Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4cG2obEUYfMKhWAX457nFgzoTXYStiLK4DaE34VDSK85/1/3137302e302e3230382e302f32322d3234203d3e20323633393139.roa
File: 3137302e302e3230382e302f32322d3234203d3e20323633393139.roa (raw, json)
Hash identifier: otfkJ+39Wo2DP48qp0COa/OrUo7snPzB+Sul36LhuX0=
Subject key identifier: A7:BF:3C:4A:AB:72:37:A7:61:C5:11:12:7B:38:08:2C:40:53:BE:B4
Certificate issuer: /CN=8BAE9C90EBC5082F802055EFAA6360C661BF85CE
Certificate serial: 34273903053E2D2B1F1584B6BD66FB1E0BE678B4
Authority key identifier: 8B:AE:9C:90:EB:C5:08:2F:80:20:55:EF:AA:63:60:C6:61:BF:85:CE
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BAE9C90EBC5082F802055EFAA6360C661BF85CE.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4cG2obEUYfMKhWAX457nFgzoTXYStiLK4DaE34VDSK85/1/3137302e302e3230382e302f32322d3234203d3e20323633393139.roa
Signing time: Fri 07 Mar 2025 04:40:34 +0000
ROA not before: Fri 07 Mar 2025 04:35:34 +0000
ROA not after: Fri 06 Mar 2026 04:40:34 +0000
asID: 263919
IP address blocks: 170.0.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:27:39:03:05:3e:2d:2b:1f:15:84:b6:bd:66:fb:1e:0b:e6:78:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BAE9C90EBC5082F802055EFAA6360C661BF85CE
Validity
Not Before: Mar 7 04:35:34 2025 GMT
Not After : Mar 6 04:40:34 2026 GMT
Subject: CN=A7BF3C4AAB7237A761C511127B38082C4053BEB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:85:b6:bb:dc:94:e6:43:1a:84:57:b9:73:bf:
f6:dc:56:94:72:e0:f3:13:1d:6a:3c:c7:de:fc:3a:
40:3a:81:ed:94:1c:64:b1:51:51:26:7b:8e:07:3f:
42:34:d5:52:86:58:2c:96:27:22:d3:e3:d1:01:1b:
46:38:2a:c1:ee:ee:20:94:ae:f1:0c:d3:dd:10:7e:
c0:61:4e:38:76:f3:84:6a:94:c7:f3:55:df:8f:e1:
3f:73:bb:25:bd:f2:d2:bc:2f:58:a6:9f:64:68:7a:
38:e7:8d:98:e0:53:7d:8c:e3:64:73:ef:05:35:e1:
a3:c4:59:61:77:5c:c2:66:72:7c:8b:ad:86:d4:b2:
c3:2c:a9:e1:53:4f:5c:dc:9b:92:2e:36:3b:dc:b8:
6b:b5:70:bd:91:a4:51:98:55:14:e8:ca:9f:e3:70:
09:95:18:5a:10:f2:c3:3f:ba:18:8d:4b:7f:99:ab:
cb:17:3b:6a:b4:70:65:f6:8f:11:46:1a:4a:ca:99:
64:ee:1f:6f:d5:29:d7:20:38:4c:6e:72:fe:d2:44:
ce:4c:8b:1d:3b:54:5d:da:04:00:cf:63:c5:49:91:
5d:f4:19:8d:dd:e6:81:3d:7a:38:cb:f9:38:46:3b:
f1:2f:38:3a:ee:aa:24:8b:ee:0d:21:a1:7a:84:ba:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BF:3C:4A:AB:72:37:A7:61:C5:11:12:7B:38:08:2C:40:53:BE:B4
X509v3 Authority Key Identifier:
keyid:8B:AE:9C:90:EB:C5:08:2F:80:20:55:EF:AA:63:60:C6:61:BF:85:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4cG2obEUYfMKhWAX457nFgzoTXYStiLK4DaE34VDSK85/1/8BAE9C90EBC5082F802055EFAA6360C661BF85CE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BAE9C90EBC5082F802055EFAA6360C661BF85CE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cG2obEUYfMKhWAX457nFgzoTXYStiLK4DaE34VDSK85/1/3137302e302e3230382e302f32322d3234203d3e20323633393139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.208.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:48:36:ff:69:7d:7a:db:31:df:c7:43:d3:09:2f:8c:f2:33:
60:47:04:7e:b8:18:8d:b4:fa:a3:a0:b8:67:2f:4d:38:0e:97:
94:6c:91:3f:94:58:3a:e1:9e:d5:f9:16:e5:cd:b6:6b:2e:ea:
4b:42:7e:f3:88:57:50:70:dd:54:fa:f3:a7:8e:e9:3a:fc:56:
22:23:52:90:9a:03:ae:90:31:3a:c8:59:b0:cf:44:4a:e4:8f:
a9:85:6d:ca:94:36:37:9d:b8:ef:38:32:74:7b:f1:28:d7:4b:
54:3b:65:c9:86:bb:45:6e:c1:5d:9f:28:32:87:b1:5d:a2:5d:
25:8f:6b:de:92:ad:b6:49:74:62:73:3b:13:b7:01:69:e1:45:
0a:fe:a6:29:68:a8:94:d9:58:e8:a2:83:1c:8a:df:19:dc:7b:
ef:16:47:1a:62:0a:ce:f5:2f:6f:33:1d:15:40:ff:6b:21:9b:
e6:64:b5:60:4d:0b:1c:7f:a3:2d:f0:9c:11:14:f1:0a:11:fc:
95:34:5c:b3:31:79:3b:8a:b9:16:2d:dc:20:da:de:35:55:2a:
fc:6b:6f:e6:e0:3c:25:93:ed:c7:1c:00:3b:fd:fc:3d:7b:be:
92:6d:31:ca:7b:a7:95:93:c8:9a:f6:7a:c2:e3:45:80:75:d1:
cf:8b:c8:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:53:42 2025 by rpki-client