Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5TcnaenUhyukZgVeYZAXBPLv4ujbMusfZCqb5C3GHheY/1/3136382e3232382e3136342e302f32322d3234203d3e20323634393231.roa
File: 3136382e3232382e3136342e302f32322d3234203d3e20323634393231.roa (raw, json)
Hash identifier: NKXUigyoNgvGw8sUtLKz4YtdCSr4kmNU60Zrw78lgfY=
Subject key identifier: 4C:EF:86:6B:5D:04:EE:EB:6B:16:23:12:C4:69:3A:82:16:92:E4:31
Certificate issuer: /CN=CA09CE87D7962722451F9BB1B0BABEB641024526
Certificate serial: 1A2BA4956D60F9AA3860CB4FD6212F6A4A002DB8
Authority key identifier: CA:09:CE:87:D7:96:27:22:45:1F:9B:B1:B0:BA:BE:B6:41:02:45:26
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA09CE87D7962722451F9BB1B0BABEB641024526.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5TcnaenUhyukZgVeYZAXBPLv4ujbMusfZCqb5C3GHheY/1/3136382e3232382e3136342e302f32322d3234203d3e20323634393231.roa
Signing time: Thu 06 Mar 2025 18:35:32 +0000
ROA not before: Thu 06 Mar 2025 18:30:32 +0000
ROA not after: Thu 05 Mar 2026 18:35:32 +0000
asID: 264921
IP address blocks: 168.228.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:2b:a4:95:6d:60:f9:aa:38:60:cb:4f:d6:21:2f:6a:4a:00:2d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA09CE87D7962722451F9BB1B0BABEB641024526
Validity
Not Before: Mar 6 18:30:32 2025 GMT
Not After : Mar 5 18:35:32 2026 GMT
Subject: CN=4CEF866B5D04EEEB6B162312C4693A821692E431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:72:04:bc:94:71:a6:5e:8a:56:44:18:c2:92:
5a:48:45:c6:fd:2f:ab:8c:21:82:1c:0a:55:9c:89:
0c:ce:a9:a0:75:c9:b2:81:d0:37:94:32:b0:9e:80:
0f:f0:1b:14:b6:78:90:86:f7:2a:c0:34:42:53:15:
e9:6d:14:3e:61:b5:5f:5d:1c:28:6a:4b:00:cc:8c:
12:ca:0b:47:b6:b8:95:ab:f1:67:ac:5a:17:02:db:
73:51:34:e7:43:23:ee:10:6e:2a:ad:53:b1:02:5a:
56:69:73:eb:a4:98:4d:fd:d8:5a:25:c0:98:dd:40:
17:08:09:c7:4b:d9:44:d3:0d:37:22:2b:86:86:17:
e8:54:3a:cf:39:2d:4b:48:1b:42:b5:a3:e1:83:a9:
e2:1f:69:85:43:eb:03:72:bf:4d:16:52:27:b7:28:
bf:9a:b6:c3:75:ed:0f:e8:18:24:ec:95:b6:6c:8d:
8c:1d:e0:d7:17:a8:e9:f6:9c:56:8d:6a:a0:66:a1:
e7:42:ab:54:d9:ce:e1:cc:71:62:a3:37:13:63:be:
8e:fa:49:d1:33:76:62:09:e1:d9:aa:4e:0d:7b:e1:
fe:55:1c:90:90:40:9e:db:97:d9:63:b8:38:f8:12:
89:32:c2:a8:40:ea:8b:a3:7a:3a:ca:5a:85:58:08:
a6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EF:86:6B:5D:04:EE:EB:6B:16:23:12:C4:69:3A:82:16:92:E4:31
X509v3 Authority Key Identifier:
keyid:CA:09:CE:87:D7:96:27:22:45:1F:9B:B1:B0:BA:BE:B6:41:02:45:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5TcnaenUhyukZgVeYZAXBPLv4ujbMusfZCqb5C3GHheY/1/CA09CE87D7962722451F9BB1B0BABEB641024526.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA09CE87D7962722451F9BB1B0BABEB641024526.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5TcnaenUhyukZgVeYZAXBPLv4ujbMusfZCqb5C3GHheY/1/3136382e3232382e3136342e302f32322d3234203d3e20323634393231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.228.164.0/22
Signature Algorithm: sha256WithRSAEncryption
28:23:b9:38:12:00:4c:d3:4f:25:c1:55:4d:1e:f6:8b:19:6a:
11:40:ed:36:8d:fe:5c:d3:10:0f:ca:55:c0:3c:7e:af:ea:f3:
09:35:7b:0d:87:67:11:83:87:ea:c5:02:49:8f:90:e4:52:e3:
2b:29:da:83:78:24:c7:9c:27:af:23:7a:00:a8:9b:ab:39:2a:
b9:6d:80:df:14:b0:7d:fb:78:29:12:fd:e4:1f:02:c7:0f:41:
c4:75:58:b2:c0:d5:34:e8:00:e5:d5:4e:37:18:b4:c9:f8:32:
a4:c3:a8:5d:db:aa:20:86:be:4f:db:59:be:1f:88:2b:28:75:
86:f7:02:c9:5e:a8:ef:24:03:5d:6b:1b:18:5c:bd:83:14:01:
24:97:a3:61:f0:b8:1e:be:3c:ea:30:74:9b:49:9a:79:fe:c6:
9e:25:ae:ac:f8:f3:ab:49:aa:bf:f6:b6:75:cf:da:83:4d:76:
7e:b7:95:0e:15:3b:dc:2f:a7:9f:3b:b5:2c:8b:63:e6:86:c9:
cf:5a:9f:aa:04:c8:0b:c5:f0:1a:f2:c5:5a:58:01:a4:1a:ad:
74:eb:42:d8:22:1a:0d:9d:55:4a:43:55:ea:45:ea:87:91:d7:
98:b3:b5:90:64:a0:59:dc:43:2b:28:5f:75:af:c6:31:2a:18:
db:da:f6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:04:43 2025 by rpki-client