Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
File: 3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa (raw, json)
Hash identifier: 6vcAc9CciYRc9pz+Tnet0y8vdIMuOWumLKTVQn3vc/M=
Subject key identifier: 1B:D8:87:A0:19:CD:AE:F6:2F:CC:63:1E:39:68:38:18:6A:F6:47:4C
Certificate issuer: /CN=443A05DE457DA61030C50B71D655B381CE793C73
Certificate serial: 3826C2E211D1575411D0CAB0E548014FD0FCEB2A
Authority key identifier: 44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
Signing time: Mon 11 Mar 2024 17:38:22 +0000
ROA not before: Mon 11 Mar 2024 17:33:22 +0000
ROA not after: Mon 10 Mar 2025 17:38:22 +0000
asID: 271309
IP address blocks: 207.248.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:26:c2:e2:11:d1:57:54:11:d0:ca:b0:e5:48:01:4f:d0:fc:eb:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=443A05DE457DA61030C50B71D655B381CE793C73
Validity
Not Before: Mar 11 17:33:22 2024 GMT
Not After : Mar 10 17:38:22 2025 GMT
Subject: CN=1BD887A019CDAEF62FCC631E396838186AF6474C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:26:6a:c8:b0:52:15:52:b6:ae:cf:3b:bb:19:
21:94:38:04:7b:b7:14:76:af:e7:5c:15:6c:a4:5c:
41:ca:51:e6:0d:fd:ed:90:bb:1f:c1:46:d7:0e:e5:
0f:06:50:f9:48:bb:c1:7e:95:61:f4:ca:fc:2f:62:
2a:0b:7a:df:6e:ec:0e:4e:1e:a7:24:8e:66:33:56:
78:d4:4d:20:01:5c:a5:30:8b:db:2f:e8:74:9b:7c:
21:8a:16:ca:ef:1c:7d:0c:90:a8:43:d5:50:e2:5e:
e0:4c:75:52:46:64:8f:a4:4c:6e:25:c8:0d:2f:31:
ec:3d:b4:83:2a:a7:2c:05:3e:10:e5:fb:76:1d:23:
0b:f6:a9:0a:05:12:16:23:05:01:1a:e8:8f:32:a4:
e9:6e:25:96:30:09:e9:21:89:85:2a:4c:e1:5e:99:
0c:8c:33:b1:ef:7d:10:c4:d1:b5:cc:18:cb:c4:24:
ff:14:60:e4:28:53:1f:05:2b:d8:9f:63:75:6f:84:
6a:21:b6:de:c1:a4:ce:29:38:e3:9c:0c:dc:8b:23:
df:36:87:d3:22:61:ca:bb:a4:a5:19:31:76:10:8f:
21:8f:3d:3e:87:55:e4:0d:70:86:e8:04:72:56:87:
e5:86:f8:93:6b:a4:d8:da:35:f2:f2:22:db:9a:24:
2f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D8:87:A0:19:CD:AE:F6:2F:CC:63:1E:39:68:38:18:6A:F6:47:4C
X509v3 Authority Key Identifier:
keyid:44:3A:05:DE:45:7D:A6:10:30:C5:0B:71:D6:55:B3:81:CE:79:3C:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/443A05DE457DA61030C50B71D655B381CE793C73.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/443A05DE457DA61030C50B71D655B381CE793C73.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.248.25.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:97:9a:be:96:c7:2e:40:69:7d:23:f4:94:98:e7:02:92:85:
bd:dd:65:53:10:b1:78:5e:bb:7f:28:3d:17:96:23:61:7a:e6:
ba:dc:36:fd:07:ce:a4:8f:ce:47:27:f3:fc:9e:e9:78:fc:eb:
3f:1f:f9:fc:56:52:7f:25:48:8d:7e:2a:a2:f8:ed:59:32:4f:
73:9f:59:cd:38:33:d0:62:9d:07:97:f6:2d:01:9e:cd:41:90:
46:c7:4b:e8:77:8e:97:21:41:f9:01:2a:52:ab:b7:cb:6e:d0:
a5:5d:f4:3d:aa:70:03:c1:01:ff:46:89:31:35:76:64:71:2d:
3d:ae:c3:25:5a:7d:5b:c5:25:51:c1:0a:a1:74:25:40:12:b5:
09:25:97:42:7d:c8:d2:ea:cc:76:35:91:ff:a4:40:f4:db:f9:
fd:09:6e:96:41:c4:d6:7f:c1:9b:49:eb:3c:e3:77:17:15:a0:
62:40:92:0c:d4:6e:75:78:23:56:85:a9:8a:bd:88:0f:c5:b5:
e8:1c:89:2d:51:08:09:66:91:3b:ec:b0:b1:49:17:a0:74:fc:
8c:38:e7:cd:62:9d:b9:88:ca:d3:d9:8c:9d:28:51:4e:af:00:
ea:b4:d1:8e:e3:99:0f:44:f3:d0:ab:5a:ec:95:ad:97:77:ab:
89:dc:27:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:44 2024 by rpki-client on console-ams.rpki-client.org