Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4soZytyXuSQpLSJXeqEjPA5iFUQW4aQVKVhFJ9g2oVZn/1/3133382e39392e32342e302f32322d3234203d3e203631383639.roa
File: 3133382e39392e32342e302f32322d3234203d3e203631383639.roa (raw, json)
Hash identifier: WgI8Zhb1GLe/K5Bakvg6hlLt+5T+jD5n4GEb0PPSpVQ=
Subject key identifier: 34:73:5B:49:F6:87:AB:A9:0F:DC:0B:BF:7B:75:24:31:29:3B:A3:96
Certificate issuer: /CN=E7D63E8C642CED33A55042FA42DB4DBC8D574437
Certificate serial: 03AC254F93C3CFCF2E22219BE9E1732E67BBD262
Authority key identifier: E7:D6:3E:8C:64:2C:ED:33:A5:50:42:FA:42:DB:4D:BC:8D:57:44:37
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E7D63E8C642CED33A55042FA42DB4DBC8D574437.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4soZytyXuSQpLSJXeqEjPA5iFUQW4aQVKVhFJ9g2oVZn/1/3133382e39392e32342e302f32322d3234203d3e203631383639.roa
Signing time: Thu 06 Mar 2025 18:52:22 +0000
ROA not before: Thu 06 Mar 2025 18:47:22 +0000
ROA not after: Thu 05 Mar 2026 18:52:22 +0000
asID: 61869
IP address blocks: 138.99.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ac:25:4f:93:c3:cf:cf:2e:22:21:9b:e9:e1:73:2e:67:bb:d2:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E7D63E8C642CED33A55042FA42DB4DBC8D574437
Validity
Not Before: Mar 6 18:47:22 2025 GMT
Not After : Mar 5 18:52:22 2026 GMT
Subject: CN=34735B49F687ABA90FDC0BBF7B752431293BA396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:49:8c:20:78:4b:31:d0:b9:06:0d:ef:16:
5e:04:04:a5:4b:b8:c6:73:6c:d2:56:21:ce:2b:2d:
98:80:06:ad:2e:a3:8e:5a:39:0c:ec:d1:90:b8:8b:
0c:70:af:d4:d2:3f:e4:4e:a7:3e:94:b3:28:10:2f:
9c:7d:50:cb:6d:f8:64:0f:85:2e:03:cf:f1:46:42:
3f:37:61:ea:18:a4:8b:45:f2:04:67:29:5f:e3:79:
94:54:fb:62:30:27:db:fb:7e:ea:fa:c7:20:fd:b5:
92:4c:5d:1b:2a:4d:af:64:8b:49:f2:23:e7:bf:f3:
21:7c:89:4c:db:eb:b2:85:9d:43:c4:3c:f6:3a:67:
4d:a4:b4:0a:46:df:aa:ea:0d:12:ce:73:0f:e9:12:
b2:8d:85:fd:be:ae:fd:df:7c:f4:17:58:d7:e0:e3:
a2:51:25:15:02:3a:47:5c:d2:58:72:35:5d:b3:a4:
97:10:cd:cd:7f:30:27:72:37:db:de:63:2b:c4:f9:
23:10:4d:e9:da:49:f4:88:8a:ba:63:03:06:c4:b4:
38:a6:c5:47:25:ef:6e:0a:67:d0:c5:d2:de:87:4b:
a0:21:b3:bf:97:c8:40:53:d7:17:c8:3d:df:06:ab:
b2:f6:d1:c4:cb:58:9c:da:a7:9f:70:b6:34:11:01:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:73:5B:49:F6:87:AB:A9:0F:DC:0B:BF:7B:75:24:31:29:3B:A3:96
X509v3 Authority Key Identifier:
keyid:E7:D6:3E:8C:64:2C:ED:33:A5:50:42:FA:42:DB:4D:BC:8D:57:44:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4soZytyXuSQpLSJXeqEjPA5iFUQW4aQVKVhFJ9g2oVZn/1/E7D63E8C642CED33A55042FA42DB4DBC8D574437.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E7D63E8C642CED33A55042FA42DB4DBC8D574437.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4soZytyXuSQpLSJXeqEjPA5iFUQW4aQVKVhFJ9g2oVZn/1/3133382e39392e32342e302f32322d3234203d3e203631383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:3e:26:70:63:74:b2:af:3d:47:91:72:b3:34:cf:25:42:1c:
35:4b:a4:3d:93:b1:30:30:7d:81:53:5c:90:bd:de:ac:fc:26:
91:d6:04:18:75:b7:44:8e:f4:91:a7:6f:66:bf:ed:bf:01:00:
5c:d1:e1:1f:ce:d0:7a:74:44:52:1d:0f:b1:ff:70:a6:91:d1:
e6:38:3c:bc:b2:6f:be:b7:a1:88:48:3e:83:55:c3:e8:33:de:
c8:b4:28:14:35:ce:77:00:01:8d:8c:34:50:f2:54:94:46:5b:
2d:2b:c9:24:7e:1b:08:30:2f:9f:79:3a:bb:f0:4b:01:16:28:
74:25:1f:31:32:6e:5e:94:82:d1:49:fd:bc:4b:84:99:1d:79:
be:48:38:07:70:69:1c:ce:e9:c2:f9:6f:ca:c4:3a:0a:da:41:
2a:47:d6:7a:ad:12:69:ef:d6:83:1f:fd:df:01:50:e7:e4:ef:
34:7d:a8:3a:60:0c:63:8e:47:46:22:1b:31:f2:e3:7e:06:81:
35:96:49:2d:57:b1:f0:7b:75:46:1f:2f:75:0c:f1:a2:87:f8:
4d:93:1b:81:47:ff:63:55:a2:8a:3f:49:f3:a7:ba:98:3f:86:
90:8a:ed:6f:02:6b:b3:9b:ec:4d:67:b5:03:51:13:e1:bb:61:
70:a4:7d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:52:38 2025 by rpki-client