Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/3137372e31322e3235342e302f32332d3233203d3e20323632383636.roa
File: 3137372e31322e3235342e302f32332d3233203d3e20323632383636.roa (raw, json)
Hash identifier: g64MRBb6IOkdArzSW2le3mKfJJDc/ODSm0pY2Wao/vU=
Subject key identifier: F6:94:C5:D8:DC:A7:70:4F:C8:32:4A:C2:0D:DC:A6:44:D1:2E:13:E1
Certificate issuer: /CN=732B1140085142A7D7474788EEF465DEABBE5080
Certificate serial: 0BC404453BA20EF8EEBBD42DF4ADC171D9BBAA15
Authority key identifier: 73:2B:11:40:08:51:42:A7:D7:47:47:88:EE:F4:65:DE:AB:BE:50:80
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/732B1140085142A7D7474788EEF465DEABBE5080.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/3137372e31322e3235342e302f32332d3233203d3e20323632383636.roa
Signing time: Thu 06 Mar 2025 01:21:40 +0000
ROA not before: Thu 06 Mar 2025 01:16:40 +0000
ROA not after: Thu 05 Mar 2026 01:21:40 +0000
asID: 262866
IP address blocks: 177.12.254.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/732B1140085142A7D7474788EEF465DEABBE5080.crl
rsync://rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/732B1140085142A7D7474788EEF465DEABBE5080.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/732B1140085142A7D7474788EEF465DEABBE5080.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:c4:04:45:3b:a2:0e:f8:ee:bb:d4:2d:f4:ad:c1:71:d9:bb:aa:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=732B1140085142A7D7474788EEF465DEABBE5080
Validity
Not Before: Mar 6 01:16:40 2025 GMT
Not After : Mar 5 01:21:40 2026 GMT
Subject: CN=F694C5D8DCA7704FC8324AC20DDCA644D12E13E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:df:c7:da:cb:30:df:77:51:5a:11:e4:1d:65:
92:df:5d:f0:ff:2f:de:ff:8a:06:c3:c8:e6:df:ba:
b6:3f:7a:ef:3c:5f:28:9b:e7:e1:db:8f:3c:6b:8c:
2f:ec:0e:ba:7a:d5:8c:6b:23:df:98:a2:07:76:6d:
e2:1b:c0:36:a2:22:24:58:97:d9:7c:19:9d:d8:48:
45:da:ef:bf:39:49:7b:b7:83:bd:9a:af:20:d1:21:
d2:53:77:fc:13:ef:11:30:32:da:5f:61:39:e4:10:
eb:cc:43:6e:4d:cc:75:c5:df:c5:18:41:19:7c:82:
f8:42:9c:55:45:be:ef:28:cf:68:a1:a0:85:8d:c0:
0f:ee:f4:4e:5d:04:22:38:db:38:f8:1e:f1:92:d8:
3a:80:6b:10:10:f0:4d:41:55:9f:f9:f1:2b:f6:68:
6a:41:4f:4f:72:e3:24:f0:34:77:a7:52:3d:d6:70:
58:4e:75:45:2f:b8:0a:52:1a:05:9a:3c:15:40:dc:
fd:cf:fe:f1:04:df:8c:62:57:af:66:18:4e:3b:ae:
95:5d:aa:5b:f0:64:09:f3:98:33:48:0d:42:09:47:
6d:b8:f3:8b:b6:8b:ad:53:b5:03:f9:f7:53:d0:fd:
d4:d2:06:54:46:1d:be:22:8e:76:22:f0:73:6c:98:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:94:C5:D8:DC:A7:70:4F:C8:32:4A:C2:0D:DC:A6:44:D1:2E:13:E1
X509v3 Authority Key Identifier:
keyid:73:2B:11:40:08:51:42:A7:D7:47:47:88:EE:F4:65:DE:AB:BE:50:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/732B1140085142A7D7474788EEF465DEABBE5080.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/732B1140085142A7D7474788EEF465DEABBE5080.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4s5hLinVUasaeu9eoJQPw6DUzZ242LEB8XpZTuKZNSEc/1/3137372e31322e3235342e302f32332d3233203d3e20323632383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.12.254.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:65:38:38:51:8c:86:34:18:14:87:0d:be:73:8d:79:49:2f:
29:e1:9e:d8:59:3b:cc:f8:60:a0:1c:aa:ff:bd:a9:89:aa:0e:
07:03:98:1d:51:6d:7a:bc:64:d9:26:2d:41:82:d4:8f:24:ad:
e1:d9:a3:23:79:eb:0d:9f:2d:69:06:ef:c2:33:4a:77:2a:40:
b4:87:f3:98:48:66:b6:3f:be:82:17:f2:7a:e4:9b:2b:c7:10:
7d:0a:96:cc:53:22:ee:8b:98:d7:14:6e:a7:b8:58:dd:ec:47:
83:88:85:70:c4:c9:cb:cb:4e:8f:ef:da:70:22:29:f9:29:75:
22:39:ee:50:56:5b:29:98:76:d5:a0:0a:0d:dd:33:0a:25:2f:
33:54:5d:52:91:2e:26:0e:fe:ae:78:6b:84:bc:61:02:8b:0f:
de:52:2b:41:ef:56:49:50:37:bb:07:65:70:49:3e:55:89:5e:
3b:c3:61:ec:f3:38:75:fe:2f:31:01:73:ab:16:09:a2:e3:30:
68:2d:07:b4:65:d6:cb:f1:ef:a6:5b:6a:04:73:df:69:99:50:
d3:c4:52:2f:06:be:13:13:b6:3a:10:2c:6b:0e:1e:8e:2f:36:
18:b5:f8:b9:66:46:c5:39:50:fc:33:cb:9f:0b:2c:e7:c1:74:
3d:10:04:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:33:43 2025 by rpki-client