5c:fb:fb:a1:68:b7:77:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011E03C9169DEFF662F6BE1D9EBF430BFA9E0453
Validity
Not Before: Jan 10 19:53:17 2025 GMT
Not After : Jan 9 19:58:17 2026 GMT
Subject: CN=5F23CF0C86CE1AD33C0C969CA48900C0212C4D05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7a:c7:a4:6c:d9:20:36:0f:7b:0b:af:ff:f1:
cc:cd:11:d7:fb:d6:7f:29:71:33:a1:fa:bd:2a:23:
f9:6a:ce:f1:9b:72:2f:5b:13:61:31:6b:80:4d:08:
8d:0d:15:f0:ab:ec:33:af:ec:83:e4:c1:6c:d7:e8:
94:5a:2a:56:29:ea:d3:4d:20:1a:dc:09:9a:25:b6:
f9:54:f5:3f:f9:6a:86:35:d8:3f:95:d4:6d:ed:c1:
ff:c8:4e:13:de:ea:d7:80:85:04:cb:9a:b8:d3:82:
3d:f6:65:85:21:a7:ff:91:3e:d9:99:d0:58:3a:c6:
a2:a8:7a:fe:1c:16:b5:ef:d8:06:85:75:77:78:87:
ff:46:89:51:6b:9e:1d:dd:1f:16:68:3e:00:4f:4e:
c8:77:c2:70:9f:9d:e9:0b:3e:cf:0c:2e:77:15:0e:
09:a5:74:f5:f8:56:6d:a4:f5:b6:7a:5a:c6:7e:a3:
93:33:f5:b8:2e:2a:db:10:a1:eb:22:48:d9:04:dd:
8a:3b:bb:3f:7d:b2:ab:22:e1:08:a3:a0:1e:3e:97:
62:f2:ae:53:29:86:4d:9d:3f:2b:0e:69:d7:65:f4:
7e:ff:79:f9:cf:eb:34:6f:ed:6d:73:99:28:3b:fe:
65:41:ff:6c:0f:2d:da:43:cd:22:12:05:61:bd:4d:
4d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:23:CF:0C:86:CE:1A:D3:3C:0C:96:9C:A4:89:00:C0:21:2C:4D:05
X509v3 Authority Key Identifier:
keyid:01:1E:03:C9:16:9D:EF:F6:62:F6:BE:1D:9E:BF:43:0B:FA:9E:04:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.94.8.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:ce:f6:91:16:cb:f9:b1:23:1b:0c:a2:00:52:18:36:87:59:
36:c7:d5:7f:4d:b8:c1:e8:2c:2c:3f:64:88:08:cf:fa:df:f2:
0f:35:11:bf:0e:22:4e:84:1d:f8:5b:ed:77:a9:44:f2:8f:ad:
9c:c3:80:f3:fc:22:d8:3e:06:f6:85:ca:c3:34:aa:9f:e6:5c:
f3:e5:25:3d:c0:ba:1b:b9:b0:ac:23:10:67:61:71:e5:a7:e6:
7d:0e:3b:19:91:6f:d9:b0:f7:47:bf:81:d0:de:12:5a:6b:27:
9c:f4:a5:9b:2c:8b:bd:0e:80:33:89:c8:60:45:79:cb:24:4b:
42:1d:20:e4:09:9a:27:62:f1:b1:7b:0e:32:78:c3:4b:48:be:
8e:66:cc:c9:59:e5:a1:87:04:c9:d2:8c:f3:01:be:50:50:fb:
30:fa:83:aa:3e:4c:88:06:4b:d0:98:2b:14:35:fa:01:f2:e7:
18:2f:db:42:4f:e5:9c:ef:c5:ad:dc:be:e0:b7:b5:7b:11:16:
37:d5:83:77:79:8f:40:93:12:bd:aa:6a:ea:06:3b:dd:55:eb:
7b:81:4e:79:c3:1e:ef:12:63:3c:98:dd:39:4c:ab:2f:46:1e:
e7:28:b4:3a:29:6c:42:e1:60:2f:15:26:a6:4f:1f:0b:81:a2:
9f:07:fc:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:37:41 2025 by rpki-client