Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131322e302f32322d3232203d3e20323633363034.roa
File: 3134332e3230322e3131322e302f32322d3232203d3e20323633363034.roa (raw, json)
Hash identifier: UYaBGwplx9kAHduUtRufNtBrc3yk+kVFZvjeJtU29KA=
Subject key identifier: C2:B1:9C:7D:E1:0A:B0:21:D0:21:EC:50:0F:B9:11:DC:CC:4F:D1:BC
Certificate issuer: /CN=496659D2A113157B4BED7E1189FFAEA19CE9E6F4
Certificate serial: 1668851000AE5E0FFDF0130FF2AD6551D57AD22E
Authority key identifier: 49:66:59:D2:A1:13:15:7B:4B:ED:7E:11:89:FF:AE:A1:9C:E9:E6:F4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/496659D2A113157B4BED7E1189FFAEA19CE9E6F4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131322e302f32322d3232203d3e20323633363034.roa
Signing time: Tue 19 Dec 2023 17:10:16 +0000
ROA not before: Tue 19 Dec 2023 17:05:16 +0000
ROA not after: Tue 17 Dec 2024 17:10:16 +0000
asID: 263604
IP address blocks: 143.202.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:68:85:10:00:ae:5e:0f:fd:f0:13:0f:f2:ad:65:51:d5:7a:d2:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=496659D2A113157B4BED7E1189FFAEA19CE9E6F4
Validity
Not Before: Dec 19 17:05:16 2023 GMT
Not After : Dec 17 17:10:16 2024 GMT
Subject: CN=C2B19C7DE10AB021D021EC500FB911DCCC4FD1BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:c7:a5:cb:d1:19:b8:eb:68:ca:42:6a:de:
96:20:79:19:c5:07:5c:fa:59:28:43:22:0f:3e:db:
a5:54:e2:02:51:cf:47:6b:50:0b:14:ca:76:29:00:
f0:49:79:d9:f0:ac:c7:b7:e3:2b:8f:aa:f1:ab:fd:
15:82:54:a4:a0:09:58:35:70:22:b4:62:4a:b6:16:
34:b2:c9:d1:94:36:43:15:0e:f2:40:b4:9b:55:26:
27:e6:3a:cf:9b:00:8c:88:70:cc:aa:01:57:19:08:
e7:6c:32:93:71:8f:b1:3e:1f:5a:21:4b:7b:ac:9b:
53:c2:8e:5a:dc:00:63:13:48:b4:74:ae:9f:be:f2:
f4:9e:fe:bb:3e:c2:d3:03:da:5d:11:6d:b3:38:26:
89:16:af:97:4b:b4:bd:ea:06:76:75:a6:99:64:06:
32:54:e0:8b:30:18:62:de:1e:5d:12:2d:2c:b8:bf:
ae:dd:3a:90:37:9f:53:8a:e3:ee:6c:b3:65:58:93:
4b:45:5c:5b:e1:91:f4:27:1b:46:cb:56:b6:66:06:
18:2b:ed:9c:32:ba:20:7f:81:20:1b:28:46:92:67:
75:01:7b:3f:9a:06:60:1c:96:c9:f1:c7:a6:ad:cf:
00:87:b8:6d:5b:02:53:2b:41:b5:4d:a1:54:f5:6f:
51:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B1:9C:7D:E1:0A:B0:21:D0:21:EC:50:0F:B9:11:DC:CC:4F:D1:BC
X509v3 Authority Key Identifier:
keyid:49:66:59:D2:A1:13:15:7B:4B:ED:7E:11:89:FF:AE:A1:9C:E9:E6:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/496659D2A113157B4BED7E1189FFAEA19CE9E6F4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/496659D2A113157B4BED7E1189FFAEA19CE9E6F4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131322e302f32322d3232203d3e20323633363034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.112.0/22
Signature Algorithm: sha256WithRSAEncryption
58:1d:eb:99:3d:7b:63:fe:a4:1c:08:98:c6:93:42:f0:11:99:
22:01:79:ac:34:8d:4c:92:83:b5:7a:b2:d9:f0:07:ad:9b:41:
6b:63:19:e3:a5:e5:df:e2:ee:1f:f5:6e:2e:cf:90:61:fb:da:
df:a3:1b:ba:30:3b:64:3e:83:72:03:70:95:0f:51:a4:6b:0a:
98:2f:64:43:32:dc:7c:17:4e:63:02:59:55:a9:6b:8b:5c:70:
e8:8e:1b:90:b4:e3:62:f0:4b:a8:73:e1:20:86:b6:02:f8:c3:
c8:4f:65:d0:23:9c:7f:ef:87:a4:15:3f:cb:c6:4f:d1:f8:41:
f4:37:ec:94:e2:3f:1f:df:96:27:e9:6c:af:80:e6:2f:1b:2f:
05:71:81:1c:63:7b:ca:ea:45:2a:8b:d2:34:bb:62:c3:08:5f:
ee:ed:72:60:b4:fb:94:55:83:24:8f:6b:63:60:f6:1e:62:dd:
36:9c:ee:16:d6:ac:87:94:ae:e0:51:b9:2b:b9:bd:4f:04:8f:
f3:6e:05:7b:81:af:76:0d:4c:48:d6:f9:82:9d:70:32:b4:f4:
14:c4:7a:e5:9e:89:c1:06:7c:45:c4:86:3c:ba:4f:df:91:19:
2f:a7:21:30:50:a2:80:ec:02:55:81:67:1e:6b:20:e3:75:96:
45:ed:3a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:44 2024 by rpki-client on console-fra.rpki-client.org