Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/59vsPkhg8zPtVbZTKY3SirBSwEFgqus9MvaMXZF4Qgio/0/3138392e35312e3136342e302f32322d3234203d3e20323730373934.roa
File: 3138392e35312e3136342e302f32322d3234203d3e20323730373934.roa (raw, json)
Hash identifier: AsQR1xL063fQ5oPesbqAY+mOv+UrbzaYsJQw3qOsOYs=
Subject key identifier: 9A:86:AD:85:58:A1:F3:28:4C:79:A7:7D:76:06:F1:07:DA:A6:D0:D9
Certificate issuer: /CN=BF858D763EACB66391C131531036E078E22F45D5
Certificate serial: 130904211A0C7C9754589BE434079FB46947D931
Authority key identifier: BF:85:8D:76:3E:AC:B6:63:91:C1:31:53:10:36:E0:78:E2:2F:45:D5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF858D763EACB66391C131531036E078E22F45D5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/59vsPkhg8zPtVbZTKY3SirBSwEFgqus9MvaMXZF4Qgio/0/3138392e35312e3136342e302f32322d3234203d3e20323730373934.roa
Signing time: Fri 03 Jan 2025 12:23:42 +0000
ROA not before: Fri 03 Jan 2025 12:18:42 +0000
ROA not after: Fri 02 Jan 2026 12:23:42 +0000
asID: 270794
IP address blocks: 189.51.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:09:04:21:1a:0c:7c:97:54:58:9b:e4:34:07:9f:b4:69:47:d9:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF858D763EACB66391C131531036E078E22F45D5
Validity
Not Before: Jan 3 12:18:42 2025 GMT
Not After : Jan 2 12:23:42 2026 GMT
Subject: CN=9A86AD8558A1F3284C79A77D7606F107DAA6D0D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:bd:33:0b:99:61:1a:97:53:f3:95:0e:06:
01:c5:f4:8f:9d:69:6d:88:7b:a1:87:f8:95:4b:05:
fb:34:41:cd:16:93:26:90:4d:ca:79:73:df:55:30:
d1:71:4b:6a:d5:3f:0a:08:a7:94:ca:09:97:2f:13:
36:0e:df:55:6a:02:4c:50:2e:1b:43:6c:48:d4:a1:
33:f5:89:be:80:e1:a7:44:80:af:7d:e2:86:2a:e8:
2a:ad:12:3a:a9:8a:90:63:7a:25:b1:13:8c:ce:d4:
5c:11:5c:74:61:31:2c:07:1e:44:72:ec:78:3b:c4:
59:4b:cb:a7:5c:2b:9f:73:ed:72:21:a5:4e:2e:b2:
f1:a3:82:15:7f:00:8e:a2:1f:53:e2:df:d0:28:f0:
6e:a7:d0:6b:23:ac:2e:cf:e8:1a:9a:5a:3a:66:84:
47:69:d6:73:61:c5:64:24:30:8b:45:78:00:cd:bc:
70:be:6a:1f:93:e6:1c:8a:3b:86:39:f7:2e:b1:54:
c7:0d:95:55:0c:ea:64:c1:2d:66:c1:22:a7:f7:ee:
7f:71:c0:7f:86:93:0c:2b:f7:b5:c2:1d:52:7d:d3:
e4:4a:57:3d:6b:11:de:c1:3e:52:71:e9:ba:a3:5c:
a6:b3:1e:b6:f8:44:73:d3:3d:21:28:18:96:3c:2e:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:86:AD:85:58:A1:F3:28:4C:79:A7:7D:76:06:F1:07:DA:A6:D0:D9
X509v3 Authority Key Identifier:
keyid:BF:85:8D:76:3E:AC:B6:63:91:C1:31:53:10:36:E0:78:E2:2F:45:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/59vsPkhg8zPtVbZTKY3SirBSwEFgqus9MvaMXZF4Qgio/0/BF858D763EACB66391C131531036E078E22F45D5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF858D763EACB66391C131531036E078E22F45D5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/59vsPkhg8zPtVbZTKY3SirBSwEFgqus9MvaMXZF4Qgio/0/3138392e35312e3136342e302f32322d3234203d3e20323730373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.51.164.0/22
Signature Algorithm: sha256WithRSAEncryption
32:4f:31:36:ca:f4:79:e9:d8:4c:35:ad:c2:da:d9:49:6b:0c:
27:50:48:b4:26:e5:78:07:fa:f5:c4:47:72:83:44:10:0d:6e:
5a:1d:d5:b0:7d:65:25:ec:57:51:87:fb:d2:1a:d2:c5:a4:11:
9a:eb:dd:ff:58:b0:f9:12:1f:d5:16:04:47:a2:12:c1:72:66:
62:9c:7f:73:bb:c2:bf:33:ec:a9:31:fc:3b:99:56:5a:3b:ab:
28:72:83:77:f1:17:57:db:fe:e4:dd:60:b4:81:76:9f:c1:a7:
e1:2d:ed:01:ff:f1:84:b0:da:1e:fe:e9:32:60:91:40:66:61:
39:6c:17:49:3e:e6:f2:15:d1:d7:1a:61:2a:ad:cf:24:de:38:
05:9b:91:ea:c1:38:ad:45:dd:f8:e3:4c:92:7c:68:4f:b8:61:
d0:a2:69:92:cf:33:e4:90:25:47:b6:ea:1a:4b:74:6d:b1:cc:
d7:07:0b:56:0d:f0:6e:43:f2:1a:21:49:8a:ea:ac:13:18:ec:
be:c3:e1:b9:74:c8:4b:02:1f:71:fa:c3:6a:82:1a:1c:6b:93:
20:a4:5f:d0:43:c6:17:e0:3e:88:da:2a:bd:80:64:97:48:2b:
f7:e2:25:82:c9:e4:69:f6:94:14:c6:23:24:73:d0:e9:2d:6e:
b3:0f:3b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:27:04 2025 by rpki-client