Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/3133382e35392e3230332e302f32342d3234203d3e20323634313236.roa
File: 3133382e35392e3230332e302f32342d3234203d3e20323634313236.roa (raw, json)
Hash identifier: hLGz/D5soY3387SUgGsJs5xD6GDZUbWJ37e7fq9gkCg=
Subject key identifier: 0D:A3:FD:8F:56:9B:43:09:04:95:CA:B8:35:21:C0:1E:D3:90:75:9F
Certificate issuer: /CN=2BB1FB85B5A824CE1F12E99D84943C2812338D9C
Certificate serial: 043AABAB9FF52C048F5E7DD132F7198F0BD71CB3
Authority key identifier: 2B:B1:FB:85:B5:A8:24:CE:1F:12:E9:9D:84:94:3C:28:12:33:8D:9C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/3133382e35392e3230332e302f32342d3234203d3e20323634313236.roa
Signing time: Wed 05 Mar 2025 19:00:01 +0000
ROA not before: Wed 05 Mar 2025 18:55:01 +0000
ROA not after: Wed 04 Mar 2026 19:00:01 +0000
asID: 264126
IP address blocks: 138.59.203.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.crl
rsync://rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 05:49:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:3a:ab:ab:9f:f5:2c:04:8f:5e:7d:d1:32:f7:19:8f:0b:d7:1c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2BB1FB85B5A824CE1F12E99D84943C2812338D9C
Validity
Not Before: Mar 5 18:55:01 2025 GMT
Not After : Mar 4 19:00:01 2026 GMT
Subject: CN=0DA3FD8F569B43090495CAB83521C01ED390759F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:79:2e:5c:38:1e:a8:b6:78:4a:68:d9:b3:29:
51:af:13:f9:03:38:ca:c5:aa:2b:44:ce:aa:89:e2:
c8:7c:95:6f:57:59:d1:19:db:78:b6:f6:5e:df:c3:
74:da:07:bd:bf:bf:6b:cf:d6:3f:d3:82:b8:64:e4:
93:12:d9:11:81:6f:89:5d:9b:e2:48:e6:9e:96:f6:
de:34:9f:db:7f:ed:d2:64:07:49:2e:ca:7a:5a:26:
64:c2:28:fc:05:91:fa:cc:04:6d:ec:e5:9e:33:f6:
a6:88:35:96:f4:6c:77:cb:18:01:5b:f7:df:75:ed:
ba:d7:e8:e9:64:e3:43:ff:62:3e:a3:e6:c4:a6:64:
91:e2:36:66:4e:a5:0f:b6:2a:8d:2a:3c:7d:37:d5:
e1:91:74:5b:32:02:3b:62:db:03:c0:69:ff:50:bd:
9f:30:fb:a4:11:ba:da:a5:1b:e8:5a:5e:25:ad:90:
27:39:43:c5:aa:07:a9:8f:2b:cc:34:80:21:ac:f2:
52:b9:48:42:f2:48:00:a1:35:45:03:32:cd:a9:a2:
50:7c:66:3c:f7:14:3d:ea:df:48:1f:2a:49:08:e9:
66:34:ef:42:95:0e:8d:92:b4:0a:85:d1:36:ed:0d:
fc:49:09:b1:28:a1:e1:02:ea:c2:d4:cf:cf:64:ad:
2b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A3:FD:8F:56:9B:43:09:04:95:CA:B8:35:21:C0:1E:D3:90:75:9F
X509v3 Authority Key Identifier:
keyid:2B:B1:FB:85:B5:A8:24:CE:1F:12:E9:9D:84:94:3C:28:12:33:8D:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2BB1FB85B5A824CE1F12E99D84943C2812338D9C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4HA2hcG4eAuXDGBPaYttKhctFgvwbwF5PGM5D2URxVk9/1/3133382e35392e3230332e302f32342d3234203d3e20323634313236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:3f:ad:e6:d4:1c:f1:92:26:36:97:19:5f:43:5e:13:0a:47:
aa:06:f6:8f:16:c6:eb:db:fd:22:bb:88:9a:6d:60:60:86:53:
7c:c3:ba:62:cd:32:82:58:2c:7d:4e:e7:cf:d6:0d:8f:e2:2b:
19:cb:5b:35:e2:a5:39:29:80:7a:82:52:ce:38:af:b4:ed:bf:
97:3d:c8:82:05:2f:de:9c:57:6c:5e:71:4a:ab:59:80:fe:ec:
94:b6:9b:ec:b2:90:a0:b6:65:c9:3a:b5:cd:fa:b1:6e:f0:67:
6c:9d:76:3f:d2:1b:8a:31:57:f6:41:07:a3:26:72:aa:8b:32:
c3:f2:0f:21:19:4d:84:ae:7e:5a:b4:69:cb:c4:61:a8:9d:22:
43:7d:77:e8:ac:c8:37:4b:66:d4:3f:89:4a:07:68:a4:04:8e:
50:fb:e3:cd:74:a9:f9:46:14:23:e6:fe:dd:f9:78:cb:7e:79:
ca:1d:c0:d1:de:00:7b:7f:90:bb:2a:b8:6e:36:de:ce:25:95:
9f:5d:79:f2:fe:c0:6b:76:7a:0d:b3:ac:e4:d8:c6:99:c0:84:
b8:ca:45:cd:47:d6:0d:6d:95:7e:d3:af:31:5e:0d:b3:2d:b8:
f7:ee:eb:70:30:8b:ea:51:9b:9c:9d:fb:38:48:50:eb:aa:1a:
1f:ec:67:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 15:39:34 2025 by rpki-client