Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/52ngU2PkeTRhdAjBzpU4ehUBpeyPrMBqtzGgawpmq7id/0/323830343a363233633a3a2f33322d313238203d3e20323639323835.roa
File: 323830343a363233633a3a2f33322d313238203d3e20323639323835.roa (raw, json)
Hash identifier: P/aI2fOCjmqHtLTryd38yNfUhNiOBbbGFBS63z6FtWU=
Subject key identifier: B3:7F:25:0F:B2:B5:46:66:17:8E:86:37:40:E4:B2:23:B9:28:CD:F4
Certificate issuer: /CN=3D4867F11A1D652682FA95ED911B20D81139853D
Certificate serial: 28B3B9C6EFB0531B4B77EE67A5322D59743E5C11
Authority key identifier: 3D:48:67:F1:1A:1D:65:26:82:FA:95:ED:91:1B:20:D8:11:39:85:3D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D4867F11A1D652682FA95ED911B20D81139853D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/52ngU2PkeTRhdAjBzpU4ehUBpeyPrMBqtzGgawpmq7id/0/323830343a363233633a3a2f33322d313238203d3e20323639323835.roa
Signing time: Wed 28 Aug 2024 17:13:01 +0000
ROA not before: Wed 28 Aug 2024 17:08:01 +0000
ROA not after: Wed 27 Aug 2025 17:13:01 +0000
asID: 269285
IP address blocks: 2804:623c::/32 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:b3:b9:c6:ef:b0:53:1b:4b:77:ee:67:a5:32:2d:59:74:3e:5c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D4867F11A1D652682FA95ED911B20D81139853D
Validity
Not Before: Aug 28 17:08:01 2024 GMT
Not After : Aug 27 17:13:01 2025 GMT
Subject: CN=B37F250FB2B54666178E863740E4B223B928CDF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:99:21:17:0a:25:d1:6a:e5:26:2d:ed:93:f1:
78:db:b5:40:8d:99:ac:a4:bb:aa:b8:e8:22:b7:df:
55:be:28:39:bc:10:02:41:a3:9f:a2:bb:c2:b6:0f:
7f:d2:e3:7d:11:e4:80:c1:72:b6:b3:9e:d1:88:4c:
84:51:53:ef:0b:23:51:76:a5:29:c6:a3:0f:ad:66:
02:58:76:6c:b5:4b:b9:b8:89:31:38:e2:16:c8:6a:
42:ce:64:ea:a2:6f:53:73:68:2c:7f:83:8d:f5:7d:
82:e9:d9:a4:2f:16:b5:96:4e:ee:e8:7c:5e:77:26:
e1:7b:1d:70:a6:b3:ee:ad:36:ee:9a:2e:0b:63:48:
bd:1f:da:62:7d:ec:29:5e:44:00:0c:78:7d:9d:c5:
06:9c:3a:20:78:4a:c8:c8:29:37:35:83:ff:4c:bb:
5d:4c:28:78:29:8e:50:56:bb:83:10:12:7d:54:12:
86:29:27:ec:d7:6d:b7:d2:c4:6d:db:50:e9:33:53:
f8:a4:11:28:d8:47:ce:76:46:c4:2e:48:57:e5:37:
b8:63:f6:4f:2b:e4:e6:b4:b1:5e:20:ab:a6:9d:b1:
f6:d1:9f:0c:c1:dd:4d:3a:3a:74:af:bb:9d:37:f1:
9d:7c:fd:5c:67:21:3d:d9:63:a6:08:2b:cb:6a:67:
83:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7F:25:0F:B2:B5:46:66:17:8E:86:37:40:E4:B2:23:B9:28:CD:F4
X509v3 Authority Key Identifier:
keyid:3D:48:67:F1:1A:1D:65:26:82:FA:95:ED:91:1B:20:D8:11:39:85:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/52ngU2PkeTRhdAjBzpU4ehUBpeyPrMBqtzGgawpmq7id/0/3D4867F11A1D652682FA95ED911B20D81139853D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3D4867F11A1D652682FA95ED911B20D81139853D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/52ngU2PkeTRhdAjBzpU4ehUBpeyPrMBqtzGgawpmq7id/0/323830343a363233633a3a2f33322d313238203d3e20323639323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:623c::/32
Signature Algorithm: sha256WithRSAEncryption
68:75:4f:4e:f6:3e:1b:ab:93:6d:7d:ba:67:df:52:af:19:17:
e1:d1:9d:74:31:30:75:f5:5f:93:0a:f1:3b:03:d4:8c:37:ed:
c8:a3:f4:5a:fd:88:43:f4:c1:ce:a5:de:05:36:78:f1:bc:c5:
8f:73:cb:b8:43:8e:dc:3b:fa:c9:22:d3:85:75:fa:99:44:44:
5e:60:5c:70:41:94:9e:76:f6:60:aa:44:a4:9d:be:26:4e:15:
5a:d7:67:dd:4b:77:ed:78:fc:3d:41:ac:65:60:0e:a9:54:c4:
d7:17:a5:93:16:05:d2:85:ad:43:61:9e:17:02:3b:d5:32:2a:
db:cf:fe:32:e5:3e:8e:a5:b5:00:5c:ff:cc:39:cd:4b:50:23:
b0:70:cc:be:f7:fb:d6:a1:cb:8a:b5:2b:8e:ae:7f:70:4a:a4:
c0:f2:9f:bc:41:29:45:c1:ee:5c:5b:32:4f:8f:bf:54:ef:93:
a9:b2:c0:8e:ca:e7:b8:16:53:b1:26:8e:55:85:b0:e6:02:6b:
5b:4a:31:c9:a7:f2:d0:6b:3b:ee:3a:ad:f0:dc:d9:bb:ed:c0:
62:57:9d:9a:3a:43:52:ee:1c:fd:f0:c0:22:05:bf:b0:22:89:
5d:00:70:8a:22:20:12:ce:c9:77:4c:3c:4f:35:5d:eb:2c:e2:
12:2f:19:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:26:43 2025 by rpki-client