Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230342e302f32332d3233203d3e20323636353434.roa
File: 34352e36352e3230342e302f32332d3233203d3e20323636353434.roa (raw, json)
Hash identifier: Vt/gQuRH6Ut7MDX+FeHi3lFHnqWD10nSXGUgQmAo4Jc=
Subject key identifier: 5D:28:3D:F6:C7:97:B9:43:48:87:4E:C0:81:56:B2:D0:FB:65:EE:47
Certificate issuer: /CN=2D1BC37D847D51FC76776A8E2A32C851B391DDEF
Certificate serial: 6972BE0D16A122900A721EEA097A5BC3F03BF139
Authority key identifier: 2D:1B:C3:7D:84:7D:51:FC:76:77:6A:8E:2A:32:C8:51:B3:91:DD:EF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D1BC37D847D51FC76776A8E2A32C851B391DDEF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230342e302f32332d3233203d3e20323636353434.roa
Signing time: Fri 14 Feb 2025 17:48:31 +0000
ROA not before: Fri 14 Feb 2025 17:43:31 +0000
ROA not after: Fri 13 Feb 2026 17:48:31 +0000
asID: 266544
IP address blocks: 45.65.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:72:be:0d:16:a1:22:90:0a:72:1e:ea:09:7a:5b:c3:f0:3b:f1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D1BC37D847D51FC76776A8E2A32C851B391DDEF
Validity
Not Before: Feb 14 17:43:31 2025 GMT
Not After : Feb 13 17:48:31 2026 GMT
Subject: CN=5D283DF6C797B94348874EC08156B2D0FB65EE47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:66:fa:97:f0:d2:86:59:33:d8:f1:66:82:7f:
ea:cd:78:cc:ad:94:0e:84:f3:9e:5f:3b:a3:95:1f:
d4:cc:25:c5:80:cb:40:3e:5a:7d:6f:aa:4e:1f:c7:
fe:42:dd:87:d6:0d:a9:56:fb:2a:b1:f5:29:2d:6c:
e6:68:b6:eb:b5:c6:14:27:9b:a1:20:f0:61:83:ec:
ea:29:13:92:49:d7:b4:39:87:15:f0:a0:e9:4e:30:
27:45:d2:03:5c:7e:03:8d:bc:97:3a:1b:9f:55:17:
f3:28:e8:89:e9:7b:aa:66:43:2a:4c:11:61:7d:b1:
cc:dc:c7:ad:a3:8f:fe:d2:bd:b3:16:b0:ea:9e:d4:
a1:de:84:9b:d9:7b:4f:7b:27:6f:9d:6d:70:5f:be:
a8:a6:9f:28:fd:8a:10:5d:43:88:bd:6b:7f:74:ab:
14:74:c1:d3:51:6f:aa:fb:08:1b:53:e6:52:12:8b:
72:69:fb:b1:a0:00:8e:5d:a1:db:7e:e5:04:04:a9:
4e:87:e8:9d:04:f4:43:9b:bf:da:01:60:4a:09:f4:
83:bc:36:3b:d2:52:f4:82:68:1f:e9:9a:4a:54:4f:
19:1a:62:bc:af:bb:1b:54:ad:2f:16:5b:aa:56:aa:
26:f5:2f:3e:3e:ee:55:25:0b:a6:7b:bb:a8:22:98:
6e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:28:3D:F6:C7:97:B9:43:48:87:4E:C0:81:56:B2:D0:FB:65:EE:47
X509v3 Authority Key Identifier:
keyid:2D:1B:C3:7D:84:7D:51:FC:76:77:6A:8E:2A:32:C8:51:B3:91:DD:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/2D1BC37D847D51FC76776A8E2A32C851B391DDEF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D1BC37D847D51FC76776A8E2A32C851B391DDEF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230342e302f32332d3233203d3e20323636353434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.204.0/23
Signature Algorithm: sha256WithRSAEncryption
27:53:ba:ae:dd:86:11:b4:4a:45:4f:1a:8b:01:7f:5b:7a:82:
b5:73:f3:4c:a7:fe:90:2f:5f:e6:a7:91:55:9a:c2:33:53:5f:
17:2e:47:32:b7:74:db:3d:e1:28:50:ec:0e:10:af:de:8e:64:
10:82:b9:ae:78:3e:fe:10:9c:6d:0d:c4:c5:9f:7f:11:69:24:
c0:5c:9d:5d:22:4f:a4:2b:87:b1:4f:6e:f6:36:8b:93:20:89:
8a:5e:07:33:38:28:8a:1c:90:ac:d5:7a:1e:7f:5c:a9:b2:45:
50:77:4c:4b:da:e3:0c:d6:b4:32:a2:6d:6a:91:33:80:4f:f8:
b4:4b:4e:6a:46:32:fb:00:b3:07:34:16:e2:f1:af:3c:71:07:
92:6e:4e:c5:47:cf:f4:98:b5:7a:f4:5e:9b:44:c6:ee:5e:5b:
3a:a0:ca:62:6f:eb:23:f6:66:c2:c2:8e:fb:a6:94:7a:4d:13:
a1:34:ea:6d:3d:24:4c:ad:bf:44:e7:fa:65:e9:9f:d2:a3:43:
76:c8:98:29:4b:7a:ea:5d:fe:5f:52:ef:13:17:a8:6e:1d:ec:
6f:07:c9:87:01:d8:7d:30:80:23:82:8b:b6:f7:0b:77:51:f7:
24:6f:05:3b:b2:00:63:d1:62:5d:ad:1f:34:43:75:54:8d:03:
e0:27:f4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 19:38:37 2025 by rpki-client