Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131342e302f32332d3233203d3e20323633363034.roa
File: 3134332e3230322e3131342e302f32332d3233203d3e20323633363034.roa (raw, json)
Hash identifier: N9Uw3t8Me/6tUYnhtJpvuZMgv2oW3KBT7t9na8kpeY4=
Subject key identifier: 5E:5B:10:39:7B:F9:02:F7:4A:0F:FF:0A:4E:BE:AE:23:6C:5B:BB:36
Certificate issuer: /CN=20EDFF4D2B04CF9634D1B59AAA84B5920859DAB5
Certificate serial: 79B3AC6305F26FA2621B7198E5D2604E24ECB348
Authority key identifier: 20:ED:FF:4D:2B:04:CF:96:34:D1:B5:9A:AA:84:B5:92:08:59:DA:B5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20EDFF4D2B04CF9634D1B59AAA84B5920859DAB5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131342e302f32332d3233203d3e20323633363034.roa
Signing time: Mon 10 Feb 2025 17:45:07 +0000
ROA not before: Mon 10 Feb 2025 17:40:07 +0000
ROA not after: Mon 09 Feb 2026 17:45:07 +0000
asID: 263604
IP address blocks: 143.202.114.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b3:ac:63:05:f2:6f:a2:62:1b:71:98:e5:d2:60:4e:24:ec:b3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20EDFF4D2B04CF9634D1B59AAA84B5920859DAB5
Validity
Not Before: Feb 10 17:40:07 2025 GMT
Not After : Feb 9 17:45:07 2026 GMT
Subject: CN=5E5B10397BF902F74A0FFF0A4EBEAE236C5BBB36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a7:d6:81:b3:d5:e3:3b:ef:22:ba:d9:8d:aa:
a3:51:d6:2c:38:5e:27:2e:cf:42:47:82:9a:6b:04:
25:b0:ec:45:1f:64:99:bf:b7:16:d4:c5:4a:98:fb:
d9:80:7b:d1:53:bf:0e:a2:cc:2f:8b:2b:dd:e2:ed:
c0:5d:69:3e:b6:dd:fc:9e:25:29:82:cc:9a:f4:27:
13:25:42:d0:cb:42:59:b4:90:35:de:a5:79:1d:f9:
1f:69:ab:9b:4a:2e:a9:24:be:d9:49:30:d1:d6:e2:
15:8b:3b:52:48:23:3a:1c:7c:1a:bd:e1:35:e9:31:
9b:cd:8f:71:00:5b:c1:ff:df:25:b3:91:1a:12:34:
e0:34:c6:f8:2b:5d:f1:07:e1:cb:86:c4:2e:d2:dc:
fe:bd:02:39:d4:a2:5b:54:a2:ac:d6:14:f1:d5:f2:
0f:f7:8f:40:4c:90:2d:77:19:9d:b1:e2:d8:97:6b:
5f:39:3d:7d:66:fd:97:e2:cf:ad:d0:fd:6b:f9:73:
60:f4:d1:64:75:d2:6c:db:86:59:cd:33:0b:47:97:
d8:7c:bf:83:67:e8:3a:a9:70:8f:6c:51:6d:ae:df:
d5:d9:d2:64:eb:8e:73:49:96:bb:92:0e:9c:c6:c1:
1b:c0:3a:9f:70:51:ec:6b:f8:61:c3:61:8d:0d:22:
54:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5B:10:39:7B:F9:02:F7:4A:0F:FF:0A:4E:BE:AE:23:6C:5B:BB:36
X509v3 Authority Key Identifier:
keyid:20:ED:FF:4D:2B:04:CF:96:34:D1:B5:9A:AA:84:B5:92:08:59:DA:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/20EDFF4D2B04CF9634D1B59AAA84B5920859DAB5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20EDFF4D2B04CF9634D1B59AAA84B5920859DAB5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3134332e3230322e3131342e302f32332d3233203d3e20323633363034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.114.0/23
