Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5DStw3JiYMo8QnDAcZZE5UhgCZP5dSuSxQGJtx7qFzgd/0/AS28656.roa
File: AS28656.roa (raw, json)
Hash identifier: qLn2mRgM/lvoKzPZLYVFT7Bv0rteLEpTKVROb722JkM=
Subject key identifier: 65:8A:B1:3A:D4:BB:A5:E1:41:64:45:C6:DF:95:FB:1A:1B:A0:00:E0
Certificate issuer: /CN=1A9FDA07976626D41E7DF6DE52A2B0D96B47C57E
Certificate serial: 7A6A5BE0129AB6AA5F39FF82169D9C6A997AD13F
Authority key identifier: 1A:9F:DA:07:97:66:26:D4:1E:7D:F6:DE:52:A2:B0:D9:6B:47:C5:7E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/1A9FDA07976626D41E7DF6DE52A2B0D96B47C57E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5DStw3JiYMo8QnDAcZZE5UhgCZP5dSuSxQGJtx7qFzgd/0/AS28656.roa
Signing time: Tue 12 Sep 2023 15:24:44 +0000
ROA not before: Tue 12 Sep 2023 15:19:44 +0000
ROA not after: Tue 10 Sep 2024 15:24:44 +0000
asID: 28656
IP address blocks: 45.190.116.0/22 maxlen: 22
45.190.116.0/24 maxlen: 24
45.190.118.0/24 maxlen: 24
45.190.119.0/24 maxlen: 24
177.55.224.0/20 maxlen: 20
177.55.224.0/21 maxlen: 21
177.55.224.0/22 maxlen: 22
177.55.224.0/24 maxlen: 24
177.55.225.0/24 maxlen: 24
177.55.226.0/24 maxlen: 24
177.55.227.0/24 maxlen: 24
177.55.228.0/24 maxlen: 24
177.55.229.0/24 maxlen: 24
177.55.230.0/24 maxlen: 24
177.55.231.0/24 maxlen: 24
177.55.232.0/21 maxlen: 21
177.55.232.0/24 maxlen: 24
177.55.233.0/24 maxlen: 24
177.55.234.0/24 maxlen: 24
177.55.235.0/24 maxlen: 24
177.55.236.0/24 maxlen: 24
177.55.237.0/24 maxlen: 24
177.55.238.0/24 maxlen: 24
177.55.239.0/24 maxlen: 24
179.0.72.0/22 maxlen: 22
179.0.72.0/24 maxlen: 24
179.0.73.0/24 maxlen: 24
179.0.74.0/24 maxlen: 24
179.0.75.0/24 maxlen: 24
190.52.72.0/22 maxlen: 22
190.52.72.0/24 maxlen: 24
190.52.73.0/24 maxlen: 24
190.52.74.0/24 maxlen: 24
201.77.160.0/20 maxlen: 20
201.77.160.0/21 maxlen: 21
201.77.160.0/22 maxlen: 22
201.77.160.0/23 maxlen: 23
201.77.160.0/24 maxlen: 24
201.77.161.0/24 maxlen: 24
201.77.162.0/23 maxlen: 23
201.77.162.0/24 maxlen: 24
201.77.163.0/24 maxlen: 24
201.77.164.0/22 maxlen: 22
201.77.164.0/23 maxlen: 23
201.77.164.0/24 maxlen: 24
201.77.165.0/24 maxlen: 24
201.77.166.0/23 maxlen: 23
201.77.166.0/24 maxlen: 24
201.77.167.0/24 maxlen: 24
201.77.168.0/21 maxlen: 21
201.77.168.0/22 maxlen: 22
201.77.168.0/23 maxlen: 23
201.77.168.0/24 maxlen: 24
201.77.169.0/24 maxlen: 24
201.77.170.0/23 maxlen: 23
201.77.170.0/24 maxlen: 24
201.77.171.0/24 maxlen: 24
201.77.172.0/22 maxlen: 22
201.77.172.0/23 maxlen: 23
201.77.172.0/24 maxlen: 24
201.77.173.0/24 maxlen: 24
201.77.174.0/23 maxlen: 23
201.77.174.0/24 maxlen: 24
201.77.175.0/24 maxlen: 24
