Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/3137302e38302e3230352e302f32342d3234203d3e20323733353134.roa
File: 3137302e38302e3230352e302f32342d3234203d3e20323733353134.roa (raw, json)
Hash identifier: hCGC6JA9B6F0si0XC9jRNhzt1jK9OLnPAxVhWJ/Vg0w=
Subject key identifier: 74:1B:82:40:97:EA:42:2D:F0:80:4F:06:43:0C:54:6A:F7:9E:51:CC
Certificate issuer: /CN=E43FC22F53F1011D8D213F6EB00C5A472E9235D9
Certificate serial: 540DAD5887B128FBE751C2F7E6EF94B3BCE4D12D
Authority key identifier: E4:3F:C2:2F:53:F1:01:1D:8D:21:3F:6E:B0:0C:5A:47:2E:92:35:D9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/3137302e38302e3230352e302f32342d3234203d3e20323733353134.roa
Signing time: Mon 17 Feb 2025 14:43:37 +0000
ROA not before: Mon 17 Feb 2025 14:38:37 +0000
ROA not after: Mon 16 Feb 2026 14:43:37 +0000
asID: 273514
IP address blocks: 170.80.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.crl
rsync://rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 18:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:0d:ad:58:87:b1:28:fb:e7:51:c2:f7:e6:ef:94:b3:bc:e4:d1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E43FC22F53F1011D8D213F6EB00C5A472E9235D9
Validity
Not Before: Feb 17 14:38:37 2025 GMT
Not After : Feb 16 14:43:37 2026 GMT
Subject: CN=741B824097EA422DF0804F06430C546AF79E51CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:61:a9:28:8b:e2:c3:35:ad:da:b3:61:c4:4c:
c4:07:33:f6:f6:4b:69:a3:47:24:b1:5d:52:1c:ea:
c6:4a:43:9b:c5:33:29:0d:94:35:48:89:0a:5f:78:
22:47:26:81:47:f5:46:f7:ae:5c:55:c8:84:63:e2:
f4:7b:bb:79:7a:5d:20:3e:d3:f0:9d:8f:bf:06:8e:
d5:1c:ab:0f:f6:b2:da:64:37:78:95:03:32:83:91:
8f:90:90:f1:47:8e:8a:6c:cb:66:7f:24:58:6d:33:
17:26:bf:e8:1a:8a:70:e7:06:c1:3c:da:b3:70:c2:
66:a3:99:2b:7e:f1:57:e2:7e:6a:c1:3c:0d:43:76:
42:2b:48:40:d5:aa:1b:61:6e:f7:53:9a:10:52:35:
26:16:8b:41:a9:b1:fd:74:6f:61:f3:79:cd:b4:61:
c7:07:ec:bd:e8:5b:ac:ba:bd:84:45:57:a8:53:ec:
8b:ef:51:f8:7a:d5:4a:52:5f:24:77:6b:25:ba:28:
b6:9c:f7:8d:a7:88:56:3b:18:0b:b8:50:68:ab:ec:
bd:e8:89:bb:af:6b:b8:be:fc:1f:0c:bd:1d:9c:92:
a9:41:4b:3e:34:e7:84:4c:ed:a7:c1:d9:2e:63:34:
d7:9f:58:a4:36:1e:e2:6a:f6:90:da:50:a0:cb:09:
ee:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1B:82:40:97:EA:42:2D:F0:80:4F:06:43:0C:54:6A:F7:9E:51:CC
X509v3 Authority Key Identifier:
keyid:E4:3F:C2:2F:53:F1:01:1D:8D:21:3F:6E:B0:0C:5A:47:2E:92:35:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E43FC22F53F1011D8D213F6EB00C5A472E9235D9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/51GJZoQNBVGZEsco76LGi9MkpjMB9DViSQfvG4fpRid/0/3137302e38302e3230352e302f32342d3234203d3e20323733353134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.80.205.0/24
Signature Algorithm: sha256WithRSAEncryption
87:5a:3a:e1:e7:b7:73:1a:38:6e:fa:95:1a:9f:d3:a2:8c:4b:
82:1a:72:a3:10:71:8c:7d:f9:9d:5a:42:b0:25:92:bf:e8:ba:
b0:c1:92:fa:52:57:ba:d2:9c:c7:8d:42:18:7c:39:1a:6e:64:
a3:bd:db:f1:27:28:32:67:5b:84:ce:ca:1f:90:1a:12:b7:0b:
77:f1:32:80:01:f2:93:e7:82:39:88:d0:26:fc:be:bd:9a:d1:
1a:00:19:5d:79:da:85:42:b5:ac:12:69:ea:c7:54:7c:36:1e:
c9:ba:4d:9b:b4:6d:40:41:ea:8b:85:39:ab:8a:8b:b7:49:d8:
59:45:1a:8d:ab:dc:46:57:cc:0d:53:e5:02:2c:5e:a3:a0:c9:
cd:eb:1c:ab:06:e0:ad:79:84:c8:d7:59:9a:01:cc:d3:c7:0e:
62:cc:48:c3:95:c5:50:9f:a0:aa:07:b0:5f:e9:0e:02:cd:bd:
5d:dc:fa:ae:17:8f:25:06:66:a7:33:f7:12:b9:cf:66:40:eb:
ec:61:2f:e7:9b:6d:dc:dc:92:1b:4c:bd:a9:d1:d9:eb:6f:b6:
87:a0:24:d1:ed:61:b7:22:be:6a:21:5c:ed:72:08:2e:fb:5a:
3b:10:9d:32:2e:9d:32:64:a7:31:3d:95:c4:e9:32:e2:8e:c2:
bf:de:42:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:17:00 2025 by rpki-client