Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/3230302e302e37302e302f32342d3234203d3e203131303937.roa
File: 3230302e302e37302e302f32342d3234203d3e203131303937.roa (raw, json)
Hash identifier: h/FIG3T8g1nQhslyZg11d7Sze3jkAlhK9HP9KqI3p7w=
Subject key identifier: 67:55:57:F9:02:A0:F7:46:A9:13:A4:27:C7:46:D7:0E:77:91:C9:19
Certificate issuer: /CN=38EA6456C8B35EB75FBC6A42DA7F260358634F2F
Certificate serial: 6456233A5830B501ECF181CCC0470F8DF679229F
Authority key identifier: 38:EA:64:56:C8:B3:5E:B7:5F:BC:6A:42:DA:7F:26:03:58:63:4F:2F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/3230302e302e37302e302f32342d3234203d3e203131303937.roa
Signing time: Thu 06 Mar 2025 17:45:54 +0000
ROA not before: Thu 06 Mar 2025 17:40:54 +0000
ROA not after: Thu 05 Mar 2026 17:45:54 +0000
asID: 11097
IP address blocks: 200.0.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:56:23:3a:58:30:b5:01:ec:f1:81:cc:c0:47:0f:8d:f6:79:22:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38EA6456C8B35EB75FBC6A42DA7F260358634F2F
Validity
Not Before: Mar 6 17:40:54 2025 GMT
Not After : Mar 5 17:45:54 2026 GMT
Subject: CN=675557F902A0F746A913A427C746D70E7791C919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:20:1f:11:54:b5:1b:a6:da:35:b3:11:e8:9d:
bd:61:44:05:66:d0:10:6c:29:25:18:d5:f4:37:57:
90:00:b4:cd:ad:d4:8e:8d:40:1e:c2:1c:b4:2f:78:
09:e9:80:d6:3d:77:96:24:52:28:76:f6:e2:62:da:
02:5f:0a:a9:6a:b7:e3:b8:1f:a1:95:b7:24:89:71:
10:27:9e:b6:c9:ea:7d:67:fd:5d:f0:b7:90:a8:e0:
a8:86:34:09:bb:1d:0f:bc:fb:3a:43:0d:36:9c:de:
be:dd:af:d0:75:bf:e0:68:c2:3c:d4:4c:83:aa:86:
95:dd:2d:3b:2e:cd:f7:8e:65:a2:29:1f:2c:36:e9:
8a:cf:a0:9c:ab:f3:fa:0a:1a:6b:e1:48:ec:3f:4f:
53:eb:ec:bd:fb:08:59:50:b6:fb:66:f0:8f:c1:1f:
b7:a4:f8:0a:ea:39:af:1e:fe:22:84:80:ed:7b:c3:
84:63:41:04:b7:4a:4f:4b:a0:33:1e:81:d6:80:83:
06:8f:49:78:c0:82:54:1c:bc:15:12:f4:ed:2e:10:
91:1b:4c:b7:6b:6f:89:11:43:1e:96:7d:9d:50:c0:
dc:a4:f1:01:09:f4:eb:6d:15:ec:78:18:af:73:69:
d2:4e:89:e8:a2:21:c0:c9:8e:3f:28:e1:85:54:1b:
cf:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:55:57:F9:02:A0:F7:46:A9:13:A4:27:C7:46:D7:0E:77:91:C9:19
X509v3 Authority Key Identifier:
keyid:38:EA:64:56:C8:B3:5E:B7:5F:BC:6A:42:DA:7F:26:03:58:63:4F:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/3230302e302e37302e302f32342d3234203d3e203131303937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.0.70.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:41:0a:2a:8a:89:0d:dc:a1:cf:2e:6f:8f:a8:69:65:2b:8d:
79:7a:17:8c:90:13:88:7d:6a:1a:5b:8f:88:f5:80:2b:f3:3f:
6b:fe:d4:b5:54:f5:bf:57:0f:46:e1:fe:de:c8:81:54:8a:d9:
85:bc:ee:ab:a2:4d:59:50:56:b4:30:47:34:62:1a:eb:82:44:
e3:1a:7e:85:e7:6d:cf:4c:9f:60:84:0c:f9:41:6d:f6:ac:81:
ab:13:e0:fb:f5:f8:34:bb:ba:45:4e:75:4c:7d:5d:e2:0b:01:
3d:f5:8f:32:82:5e:99:18:a3:f7:62:0b:e5:7b:2c:3e:ab:ee:
6b:03:3f:16:db:64:c5:57:d6:28:e6:cc:d9:06:d9:b1:60:84:
7f:bb:66:cb:6b:72:1b:63:71:1f:a9:c0:67:29:6a:65:b7:18:
4c:7d:e3:79:04:9e:40:0d:1e:f3:73:1e:b7:46:c4:f4:3a:e8:
4d:c1:d8:c1:4d:3b:43:36:c2:62:7f:ad:78:76:57:87:58:11:
93:17:bf:07:d6:4c:87:db:f3:2f:dd:3e:2f:01:ac:b6:61:1c:
78:41:44:b6:67:fb:3e:66:47:dd:ef:10:11:75:eb:f0:4b:3c:
b2:57:79:e0:f2:f5:d8:56:28:65:21:9e:32:3c:4f:b5:c0:ed:
62:7f:4a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:19:49 2025 by rpki-client