Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4CRkoZdGo79T8JKgVNEhu9N64BDZyqygCXn8C6oREw55/0/3230312e3135392e32342e302f32312d3332203d3e20323632323835.roa
File: 3230312e3135392e32342e302f32312d3332203d3e20323632323835.roa (raw, json)
Hash identifier: Q0HZ8OB7Kb+5cL1eyW22DcAgLyqxK91znrskt+NEJio=
Subject key identifier: 79:D9:61:7A:4B:82:50:CF:BC:B5:98:A2:AE:00:A8:F6:18:FC:DD:38
Certificate issuer: /CN=3D059F9D67F14B6324D19CEDD7A94CED91E5D920
Certificate serial: 23EBB4CC7424F7BD8B63FCC2C42A2A458DCB0249
Authority key identifier: 3D:05:9F:9D:67:F1:4B:63:24:D1:9C:ED:D7:A9:4C:ED:91:E5:D9:20
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D059F9D67F14B6324D19CEDD7A94CED91E5D920.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4CRkoZdGo79T8JKgVNEhu9N64BDZyqygCXn8C6oREw55/0/3230312e3135392e32342e302f32312d3332203d3e20323632323835.roa
Signing time: Thu 06 Jun 2024 18:15:49 +0000
ROA not before: Thu 06 Jun 2024 18:10:49 +0000
ROA not after: Thu 05 Jun 2025 18:15:49 +0000
asID: 262285
IP address blocks: 201.159.24.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:eb:b4:cc:74:24:f7:bd:8b:63:fc:c2:c4:2a:2a:45:8d:cb:02:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D059F9D67F14B6324D19CEDD7A94CED91E5D920
Validity
Not Before: Jun 6 18:10:49 2024 GMT
Not After : Jun 5 18:15:49 2025 GMT
Subject: CN=79D9617A4B8250CFBCB598A2AE00A8F618FCDD38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:29:d1:49:3a:38:36:17:e6:f7:9b:c0:88:7d:
c0:b2:33:1f:05:fa:64:e5:3b:8a:51:b1:ef:9d:39:
9c:06:0f:79:64:04:cf:87:aa:f8:a9:41:5c:cc:99:
15:12:3f:27:f4:e0:19:e8:fd:49:47:7a:67:18:22:
d3:ad:6a:5b:0c:38:17:3b:81:f7:d7:e2:26:72:1d:
b7:bd:83:c2:ac:53:72:e1:b9:73:c8:a5:58:5c:86:
83:4c:f8:2b:07:bb:23:ea:e2:5f:0a:1b:d4:10:d6:
34:9a:89:9d:08:09:18:4d:74:57:9a:b4:82:74:34:
d6:cb:a6:aa:e0:1c:c8:4c:23:dd:9e:ee:5f:d1:69:
d0:93:ee:21:a5:a7:b6:3c:96:38:3b:1a:17:8e:d6:
a9:a8:09:d4:4a:4b:2a:0c:fc:c1:92:4e:07:20:84:
a9:e4:06:02:10:39:7d:1a:63:81:c7:f6:30:f1:1f:
6e:f9:a0:dc:39:68:21:e0:ab:5e:7a:a7:1b:8f:9b:
c0:c8:32:82:1e:24:ea:57:f4:ae:56:83:dc:6b:ac:
ee:27:90:e4:11:92:60:67:6a:d8:73:09:55:3b:bb:
e0:cb:4a:5e:c5:c7:97:24:18:cf:af:4d:31:d7:1e:
eb:f3:7e:1f:4e:24:b0:1a:47:ba:7a:74:86:a2:b1:
f2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D9:61:7A:4B:82:50:CF:BC:B5:98:A2:AE:00:A8:F6:18:FC:DD:38
X509v3 Authority Key Identifier:
keyid:3D:05:9F:9D:67:F1:4B:63:24:D1:9C:ED:D7:A9:4C:ED:91:E5:D9:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4CRkoZdGo79T8JKgVNEhu9N64BDZyqygCXn8C6oREw55/0/3D059F9D67F14B6324D19CEDD7A94CED91E5D920.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D059F9D67F14B6324D19CEDD7A94CED91E5D920.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4CRkoZdGo79T8JKgVNEhu9N64BDZyqygCXn8C6oREw55/0/3230312e3135392e32342e302f32312d3332203d3e20323632323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.24.0/21
Signature Algorithm: sha256WithRSAEncryption
73:f3:30:d2:cb:2d:34:2a:ad:3f:ac:2f:e6:d6:4e:80:74:73:
2e:0e:37:b0:df:cf:21:d9:f6:25:09:d1:9a:cc:50:0c:4c:d0:
34:33:a4:59:2d:9b:bf:2d:ed:a2:76:ce:f5:c0:d8:29:70:22:
21:c1:76:f3:b2:b3:af:c3:98:77:48:64:bf:63:e8:9e:fa:ed:
23:41:97:be:19:f5:3c:0b:98:0a:ee:c5:06:93:09:e0:b0:92:
61:07:5c:ba:65:e6:db:2a:3c:c4:3a:46:f8:aa:c8:fd:c2:0e:
4f:63:69:62:de:11:07:06:e7:d2:ac:da:83:c3:4d:a5:f9:3d:
4e:a5:10:77:77:26:21:b7:91:ba:71:e9:26:1b:e9:e2:bb:1b:
cb:21:3a:15:37:3b:73:1b:1b:db:35:d1:a5:b6:50:94:1b:63:
51:6f:f2:b1:07:ae:e2:47:6b:2f:94:27:ec:2c:6b:08:ae:11:
8b:45:a1:90:ee:ac:61:20:e9:1d:da:62:13:37:ca:89:7b:26:
68:00:d5:43:7c:2f:e1:1b:45:0a:c2:33:b0:ca:05:3f:a6:7b:
8b:1e:4e:12:71:67:b9:68:0b:8d:d2:ba:83:a9:0a:9c:0c:61:
c6:0a:7e:76:ff:4d:60:40:63:27:04:b5:3e:9f:8c:c9:35:ab:
ae:df:a8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 22:46:12 2025 by rpki-client