Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/323830313a38303a313465303a3a2f34332d3433203d3e203131303937.roa
File: 323830313a38303a313465303a3a2f34332d3433203d3e203131303937.roa (raw, json)
Hash identifier: OxiXaJHzz8Byh1GiRDZMJZz0CXZ3wcEdP/xdpxfAPa4=
Subject key identifier: 34:64:1A:91:4A:19:DF:15:AA:E6:20:1D:1B:EA:D4:52:AC:23:48:CB
Certificate issuer: /CN=38EA6456C8B35EB75FBC6A42DA7F260358634F2F
Certificate serial: 7D019C07F5B96C9AA8761E6961BAB3C1722DB9CB
Authority key identifier: 38:EA:64:56:C8:B3:5E:B7:5F:BC:6A:42:DA:7F:26:03:58:63:4F:2F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/323830313a38303a313465303a3a2f34332d3433203d3e203131303937.roa
Signing time: Thu 06 Mar 2025 17:44:58 +0000
ROA not before: Thu 06 Mar 2025 17:39:58 +0000
ROA not after: Thu 05 Mar 2026 17:44:58 +0000
asID: 11097
IP address blocks: 2801:80:14e0::/43 maxlen: 43
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:01:9c:07:f5:b9:6c:9a:a8:76:1e:69:61:ba:b3:c1:72:2d:b9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38EA6456C8B35EB75FBC6A42DA7F260358634F2F
Validity
Not Before: Mar 6 17:39:58 2025 GMT
Not After : Mar 5 17:44:58 2026 GMT
Subject: CN=34641A914A19DF15AAE6201D1BEAD452AC2348CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:3f:ed:5a:f8:bc:de:76:ad:9f:9b:78:dd:7a:
12:c7:58:69:c4:24:34:b9:16:f2:3a:b2:c7:34:d7:
68:f3:f4:4d:15:21:5e:2b:74:ee:00:0b:3f:ab:99:
b6:cd:3e:1b:68:e6:4e:14:ca:37:84:eb:c8:03:e5:
59:18:e2:ff:cc:be:8b:4f:34:5d:d6:1d:9f:b0:06:
68:7e:ea:7b:68:5e:a7:ed:4f:84:f1:b0:4d:c2:53:
fb:f6:c5:8d:91:de:e5:8b:ac:f6:00:b8:69:9a:5e:
66:79:c4:91:59:dd:d0:11:13:c0:bc:09:48:bc:d8:
98:e5:04:ad:b8:a4:b4:c2:dd:a7:5e:c7:cf:0b:be:
99:01:40:63:bd:5f:e0:f2:10:89:4d:e0:e0:19:38:
89:4d:23:56:1b:d3:92:4d:15:3f:c4:2e:e0:11:2c:
7a:6e:2b:e2:16:f3:49:84:28:eb:db:25:51:30:1a:
31:ec:be:f3:d8:d4:51:04:ac:ae:8b:ac:26:2f:d0:
49:ff:9e:62:e5:c8:89:4e:6b:f6:0b:33:01:b1:6b:
d8:eb:97:c9:8b:f7:7f:df:cf:02:7a:93:aa:ac:b4:
ec:84:64:43:b1:00:5b:3b:73:57:24:c0:3e:9c:7f:
02:7f:50:b8:e7:1a:e0:8b:a4:a7:ea:cc:68:3f:3c:
70:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:64:1A:91:4A:19:DF:15:AA:E6:20:1D:1B:EA:D4:52:AC:23:48:CB
X509v3 Authority Key Identifier:
keyid:38:EA:64:56:C8:B3:5E:B7:5F:BC:6A:42:DA:7F:26:03:58:63:4F:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/38EA6456C8B35EB75FBC6A42DA7F260358634F2F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Z2nosUQPbtmBJxWGxFEf1J33ZxU6YjNScsNdP1uPiee/0/323830313a38303a313465303a3a2f34332d3433203d3e203131303937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:80:14e0::/43
Signature Algorithm: sha256WithRSAEncryption
