Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa
File: 323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa (raw, json)
Hash identifier: NDOVum8LedsVLvc/WICDe9ryq5eC3jbg3qAPX4VVjTs=
Subject key identifier: B4:8B:D4:6B:2C:06:2F:22:26:3F:8C:1B:E1:E7:88:3B:B9:B6:E8:E3
Certificate issuer: /CN=17C00B445C93E393C8337EE28B631DC91D3E7C96
Certificate serial: 11944002159AE006245113D5FA87AD0AAE5F234F
Authority key identifier: 17:C0:0B:44:5C:93:E3:93:C8:33:7E:E2:8B:63:1D:C9:1D:3E:7C:96
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/17C00B445C93E393C8337EE28B631DC91D3E7C96.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa
Signing time: Thu 30 Jan 2025 13:57:32 +0000
ROA not before: Thu 30 Jan 2025 13:52:32 +0000
ROA not after: Thu 29 Jan 2026 13:57:32 +0000
asID: 273713
IP address blocks: 2804:8b20:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:94:40:02:15:9a:e0:06:24:51:13:d5:fa:87:ad:0a:ae:5f:23:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17C00B445C93E393C8337EE28B631DC91D3E7C96
Validity
Not Before: Jan 30 13:52:32 2025 GMT
Not After : Jan 29 13:57:32 2026 GMT
Subject: CN=B48BD46B2C062F22263F8C1BE1E7883BB9B6E8E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:78:60:70:28:1f:b9:d5:18:d3:17:09:d2:06:
87:82:2e:87:03:1a:b3:04:3d:46:27:e0:81:d1:ac:
d2:a2:71:9f:60:36:dd:16:c2:75:26:2d:6d:67:7b:
14:58:98:d4:20:c9:7c:08:dc:28:36:49:bf:0b:00:
93:c0:09:9a:7a:fc:e7:9b:50:81:99:c1:38:cd:84:
8e:56:d5:33:ec:4c:f7:e6:cd:bc:65:9a:98:ef:17:
37:d3:22:60:5b:0e:3e:8d:2d:ee:d6:d8:4d:36:0f:
e6:54:68:75:06:0f:6f:ea:9b:50:26:7a:a8:10:e4:
98:ab:db:41:05:73:db:70:37:5b:d7:05:3c:81:e0:
01:bb:1b:ee:45:64:41:d3:06:d8:79:56:07:d6:58:
bc:57:5a:3d:1f:84:25:cc:a0:17:0d:27:5c:03:2f:
b1:b9:93:ec:d3:e4:83:6f:a3:df:37:af:f6:58:58:
0b:d0:7b:b4:19:32:bc:92:d0:69:f8:76:09:44:be:
99:d9:6f:65:61:16:75:bf:8e:92:66:af:d0:1b:b6:
de:7e:c6:cf:61:3d:15:22:7b:33:2b:f3:f5:61:c6:
d5:be:3c:d1:96:19:5c:d1:18:e2:17:ef:c6:9c:f8:
06:e2:27:07:18:ef:ac:85:0d:2d:27:da:cb:e6:94:
62:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8B:D4:6B:2C:06:2F:22:26:3F:8C:1B:E1:E7:88:3B:B9:B6:E8:E3
X509v3 Authority Key Identifier:
keyid:17:C0:0B:44:5C:93:E3:93:C8:33:7E:E2:8B:63:1D:C9:1D:3E:7C:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/17C00B445C93E393C8337EE28B631DC91D3E7C96.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/17C00B445C93E393C8337EE28B631DC91D3E7C96.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8b20:8000::/33
Signature Algorithm: sha256WithRSAEncryption
2d:a8:98:d2:f0:de:25:2a:43:6f:b2:48:49:34:3b:13:26:bd:
a0:a0:ad:ca:cb:eb:0e:e5:5a:98:41:da:31:7c:a6:ab:c8:9c:
0f:b3:ba:a4:5f:c3:e3:32:9c:51:6d:2f:80:3c:d3:bf:91:c3:
7d:fa:18:b9:34:a1:ce:12:98:3f:6d:a2:e8:94:6a:5b:a2:4d:
9b:c7:67:de:7c:08:e4:9b:8e:d1:a3:84:00:03:40:9c:ae:8e:
8e:1f:c9:03:82:b5:a9:d4:df:e2:d3:f7:e2:58:98:cf:a8:7a:
ab:03:e8:78:d4:8c:00:8d:73:c6:34:1c:9c:ce:cf:98:84:f8:
0b:61:98:17:76:cf:ae:96:60:e0:ba:e4:43:fd:48:e5:06:5e:
78:48:8b:23:0e:86:dc:0e:49:15:3a:51:11:ca:22:5f:6a:f9:
2d:b2:1c:16:1f:22:ad:03:0e:18:0b:6f:8d:f0:28:c6:5d:26:
ef:7d:d7:69:41:1f:1d:32:cd:c1:0a:d5:c7:62:2f:36:a5:47:
6b:b9:04:a2:98:83:15:92:50:65:c2:85:eb:65:20:25:39:1e:
9c:02:fa:3e:98:35:b5:75:ae:49:f7:70:60:76:e3:19:f9:01:
db:0f:7c:d8:03:d8:20:63:c5:58:0d:2f:fd:70:6a:3c:25:37:
d4:53:96:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 04:52:25 2025 by rpki-client