Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/3137302e38322e3131362e302f32332d3332203d3e20323632313832.roa
File: 3137302e38322e3131362e302f32332d3332203d3e20323632313832.roa (raw, json)
Hash identifier: +Xr0+D/7EJPnhJlpjhC6+ydoRrry4xp/MbE6TfkqcnI=
Subject key identifier: 90:F2:44:1A:ED:B4:7C:C4:9E:16:53:DF:9B:9D:3E:2C:09:45:20:CC
Certificate issuer: /CN=695A28FC133EB5408B9BA126D9FFE20884EDECD2
Certificate serial: 43C6891B3DC5AEB1AACFC35B9030DAD36305C11B
Authority key identifier: 69:5A:28:FC:13:3E:B5:40:8B:9B:A1:26:D9:FF:E2:08:84:ED:EC:D2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/3137302e38322e3131362e302f32332d3332203d3e20323632313832.roa
Signing time: Wed 26 Mar 2025 11:43:40 +0000
ROA not before: Wed 26 Mar 2025 11:38:40 +0000
ROA not after: Wed 25 Mar 2026 11:43:40 +0000
asID: 262182
IP address blocks: 170.82.116.0/23 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.crl
rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 12 Apr 2025 01:53:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:c6:89:1b:3d:c5:ae:b1:aa:cf:c3:5b:90:30:da:d3:63:05:c1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695A28FC133EB5408B9BA126D9FFE20884EDECD2
Validity
Not Before: Mar 26 11:38:40 2025 GMT
Not After : Mar 25 11:43:40 2026 GMT
Subject: CN=90F2441AEDB47CC49E1653DF9B9D3E2C094520CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:57:0c:86:a5:2b:2d:9d:1c:ee:cd:00:d1:53:
13:3a:f8:32:ef:7f:48:e3:4d:6c:cc:d2:28:24:35:
da:96:0e:f9:60:9a:5f:ae:21:f3:f7:42:b5:3e:95:
75:f0:45:b0:0e:54:e2:6c:6e:4f:ff:8b:6e:fd:77:
b0:a9:07:94:80:16:6c:d7:ce:4e:a7:9f:dd:c6:a4:
1f:de:cf:ea:9c:a1:30:e0:93:b2:fe:f3:50:87:b2:
bd:94:ff:75:07:fd:4b:d0:a5:ca:65:44:d5:3e:5c:
da:09:1f:84:0b:ac:e5:be:c7:79:9b:68:34:f4:5e:
83:35:75:32:35:79:17:54:36:89:f4:3e:00:e6:53:
bc:c8:8f:56:a2:cd:f9:22:bb:64:77:65:50:ca:7a:
c1:92:b5:63:06:4d:b6:42:3d:c2:3f:be:22:11:e9:
74:5e:f0:29:b2:52:cd:86:8d:d0:aa:19:fd:c4:6d:
4f:83:e4:ba:29:86:24:52:fa:95:d3:be:1b:dd:c8:
12:1f:5f:77:73:72:1f:a7:ba:9e:31:e8:ec:96:6b:
7b:b8:a0:da:38:6a:2e:d5:7a:7b:d2:df:f6:dd:27:
e3:16:96:83:70:8d:62:6b:6b:02:d8:82:49:f4:c0:
4a:ce:8f:5e:3f:4e:07:9a:ef:f5:48:17:dc:fb:f9:
d3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F2:44:1A:ED:B4:7C:C4:9E:16:53:DF:9B:9D:3E:2C:09:45:20:CC
X509v3 Authority Key Identifier:
keyid:69:5A:28:FC:13:3E:B5:40:8B:9B:A1:26:D9:FF:E2:08:84:ED:EC:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/695A28FC133EB5408B9BA126D9FFE20884EDECD2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/695A28FC133EB5408B9BA126D9FFE20884EDECD2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5HEYRL8ykWxA5aM2vjn7jY25Xv3bqvmy9tigFBNqRkN8/2/3137302e38322e3131362e302f32332d3332203d3e20323632313832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.116.0/23
Signature Algorithm: sha256WithRSAEncryption
00:4f:1e:a7:59:b9:c2:58:53:0b:7d:46:e9:d6:e4:be:09:03:
04:98:2b:fe:e7:e4:cc:e1:72:8b:31:c5:99:cd:ee:ec:aa:95:
2e:c3:d5:23:8b:e1:84:9f:67:28:6f:ad:7d:fe:fb:df:f1:7d:
35:73:db:d3:4c:5e:8e:d7:34:8a:28:3e:71:8c:37:51:4c:ce:
d4:62:dc:61:18:5f:e2:ad:a1:c4:6f:ac:2a:9c:94:49:8f:52:
3a:23:78:3f:71:21:7c:97:66:e5:8c:27:bb:24:10:36:41:56:
14:cc:fb:66:25:9c:fc:86:bb:ee:f3:68:40:18:5b:a4:92:a8:
e1:16:92:1f:d8:cf:26:58:d0:eb:44:54:9f:b1:e4:f1:19:74:
d9:af:71:79:95:de:9b:42:13:d6:01:f1:5e:92:a7:c1:4d:f3:
29:58:6c:f5:be:0e:81:8b:5d:b9:48:2e:b9:39:e8:2a:60:c5:
94:ec:79:66:c7:5f:65:0f:b9:31:23:4c:64:18:29:bd:12:e0:
ea:f9:51:26:b4:50:c6:5a:d9:f4:5d:d8:ee:b2:5b:15:a8:59:
ef:08:c7:1f:cd:90:2a:04:6d:62:17:f2:0e:fa:88:db:c2:4e:
d4:85:c3:36:1b:1d:8f:a4:00:5f:dd:20:34:d1:73:61:9f:f9:
36:90:16:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:51:45 2025 by rpki-client