Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5jjVeTzsH2hfxiCUv3CH1y7ukecgqz7ZMu2ktPKATWgR/0/3133312e37322e31362e302f32322d3332203d3e203631373133.roa
File: 3133312e37322e31362e302f32322d3332203d3e203631373133.roa (raw, json)
Hash identifier: o2wtv5KJdsnXeiRh2Yg5iz3Q70R29az44W3JBKpwOYk=
Subject key identifier: 88:C3:D3:36:27:BD:78:22:D4:0E:35:99:F6:86:CA:13:21:8E:81:D3
Certificate issuer: /CN=BF0B25912243C9DFD1C915CDBC8F484F306E8315
Certificate serial: 4AAEB33668A5A0EDEA9736EDBA1B133BAD04372B
Authority key identifier: BF:0B:25:91:22:43:C9:DF:D1:C9:15:CD:BC:8F:48:4F:30:6E:83:15
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF0B25912243C9DFD1C915CDBC8F484F306E8315.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5jjVeTzsH2hfxiCUv3CH1y7ukecgqz7ZMu2ktPKATWgR/0/3133312e37322e31362e302f32322d3332203d3e203631373133.roa
Signing time: Wed 12 Feb 2025 15:23:45 +0000
ROA not before: Wed 12 Feb 2025 15:18:45 +0000
ROA not after: Wed 11 Feb 2026 15:23:45 +0000
asID: 61713
IP address blocks: 131.72.16.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ae:b3:36:68:a5:a0:ed:ea:97:36:ed:ba:1b:13:3b:ad:04:37:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF0B25912243C9DFD1C915CDBC8F484F306E8315
Validity
Not Before: Feb 12 15:18:45 2025 GMT
Not After : Feb 11 15:23:45 2026 GMT
Subject: CN=88C3D33627BD7822D40E3599F686CA13218E81D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:69:5b:be:18:2d:40:7d:16:ee:0f:23:10:77:
8c:96:14:6c:12:71:17:0d:ee:80:1c:5e:f2:1a:68:
13:71:60:41:e9:38:c1:37:03:e8:b9:97:3d:20:ed:
72:ab:22:0a:f9:22:4c:6e:d0:bb:99:0a:50:ed:66:
69:ee:f2:da:08:66:b7:61:b9:a5:e2:ff:8e:c9:0f:
17:a9:c1:4a:fa:29:4d:2d:70:ad:e9:33:b7:46:c7:
bf:64:a6:4c:1a:dd:f9:3a:2e:d5:53:b9:1e:fd:6d:
96:1c:e8:ab:4c:74:7c:44:4e:95:23:3c:22:67:2c:
ec:f4:bb:64:e9:2a:ee:a5:13:30:24:88:db:96:95:
7b:32:87:fe:6b:c5:37:52:0a:0e:3b:74:38:a8:0c:
9c:29:84:44:35:24:74:18:cc:6e:87:c9:0e:5c:3c:
6a:23:d1:b4:83:d0:57:81:67:30:19:e0:32:24:93:
5e:51:4b:76:00:63:44:08:e0:df:c9:02:3d:bc:11:
27:0e:d4:2f:1e:36:5d:b8:6f:d6:62:f1:66:d4:06:
ab:08:ae:8e:23:57:25:cb:18:b4:d2:b0:70:33:f4:
75:8b:b1:e4:b1:77:bf:40:ae:c5:3a:ec:ab:b0:de:
fc:4b:b7:72:9b:c4:a7:12:3e:e5:39:65:b3:55:df:
9a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C3:D3:36:27:BD:78:22:D4:0E:35:99:F6:86:CA:13:21:8E:81:D3
X509v3 Authority Key Identifier:
keyid:BF:0B:25:91:22:43:C9:DF:D1:C9:15:CD:BC:8F:48:4F:30:6E:83:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5jjVeTzsH2hfxiCUv3CH1y7ukecgqz7ZMu2ktPKATWgR/0/BF0B25912243C9DFD1C915CDBC8F484F306E8315.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BF0B25912243C9DFD1C915CDBC8F484F306E8315.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5jjVeTzsH2hfxiCUv3CH1y7ukecgqz7ZMu2ktPKATWgR/0/3133312e37322e31362e302f32322d3332203d3e203631373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.16.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c7:49:77:73:8e:db:ff:df:18:c0:d7:eb:9d:45:d4:a7:40:
16:f1:74:d1:b9:99:86:eb:24:af:96:08:da:57:ad:d3:73:9a:
1b:98:e1:9d:81:22:d7:ea:35:a5:fb:06:26:dd:48:48:cf:08:
ed:9d:e3:b1:6c:f4:7a:4e:2d:fe:d5:06:5b:6e:05:ca:37:a7:
65:2f:ef:f0:49:0a:97:85:4b:9a:00:7f:16:89:bb:c7:81:57:
34:17:ce:a9:26:bd:4c:bd:3c:9e:0b:69:49:0d:81:bb:81:aa:
3c:1c:23:7b:7c:c7:fb:57:2e:28:62:71:90:d7:88:57:02:cf:
5b:2d:92:3d:f8:8e:08:e4:fd:8d:57:5a:de:2c:e8:7d:33:64:
a6:2d:b9:e5:62:69:dc:89:db:60:d5:69:9a:1b:39:f1:a9:2a:
9d:c4:fb:e9:35:c6:06:8c:8e:f8:dc:8d:ad:17:b1:4f:f7:47:
a0:c1:80:22:6e:ec:48:90:6b:9f:e9:4d:7d:57:c0:d6:4d:c0:
17:f3:95:7b:b8:2a:5f:e7:f8:6b:3f:af:65:b8:d7:d7:40:92:
0c:1a:7c:8e:c4:4f:27:79:6a:2b:2d:b7:a0:b5:f7:93:af:b7:
dd:a7:6a:1a:e4:b4:7a:41:a2:37:96:97:0a:a4:a5:26:48:2a:
e0:92:0d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 18:55:04 2025 by rpki-client