Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5o1AWvkegwCpfcscRMbKtox1jGWsX3r5CifQeKR2Zs3X/0/323830343a333930383a3a2f33322d3438203d3e20323636353139.roa
File: 323830343a333930383a3a2f33322d3438203d3e20323636353139.roa (raw, json)
Hash identifier: z5JbHLWqn+MD9dlWpBGbzSd9oRTXV5g1a4o0Bvv9XRM=
Subject key identifier: 54:43:D2:89:CB:30:46:D3:DF:40:44:A9:32:CA:D0:A1:70:72:64:A0
Certificate issuer: /CN=B20822AFD0A6DE1194B684B5804962837CC42F2B
Certificate serial: 2AB8C72BFACB1194713C6BF465EC6D940B5AF792
Authority key identifier: B2:08:22:AF:D0:A6:DE:11:94:B6:84:B5:80:49:62:83:7C:C4:2F:2B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B20822AFD0A6DE1194B684B5804962837CC42F2B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5o1AWvkegwCpfcscRMbKtox1jGWsX3r5CifQeKR2Zs3X/0/323830343a333930383a3a2f33322d3438203d3e20323636353139.roa
Signing time: Wed 22 May 2024 14:25:16 +0000
ROA not before: Wed 22 May 2024 14:20:16 +0000
ROA not after: Wed 21 May 2025 14:25:16 +0000
asID: 266519
IP address blocks: 2804:3908::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:b8:c7:2b:fa:cb:11:94:71:3c:6b:f4:65:ec:6d:94:0b:5a:f7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B20822AFD0A6DE1194B684B5804962837CC42F2B
Validity
Not Before: May 22 14:20:16 2024 GMT
Not After : May 21 14:25:16 2025 GMT
Subject: CN=5443D289CB3046D3DF4044A932CAD0A1707264A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:64:02:14:9c:bf:9f:2c:a0:da:c4:5b:33:aa:
12:d5:dd:a6:6e:de:9d:4f:bc:93:12:19:d5:4f:ff:
0e:03:cd:b9:42:03:16:6e:f5:18:00:82:a2:d6:86:
ca:55:d8:78:f9:c8:1f:a8:aa:06:2f:29:dd:6c:38:
6f:d8:c2:fa:79:c8:a0:81:80:2e:2c:f5:06:c3:6a:
2f:e3:1a:5d:3d:a4:b3:df:be:99:df:68:c5:95:89:
26:c9:f4:fc:cc:9b:4f:99:ae:ed:56:89:7a:ff:df:
f8:a8:ca:b2:55:68:89:a9:23:2c:0c:12:f2:17:92:
fa:3a:2b:82:c7:e8:ac:51:d7:58:d7:f1:fb:54:80:
69:98:d5:5a:c8:aa:80:b4:0a:ca:6a:9a:a8:c9:98:
9a:cb:14:4a:f2:2b:a0:95:79:17:38:be:9e:83:07:
e7:6d:3f:96:7e:8b:a1:ee:d0:a9:66:5b:90:47:28:
e2:79:c6:1a:22:34:9f:36:f3:c2:13:cf:2f:f1:1d:
66:63:1c:6d:f0:09:35:eb:cb:6f:2f:6e:f9:d4:5d:
ef:ec:49:ca:d6:43:21:77:7b:f7:b3:bf:da:e8:30:
f0:e7:bc:c6:f0:6f:f2:c4:37:59:24:77:06:a4:98:
31:4c:fc:9b:dd:6e:5f:06:e8:0c:3c:26:47:13:8c:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:43:D2:89:CB:30:46:D3:DF:40:44:A9:32:CA:D0:A1:70:72:64:A0
X509v3 Authority Key Identifier:
keyid:B2:08:22:AF:D0:A6:DE:11:94:B6:84:B5:80:49:62:83:7C:C4:2F:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5o1AWvkegwCpfcscRMbKtox1jGWsX3r5CifQeKR2Zs3X/0/B20822AFD0A6DE1194B684B5804962837CC42F2B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B20822AFD0A6DE1194B684B5804962837CC42F2B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5o1AWvkegwCpfcscRMbKtox1jGWsX3r5CifQeKR2Zs3X/0/323830343a333930383a3a2f33322d3438203d3e20323636353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3908::/32
Signature Algorithm: sha256WithRSAEncryption
13:ba:89:11:8e:89:93:32:09:65:49:2a:11:52:ae:f4:b3:da:
57:8b:42:92:1a:7a:00:10:97:2e:f4:0f:44:1e:7d:27:0c:d0:
1e:10:ce:0a:d8:b6:82:2d:35:14:98:a1:16:cc:52:f8:75:b9:
8a:7a:6f:af:c2:c0:44:be:ee:56:4f:09:1a:e4:af:25:f7:e4:
4f:25:a4:6c:77:81:01:88:80:d9:b5:68:b6:b6:37:3b:b7:fc:
f3:ac:eb:17:8d:90:82:15:ab:a2:46:25:7b:32:22:b4:54:48:
29:a9:9f:81:c4:6f:58:ac:36:f7:46:9e:56:1a:c1:31:60:df:
37:31:f4:35:b2:50:fd:22:24:b3:5a:88:1d:73:d2:c8:14:e2:
bd:95:ff:8f:8f:db:66:23:14:d0:fa:c4:c4:90:3c:fb:94:0e:
0f:bb:9a:f3:9b:14:c7:65:26:fc:b3:d1:8a:3f:d3:46:37:e2:
0c:d1:06:9d:ec:d8:26:ab:95:82:f1:cc:da:4a:b9:64:a8:68:
f3:e4:00:e0:ea:bc:aa:9e:52:dd:30:b6:7d:64:df:19:42:d0:
af:8c:4e:eb:c1:31:38:ab:67:15:e2:40:5f:64:be:62:0e:bf:
f8:b7:df:f6:fd:a4:c5:b5:8a:b5:ee:2d:aa:57:57:ae:ba:c7:
e4:3b:15:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:53:20 2025 by rpki-client