Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3137372e37312e38382e302f32322d3232203d3e20323633363034.roa
File: 3137372e37312e38382e302f32322d3232203d3e20323633363034.roa (raw, json)
Hash identifier: hfNHVg9ZqSlhqT1z8qHkWoEYALubaQP9uP+lFo2tZNE=
Subject key identifier: 4B:90:F2:3E:71:D4:48:67:96:AA:59:18:1F:56:7C:AA:55:8F:A4:F9
Certificate issuer: /CN=B5416A429171B4A07910A6737C6538DE6D5E9EB7
Certificate serial: 3F30439DC6AB5CE418D4D6DAA4DBD7B62D9809EC
Authority key identifier: B5:41:6A:42:91:71:B4:A0:79:10:A6:73:7C:65:38:DE:6D:5E:9E:B7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B5416A429171B4A07910A6737C6538DE6D5E9EB7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3137372e37312e38382e302f32322d3232203d3e20323633363034.roa
Signing time: Wed 30 Apr 2025 17:43:27 +0000
ROA not before: Wed 30 Apr 2025 17:38:27 +0000
ROA not after: Wed 29 Apr 2026 17:43:27 +0000
asID: 263604
IP address blocks: 177.71.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:30:43:9d:c6:ab:5c:e4:18:d4:d6:da:a4:db:d7:b6:2d:98:09:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5416A429171B4A07910A6737C6538DE6D5E9EB7
Validity
Not Before: Apr 30 17:38:27 2025 GMT
Not After : Apr 29 17:43:27 2026 GMT
Subject: CN=4B90F23E71D4486796AA59181F567CAA558FA4F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d0:26:79:9b:de:7d:8e:0e:17:a8:19:b8:8b:
aa:49:64:5a:de:64:4c:20:67:e7:9d:a3:0d:96:d2:
4e:d3:c9:73:74:98:a1:a3:e9:12:d1:c3:4f:99:3c:
79:2c:ca:c1:92:3f:b2:ba:fd:69:d5:8f:d4:d9:c5:
b4:65:b6:eb:2d:6b:e5:18:92:c9:53:34:06:59:16:
de:c2:95:b0:c6:17:46:fb:62:42:23:68:b8:0e:3d:
92:70:86:b0:0f:4f:e1:0c:84:10:53:39:3b:ad:a4:
22:54:fc:66:3f:4d:cb:18:f1:4d:27:8e:fe:f1:85:
94:99:8a:d8:c3:ef:18:4b:9d:de:23:5b:48:c6:9f:
8f:4a:d6:3d:2f:ae:8f:0d:da:ec:2b:18:33:97:de:
8a:3c:b8:45:1b:26:c0:78:c3:95:b0:26:31:61:a5:
16:ca:9d:63:ff:cd:11:4a:a5:b3:4a:ea:f8:37:43:
04:72:6a:67:b6:84:b1:f2:16:54:1a:5d:08:36:49:
a1:c0:52:aa:57:ce:7e:5c:f0:c7:0b:13:be:7a:b0:
3f:9b:ca:48:82:c9:53:cf:87:28:42:2f:d8:95:ff:
99:fa:12:94:fa:1d:d2:70:bd:fe:b1:1a:0d:75:45:
b8:c8:48:13:a8:b6:76:ae:68:3f:24:e1:46:ca:ca:
ec:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:90:F2:3E:71:D4:48:67:96:AA:59:18:1F:56:7C:AA:55:8F:A4:F9
X509v3 Authority Key Identifier:
keyid:B5:41:6A:42:91:71:B4:A0:79:10:A6:73:7C:65:38:DE:6D:5E:9E:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/B5416A429171B4A07910A6737C6538DE6D5E9EB7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B5416A429171B4A07910A6737C6538DE6D5E9EB7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5LrejS5jBuavbF5rEWzo2RaMFua58XSiVueernNU8qgo/0/3137372e37312e38382e302f32322d3232203d3e20323633363034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.71.88.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:2d:a5:a9:61:2d:f7:ec:b6:81:bf:2a:12:f7:63:84:15:ed:
8f:bd:a7:5f:31:b0:d4:81:54:fb:46:7c:48:4e:d8:8a:8b:24:
f5:8a:b2:3d:b8:29:14:e9:22:de:31:cb:50:0a:bb:1a:cd:af:
c0:b3:95:62:b5:19:73:f1:6f:68:09:df:b4:30:bc:22:98:f8:
ec:07:28:4a:ef:34:46:7c:2b:b3:c3:f9:53:b7:cb:c9:ee:b1:
a3:30:3c:d7:9d:2e:21:3b:8f:46:59:e5:26:d5:d6:1e:aa:e0:
45:d4:37:b0:72:23:f1:5b:35:99:72:c4:bb:fb:ed:2a:1b:12:
1f:89:9c:8a:19:02:b0:58:32:01:5f:5f:a2:ba:50:da:91:61:
20:ff:86:fc:e8:1e:8c:63:d5:10:3e:b3:a8:49:c7:d2:56:7b:
c6:bc:dd:b1:ad:61:9e:d7:59:17:f5:c5:2c:8e:61:6c:3c:ca:
0b:5a:2e:63:58:ca:2a:9c:4e:f4:a9:04:68:78:80:85:e9:6d:
cc:a0:58:a2:24:39:6b:9d:8c:c5:81:db:54:7a:91:81:47:c6:
03:97:67:db:9b:00:91:de:bf:b4:dc:59:b7:31:0d:ff:e3:6f:
b2:03:00:b1:e9:f2:bd:fe:46:87:8b:4e:e2:88:2d:c7:e3:e8:
94:ca:c4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:54:54 2025 by rpki-client