16:02:49:7f:c5:1e:a4:8b:cc:9f:e2:a1:26:01:65:29:03:c0:
75:66:17:16:44:44:58:b7:4c:86:bc:e7:f7:d6:ff:3f:4e:20:
8c:ef:66:94:03:c2:d1:d7:e2:71:dd:14:6e:8b:f3:dd:5a:70:
d1:0e:8f:c5:a6:74:c1:59:da:8e:eb:bc:4e:ec:30:88:93:14:
b5:43:14:5a:86:41:93:01:b6:33:85:53:d8:1b:f3:b3:50:e2:
80:8e:a5:7c:94:eb:cc:7d:a9:36:12:e8:dc:ee:51:57:b6:86:
21:5a:3d:56:40:53:a7:e6:aa:a5:59:18:4a:bb:30:3d:64:c1:
75:8b:70:4c:2f:91:cb:e2:75:9b:da:9b:d7:16:94:53:4a:6e:
e0:e8:f0:e4:22:d0:5a:53:a0:bd:33:99:5c:c2:b0:35:c7:69:
3c:f8:d7:56:67:5d:4c:a1:fe:82:f2:26:fb:2a:58:75:32:20:
7f:f5:5f:65:50:08:83:52:c0:ac:31:90:da:1d:de:b6:88:36:
46:37:ca:ba:e2:4e:2e:c0:1f:ad:39:1f:34:fc:d9:2a:e3:3d:
e1:09:56:9e:26:15:e5:11:b6:56:f5:12:e7:27:fd:15:b9:24:
0b:92:80:23:f2:0c:3c:12:54:60:f6:0c:65:b6:cc:cb:d8:0d:
b8:bb:64:e3
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgIUfQGcB/W5bJqodh5pYbqzwXItucswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzhFQTY0NTZDOEIzNUVCNzVGQkM2QTQyREE3RjI2MDM1
ODYzNEYyRjAeFw0yNTAzMDYxNzM5NThaFw0yNjAzMDUxNzQ0NThaMDMxMTAvBgNV
BAMTKDM0NjQxQTkxNEExOURGMTVBQUU2MjAxRDFCRUFENDUyQUMyMzQ4Q0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7P+1a+Lzedq2fm3jdehLHWGnE
JDS5FvI6ssc012jz9E0VIV4rdO4ACz+rmbbNPhto5k4UyjeE68gD5VkY4v/MvotP
NF3WHZ+wBmh+6ntoXqftT4TxsE3CU/v2xY2R3uWLrPYAuGmaXmZ5xJFZ3dARE8C8
CUi82JjlBK24pLTC3adex88LvpkBQGO9X+DyEIlN4OAZOIlNI1Yb05JNFT/ELuAR
LHpuK+IW80mEKOvbJVEwGjHsvvPY1FEErK6LrCYv0En/nmLlyIlOa/YLMwGxa9jr
l8mL93/fzwJ6k6qstOyEZEOxAFs7c1ckwD6cfwJ/ULjnGuCLpKfqzGg/PHC1AgMB
AAGjggJWMIICUjAdBgNVHQ4EFgQUNGQakUoZ3xWq5iAdG+rUUqwjSMswHwYDVR0j
BBgwFoAUOOpkVsizXrdfvGpC2n8mA1hjTy8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNFoybm9zVVFQYnRtQkp4V0d4RkVmMUozM1p4VTZZak5TY3NOZFAxdVBp
ZWUvMC8zOEVBNjQ1NkM4QjM1RUI3NUZCQzZBNDJEQTdGMjYwMzU4NjM0RjJGLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzM4RUE2NDU2QzhCMzVFQjc1
RkJDNkE0MkRBN0YyNjAzNTg2MzRGMkYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzRaMm5vc1VRUGJ0bUJKeFdHeEZFZjFKMzNaeFU2WWpOU2NzTmRQMXVQaWVlLzAv
MzIzODMwMzEzYTM4MzAzYTMxMzQ2NTMwM2EzYTJmMzQzMzJkMzQzMzIwM2QzZTIw
MzEzMTMwMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEF
BQcBBwEB/wQTMBEwDwQCAAIwCQMHBSgBAIAU4DANBgkqhkiG9w0BAQsFAAOCAQEA
FgJJf8UepIvMn+KhJgFlKQPAdWYXFkREWLdMhrzn99b/P04gjO9mlAPC0dficd0U
bovz3Vpw0Q6PxaZ0wVnajuu8TuwwiJMUtUMUWoZBkwG2M4VT2Bvzs1DigI6lfJTr
zH2pNhLo3O5RV7aGIVo9VkBTp+aqpVkYSrswPWTBdYtwTC+Ry+J1m9qb1xaUU0pu
4Ojw5CLQWlOgvTOZXMKwNcdpPPjXVmddTKH+gvIm+ypYdTIgf/VfZVAIg1LArDGQ
2h3etog2RjfKuuJOLsAfrTkfNPzZKuM94QlWniYV5RG2VvUS5yf9FbkkC5KAI/IM
PBJUYPYMZbbMy9gNuLtk4w==
-----END CERTIFICATE-----
Generated at Tue Apr 8 19:15:31 2025 by rpki-client