2804:33cc::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:6a:5b:e0:12:9a:b6:aa:5f:39:ff:82:16:9d:9c:6a:99:7a:d1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A9FDA07976626D41E7DF6DE52A2B0D96B47C57E
Validity
Not Before: Sep 12 15:19:44 2023 GMT
Not After : Sep 10 15:24:44 2024 GMT
Subject: CN=658AB13AD4BBA5E1416445C6DF95FB1A1BA000E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f5:79:79:cb:51:8d:36:5a:1b:ae:82:1a:83:
47:4e:f2:42:73:c1:ff:ed:0d:9b:ed:8c:fe:72:4b:
78:fe:59:0e:f3:50:fe:49:9b:d0:06:77:19:04:13:
af:0c:69:db:94:93:bf:67:b5:40:c3:b1:e7:02:2b:
3d:f5:0a:4d:c9:06:11:dd:16:1c:36:94:00:68:78:
70:60:a9:97:a5:e2:1e:ea:ec:f2:e9:2b:ec:e0:bb:
84:3c:7e:d6:21:c3:aa:30:5b:22:b6:49:1f:37:38:
14:da:d3:09:8c:36:de:e8:dd:35:41:04:7f:36:b0:
93:cc:58:ec:32:52:f6:63:42:8f:8d:07:22:49:6f:
bc:44:b6:e9:ff:82:6d:6b:35:d6:c0:e3:8d:75:40:
3f:ce:11:7d:3a:40:a8:48:82:92:45:31:0f:09:f5:
bc:e6:e5:35:eb:f1:4d:04:d8:6c:9f:55:62:bf:43:
5d:ca:d4:d2:95:e1:ad:c4:f6:47:c0:17:97:a0:c8:
a8:85:2a:cf:8e:ae:40:06:7d:c3:a5:80:19:b3:3d:
de:67:18:6b:55:7b:80:37:be:51:2d:ef:61:f3:8e:
40:05:af:fb:1b:b1:e4:37:3b:fc:17:1e:9a:ba:5f:
d2:83:09:e2:86:14:d1:80:f6:d9:5b:14:d3:4a:d0:
8d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:8A:B1:3A:D4:BB:A5:E1:41:64:45:C6:DF:95:FB:1A:1B:A0:00:E0
X509v3 Authority Key Identifier:
keyid:1A:9F:DA:07:97:66:26:D4:1E:7D:F6:DE:52:A2:B0:D9:6B:47:C5:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5DStw3JiYMo8QnDAcZZE5UhgCZP5dSuSxQGJtx7qFzgd/0/1A9FDA07976626D41E7DF6DE52A2B0D96B47C57E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/1A9FDA07976626D41E7DF6DE52A2B0D96B47C57E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5DStw3JiYMo8QnDAcZZE5UhgCZP5dSuSxQGJtx7qFzgd/0/AS28656.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.190.116.0/22
177.55.224.0/20
179.0.72.0/22
190.52.72.0/22
201.77.160.0/20
IPv6:
2804:33cc::/32
Signature Algorithm: sha256WithRSAEncryption
64:f4:20:36:12:2e:cc:ef:81:c7:e5:64:05:05:21:ea:c9:a0:
7b:ed:a7:38:b4:45:df:8b:f5:94:07:f3:83:81:2a:bc:27:58:
97:15:d6:ec:52:82:a8:a3:4f:c4:e6:36:5d:97:fe:3a:bf:33:
7e:98:0a:69:60:41:40:c9:be:5a:a3:a7:e3:df:0a:0b:f5:3a:
2c:67:8d:35:f9:85:c3:d6:1f:67:86:f7:6f:ab:d1:a4:8e:ce:
bc:47:61:63:7d:56:2e:c2:c3:74:91:f2:8f:4c:3d:96:96:28:
1f:fb:9b:ce:55:77:24:7b:4f:6f:ea:ca:03:67:30:e4:08:af:
ba:0b:f4:f3:07:a3:19:8d:31:b3:e2:1f:3f:0a:69:4e:bb:90:
59:48:d5:09:e6:e5:f8:c0:96:df:2c:46:76:8f:07:76:46:4c:
3a:ec:7c:aa:05:9c:d6:9a:5c:81:d3:24:5a:ad:6f:61:12:ff:
2c:cb:74:a7:7f:3f:4a:88:a6:5a:97:a8:23:02:12:75:f2:29:
aa:5a:ba:e7:e0:f3:35:46:13:1c:7d:27:6b:12:d3:38:b9:a2:
9f:27:51:01:cb:58:f8:de:ac:8e:30:3f:11:2e:b0:35:3d:12:
f9:bd:5e:09:70:82:b4:60:04:84:0d:4c:31:b4:96:8d:42:d2:
ac:b4:c5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:26:54 2025 by rpki-client