Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa
File: 323830343a386232303a3a2f33332d3333203d3e20323733373133.roa (raw, json)
Hash identifier: ZG9VbVcZFac45U3ltzcVMrzly1dao6FUMBjsCnEeSJc=
Subject key identifier: F2:B8:E5:E9:BC:E1:A8:A8:C8:65:04:FC:5C:5A:5A:89:55:80:E5:9A
Certificate issuer: /CN=17C00B445C93E393C8337EE28B631DC91D3E7C96
Certificate serial: 703F3F8D686A65C08DF9DDF5C9F3FCC508681040
Authority key identifier: 17:C0:0B:44:5C:93:E3:93:C8:33:7E:E2:8B:63:1D:C9:1D:3E:7C:96
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/17C00B445C93E393C8337EE28B631DC91D3E7C96.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa
Signing time: Thu 30 Jan 2025 13:57:27 +0000
ROA not before: Thu 30 Jan 2025 13:52:27 +0000
ROA not after: Thu 29 Jan 2026 13:57:27 +0000
asID: 273713
IP address blocks: 2804:8b20::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:3f:3f:8d:68:6a:65:c0:8d:f9:dd:f5:c9:f3:fc:c5:08:68:10:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17C00B445C93E393C8337EE28B631DC91D3E7C96
Validity
Not Before: Jan 30 13:52:27 2025 GMT
Not After : Jan 29 13:57:27 2026 GMT
Subject: CN=F2B8E5E9BCE1A8A8C86504FC5C5A5A895580E59A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9d:99:c4:21:c3:c8:6a:01:3c:a5:b8:f0:19:
23:bf:b5:23:c0:ec:d1:07:29:63:86:ff:34:26:f5:
5f:08:8c:09:31:13:bd:02:a7:dc:9e:c6:96:4b:38:
94:4f:23:f6:75:12:f5:32:aa:c4:a1:0e:0a:1a:70:
c6:4e:62:6c:e6:ae:57:b3:3e:a0:fc:77:43:93:13:
99:49:4a:ba:d3:85:1a:e3:c2:5f:42:f5:03:35:dc:
9b:9b:b6:4a:57:10:ef:25:cd:f0:d4:68:83:f1:19:
92:0e:75:45:99:99:d2:88:5a:e1:bb:d8:cc:93:ae:
03:98:ec:4b:03:7d:8a:d3:ab:61:1e:5a:7e:f3:ff:
cf:cd:58:84:ea:3e:82:90:f8:4a:c5:3d:de:14:1f:
8d:86:aa:53:85:0e:de:fd:71:3b:01:f5:64:94:00:
84:b4:93:de:8a:0d:69:df:9b:64:d8:95:15:41:e6:
a8:5d:8e:84:d6:c3:ab:0a:af:2a:b2:52:5e:f5:a7:
31:d4:97:41:1f:30:95:1d:f1:9f:da:59:11:32:63:
08:1b:10:ee:08:e0:aa:d9:e2:b7:0e:ad:88:f9:46:
93:b1:9e:cc:0e:fd:49:b6:3f:52:f9:1a:00:79:0d:
de:68:d2:23:ef:87:d5:4c:3c:2f:d3:7c:2d:1e:a4:
1e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B8:E5:E9:BC:E1:A8:A8:C8:65:04:FC:5C:5A:5A:89:55:80:E5:9A
X509v3 Authority Key Identifier:
keyid:17:C0:0B:44:5C:93:E3:93:C8:33:7E:E2:8B:63:1D:C9:1D:3E:7C:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/17C00B445C93E393C8337EE28B631DC91D3E7C96.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/17C00B445C93E393C8337EE28B631DC91D3E7C96.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8b20::/33
Signature Algorithm: sha256WithRSAEncryption
c2:3b:b9:ac:4b:d8:1b:a4:9c:e6:65:c4:6f:3c:fd:72:5a:b1:
a9:7f:72:da:a0:41:c3:d1:fd:93:04:a6:21:7e:bc:4a:78:57:
cb:4a:6c:ae:b8:7d:40:e8:07:8e:a3:36:06:0e:8f:b6:e0:ec:
73:c5:9d:64:31:4e:30:66:33:46:70:5f:e7:c8:36:c5:1a:19:
48:cc:22:f6:e2:43:ba:b2:1f:e7:b6:94:ae:be:d1:c2:fc:3d:
31:11:5e:92:12:4b:5f:f6:aa:0a:7d:14:8b:fb:c9:7b:e6:0d:
dd:a9:2d:d4:8c:d9:04:d2:70:6e:6d:ea:b3:1d:78:de:2a:dd:
78:05:ff:b8:5b:4d:a9:49:d2:66:f7:d8:7b:89:a6:d7:85:67:
f6:e3:83:0b:8d:09:28:24:de:2b:94:53:83:e2:95:e3:af:6e:
ea:59:3b:ee:d4:e8:09:31:3a:af:e2:0c:78:4e:71:e8:93:89:
83:a6:ad:f6:2b:c2:9e:31:3c:9b:f5:14:af:94:d9:ba:21:dd:
e7:46:06:41:e7:ce:50:78:5a:c8:8c:98:15:4a:9d:d9:85:02:
a5:ac:36:41:84:b2:04:92:68:95:73:05:89:29:7b:ca:eb:68:
ba:92:ca:90:37:2c:22:b2:3e:3e:f8:3a:b6:cf:43:af:e7:b6:
a2:84:a8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:34:16 2025 by rpki-client