Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa
File: 323830343a31343a3a2f33322d313238203d3e203238333630.roa (raw, json)
Hash identifier: fxsMtFM9Q+eEfNju9tFWLjkWXVFHCaw+JtId8IbpjSw=
Subject key identifier: 46:E7:5A:DD:2C:09:FC:3E:B9:64:E3:5A:4C:4B:A1:B8:AF:63:CD:93
Certificate issuer: /CN=011E03C9169DEFF662F6BE1D9EBF430BFA9E0453
Certificate serial: 3988942FDB8FE4585EBF37158E62CD336B307876
Authority key identifier: 01:1E:03:C9:16:9D:EF:F6:62:F6:BE:1D:9E:BF:43:0B:FA:9E:04:53
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa
Signing time: Fri 10 Jan 2025 19:58:24 +0000
ROA not before: Fri 10 Jan 2025 19:53:24 +0000
ROA not after: Fri 09 Jan 2026 19:58:24 +0000
asID: 28360
IP address blocks: 2804:14::/32 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:88:94:2f:db:8f:e4:58:5e:bf:37:15:8e:62:cd:33:6b:30:78:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011E03C9169DEFF662F6BE1D9EBF430BFA9E0453
Validity
Not Before: Jan 10 19:53:24 2025 GMT
Not After : Jan 9 19:58:24 2026 GMT
Subject: CN=46E75ADD2C09FC3EB964E35A4C4BA1B8AF63CD93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e0:c1:57:10:3a:42:01:97:6e:fb:fb:10:14:
ad:8e:58:aa:6e:a3:4d:59:34:07:83:71:85:de:d5:
5e:c6:91:e8:2e:96:bd:79:c6:ac:af:94:43:3e:4a:
a3:56:37:00:18:d2:ae:b1:19:93:b4:3a:24:b4:47:
b4:b4:94:ef:8d:b6:ac:56:b2:e1:4d:22:e7:b4:51:
7c:db:cd:4d:83:c6:98:0e:70:19:00:a1:9f:23:e0:
d6:f9:75:c4:2b:1f:9f:02:cf:ef:dd:5b:f1:63:9b:
24:56:80:6b:c4:37:9e:a2:60:57:9d:9f:f0:11:67:
fd:5f:3f:be:82:43:d2:cf:f3:49:80:89:4b:e8:89:
aa:cd:90:b6:1b:62:63:46:0e:b3:b2:06:d0:11:45:
33:bd:60:65:99:92:97:e5:7f:31:69:2c:cf:4f:2d:
31:69:91:be:18:c5:69:46:b4:48:a9:8c:20:84:19:
27:dc:5a:86:93:13:7a:46:78:6d:33:54:de:0d:84:
02:3a:6c:cb:99:af:75:bc:d8:cc:46:43:e8:1b:9c:
f6:d0:88:eb:cc:ac:82:b3:05:5e:25:c2:2c:13:89:
38:4a:29:4b:d9:0c:8e:2c:64:66:90:d5:48:76:b2:
2d:d8:e3:87:9d:ce:f2:c8:1e:87:1e:1c:2c:d7:20:
5f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E7:5A:DD:2C:09:FC:3E:B9:64:E3:5A:4C:4B:A1:B8:AF:63:CD:93
X509v3 Authority Key Identifier:
keyid:01:1E:03:C9:16:9D:EF:F6:62:F6:BE:1D:9E:BF:43:0B:FA:9E:04:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/011E03C9169DEFF662F6BE1D9EBF430BFA9E0453.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/323830343a31343a3a2f33322d313238203d3e203238333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:14::/32
Signature Algorithm: sha256WithRSAEncryption
46:0f:8f:da:a2:7a:6c:2f:ee:eb:a4:e8:1c:50:de:34:c3:0b:
bd:b7:6f:cd:2b:79:04:6a:70:a8:26:61:f2:c1:db:4d:e8:33:
88:01:dd:2d:62:55:39:a9:b5:69:9d:df:85:2a:5a:90:f5:36:
76:9a:b1:3b:4b:27:00:35:77:44:1f:4b:8a:51:d7:0b:3c:0c:
73:bd:78:c1:46:c9:56:81:18:45:e7:f9:75:39:f9:e7:00:ef:
46:2b:b9:3e:a0:a3:c1:d0:e4:d9:02:e1:5d:1f:e2:36:da:92:
6e:eb:f1:f7:3c:75:4a:68:20:87:f9:ba:96:a0:c8:97:fe:46:
91:45:01:25:a8:1c:1f:2d:ca:7e:8f:3d:2b:96:27:75:ce:4d:
18:36:97:00:3c:0d:f3:88:24:15:2b:82:66:2f:97:a0:68:5c:
a9:39:7e:e0:df:1d:15:4b:e6:7a:7e:5a:da:f9:52:ca:fb:82:
4f:e6:54:de:2e:65:69:ee:b5:53:63:5e:13:d4:26:1a:ce:66:
21:ab:10:ba:42:a3:f2:51:3d:e7:03:6c:1c:60:23:e0:e2:1a:
b4:20:87:0b:5b:a8:d8:9b:84:9f:1f:ed:06:7a:85:0d:eb:95:
86:81:9d:76:78:87:24:62:37:6d:de:e6:10:bc:1b:4b:a3:cb:
63:75:65:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:29:25 2025 by rpki-client