Signature Algorithm: sha256WithRSAEncryption
40:9a:a0:f4:4a:29:f9:2e:bd:9f:09:4f:3b:94:15:52:11:d9:
f7:41:38:48:58:31:60:97:1b:3c:2a:f3:08:56:f9:0b:c1:12:
ff:d5:52:1a:52:48:5e:45:9d:f8:73:03:88:68:35:f0:da:4d:
bb:79:54:b8:b0:e0:ff:60:f6:6b:45:5a:85:54:f4:80:df:aa:
a5:ac:37:26:74:09:11:b6:d7:5a:76:de:2b:f3:90:35:db:da:
ed:5c:cb:33:10:71:24:1f:48:ce:0c:8b:61:dd:06:99:fe:6e:
80:98:92:d0:53:55:33:02:4b:56:73:4e:0e:76:d8:a1:f2:dc:
a3:25:86:3b:19:a2:ac:1d:e2:77:3e:cf:58:d0:6a:d9:d9:c7:
09:9b:aa:ad:9d:01:f3:51:38:ac:a6:9c:31:41:b2:1c:a9:bf:
0a:9b:cf:f2:ab:4b:6b:be:40:cb:74:22:a5:7d:b6:e0:89:9c:
4c:b9:72:06:49:19:6a:9a:17:45:53:cd:06:dd:c3:d0:2a:21:
b4:3b:af:49:75:7f:48:e0:c5:36:ff:ba:5a:55:ef:8a:ec:15:
89:87:13:82:bf:cd:96:26:8b:ea:b4:0f:68:3f:f6:03:e2:38:
ce:92:9e:63:cb:67:ad:e3:92:0f:dd:38:ac:94:11:0e:60:2b:
28:99:b5:14
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUebOsYwXyb6JiG3GY5dJgTiTss0gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjBFREZGNEQyQjA0Q0Y5NjM0RDFCNTlBQUE4NEI1OTIw
ODU5REFCNTAeFw0yNTAyMTAxNzQwMDdaFw0yNjAyMDkxNzQ1MDdaMDMxMTAvBgNV
BAMTKDVFNUIxMDM5N0JGOTAyRjc0QTBGRkYwQTRFQkVBRTIzNkM1QkJCMzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYp9aBs9XjO+8iutmNqqNR1iw4
Xicuz0JHgpprBCWw7EUfZJm/txbUxUqY+9mAe9FTvw6izC+LK93i7cBdaT623fye
JSmCzJr0JxMlQtDLQlm0kDXepXkd+R9pq5tKLqkkvtlJMNHW4hWLO1JIIzocfBq9
4TXpMZvNj3EAW8H/3yWzkRoSNOA0xvgrXfEH4cuGxC7S3P69AjnUoltUoqzWFPHV
8g/3j0BMkC13GZ2x4tiXa185PX1m/Zfiz63Q/Wv5c2D00WR10mzbhlnNMwtHl9h8
v4Nn6DqpcI9sUW2u39XZ0mTrjnNJlruSDpzGwRvAOp9wUexr+GHDYY0NIlRDAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUXlsQOXv5AvdKD/8KTr6uI2xbuzYwHwYDVR0j
BBgwFoAUIO3/TSsEz5Y00bWaqoS1kghZ2rUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNUxyZWpTNWpCdWF2YkY1ckVXem8yUmFNRnVhNThYU2lWdWVlcm5OVThx
Z28vMC8yMEVERkY0RDJCMDRDRjk2MzREMUI1OUFBQTg0QjU5MjA4NTlEQUI1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIwRURGRjREMkIwNENGOTYz
NEQxQjU5QUFBODRCNTkyMDg1OURBQjUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzVMcmVqUzVqQnVhdmJGNXJFV3pvMlJhTUZ1YTU4WFNpVnVlZXJuTlU4cWdvLzAv
MzEzNDMzMmUzMjMwMzIyZTMxMzEzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy
MzYzMzM2MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAY/KcjANBgkqhkiG9w0BAQsFAAOCAQEAQJqg
9Eop+S69nwlPO5QVUhHZ90E4SFgxYJcbPCrzCFb5C8ES/9VSGlJIXkWd+HMDiGg1
8NpNu3lUuLDg/2D2a0VahVT0gN+qpaw3JnQJEbbXWnbeK/OQNdva7VzLMxBxJB9I
zgyLYd0Gmf5ugJiS0FNVMwJLVnNODnbYofLcoyWGOxmirB3idz7PWNBq2dnHCZuq
rZ0B81E4rKacMUGyHKm/CpvP8qtLa75Ay3QipX224ImcTLlyBkkZapoXRVPNBt3D
0CohtDuvSXV/SODFNv+6WlXviuwViYcTgr/NliaL6rQPaD/2A+I4zpKeY8tnreOS
D904rJQRDmArKJm1FA==
-----END CERTIFICATE-----
Generated at Fri Mar 14 05:53:23 2025 by rpki-client