Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/323830343a383833633a313430303a3a2f34302d3430203d3e20323732373538.roa
File: 323830343a383833633a313430303a3a2f34302d3430203d3e20323732373538.roa (raw, json)
Hash identifier: CTtrDOhs1PgRLAYrUqi67vbnYYlJ7lJTueXlZGAMyNU=
Subject key identifier: C5:A4:F8:34:C0:CF:E8:48:B3:71:5C:E3:29:CA:EE:A7:E6:1D:7D:28
Certificate issuer: /CN=E68618F45B841B2C0F36D3F8AD7C98AF5A517052
Certificate serial: 08F4487C6F1FE493F1122A5BEA8F23AE864BB84A
Authority key identifier: E6:86:18:F4:5B:84:1B:2C:0F:36:D3:F8:AD:7C:98:AF:5A:51:70:52
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/323830343a383833633a313430303a3a2f34302d3430203d3e20323732373538.roa
Signing time: Thu 06 Mar 2025 06:04:52 +0000
ROA not before: Thu 06 Mar 2025 05:59:52 +0000
ROA not after: Thu 05 Mar 2026 06:04:52 +0000
asID: 272758
IP address blocks: 2804:883c:1400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.crl
rsync://rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 10:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:f4:48:7c:6f:1f:e4:93:f1:12:2a:5b:ea:8f:23:ae:86:4b:b8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E68618F45B841B2C0F36D3F8AD7C98AF5A517052
Validity
Not Before: Mar 6 05:59:52 2025 GMT
Not After : Mar 5 06:04:52 2026 GMT
Subject: CN=C5A4F834C0CFE848B3715CE329CAEEA7E61D7D28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:88:55:d3:00:63:dc:a9:6d:07:80:ef:99:
45:8d:e8:d3:80:65:cb:2c:90:48:fd:c2:a8:c7:2d:
71:65:ec:f9:97:41:af:cb:be:6e:83:51:f0:a9:b6:
21:f3:24:39:1f:a3:c0:fc:ad:42:06:1c:56:54:6c:
c4:26:b1:b1:de:e8:d8:2d:b4:61:77:37:9c:f4:aa:
59:81:44:c4:b9:3d:3f:f0:2a:72:42:82:11:fe:51:
40:3d:fb:37:fd:4d:2d:52:c6:4b:73:9c:a6:b4:df:
82:fd:98:ff:77:78:49:f4:45:23:4f:d7:7b:37:4b:
b3:9b:e5:8a:6a:51:1a:47:11:43:53:45:35:c1:67:
17:7a:02:db:72:fb:46:0c:53:56:60:bf:aa:c8:b8:
14:39:8d:4a:08:82:91:8d:0b:f9:88:66:a8:9f:a4:
66:68:cd:c0:e3:86:10:be:b3:66:12:33:70:50:21:
88:6d:0d:51:5e:dc:a3:e4:fe:77:41:da:09:79:50:
c4:99:18:83:4e:20:f4:3f:53:9e:ea:c6:06:cc:54:
4a:22:4d:c2:29:16:32:e6:fa:57:b2:2b:c1:ce:e5:
74:a5:d5:48:a7:03:4f:7f:5c:f1:17:29:04:92:61:
44:3a:6c:3a:43:6f:f1:09:84:4b:36:de:dd:0f:98:
66:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A4:F8:34:C0:CF:E8:48:B3:71:5C:E3:29:CA:EE:A7:E6:1D:7D:28
X509v3 Authority Key Identifier:
keyid:E6:86:18:F4:5B:84:1B:2C:0F:36:D3:F8:AD:7C:98:AF:5A:51:70:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E68618F45B841B2C0F36D3F8AD7C98AF5A517052.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5tz3XhhUaYpPgVHWeJwq1kYqXLj1SQFRFbesNH5DHmPU/1/323830343a383833633a313430303a3a2f34302d3430203d3e20323732373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:883c:1400::/40
Signature Algorithm: sha256WithRSAEncryption
66:1f:92:42:81:00:ad:b4:9a:c6:10:ea:a2:e1:3c:20:4e:b8:
79:c5:7f:b9:24:a4:7c:cd:4a:5b:65:1d:51:fa:64:e2:60:5e:
f4:2e:9e:c3:66:65:29:47:14:15:ef:0d:d4:2d:07:cd:b9:83:
b4:33:ef:3b:1b:d1:24:37:ab:29:02:f1:f9:f9:60:df:e4:b5:
5a:25:d7:85:bb:89:8c:1c:e5:05:17:fe:43:03:70:34:04:4a:
63:f7:f6:c6:7e:ed:be:da:e9:2d:86:14:96:3c:47:b2:5b:b5:
a2:d4:e0:b5:6b:47:8b:33:d8:35:0a:21:2e:71:7c:7b:82:7a:
04:6f:7c:f3:d1:5f:26:dc:1e:06:50:97:c1:b5:b4:96:90:77:
81:a9:f7:b3:b2:5a:47:5c:37:89:fa:6c:9f:e3:29:17:17:8f:
d5:2f:21:ae:d4:11:e8:13:ce:49:45:ed:0c:2c:76:81:e0:70:
7b:5f:cc:69:33:98:73:60:15:e9:71:de:da:c0:43:d6:46:be:
ab:de:29:3e:34:9e:59:e4:7a:58:94:fc:f5:c2:f8:60:f5:2f:
0d:ab:7a:1d:b0:b3:a2:e4:3d:b4:ca:89:61:25:60:a3:7d:d3:
e5:57:d1:29:15:b5:b2:7b:a0:de:8b:9c:c9:c6:ee:d6:fb:20:
60:f8:f5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:31:12 2025 by rpki-client