Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3133382e3235352e3139382e302f32332d3233203d3e20323632383638.roa
File: 3133382e3235352e3139382e302f32332d3233203d3e20323632383638.roa (raw, json)
Hash identifier: tmYwdQoE4cMa9mY92Iqj8HxgXfZrk29hnQ9NbQy2QYo=
Subject key identifier: 5D:83:49:8E:9F:7E:DF:5C:DC:00:B3:4D:4B:E1:EC:40:71:DB:C1:BE
Certificate issuer: /CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Certificate serial: 209CFC608B72B1C04F7EFF45D56C25F2AF1FCC77
Authority key identifier: BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject info access: rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3133382e3235352e3139382e302f32332d3233203d3e20323632383638.roa
Signing time: Thu 06 Mar 2025 11:39:02 +0000
ROA not before: Thu 06 Mar 2025 11:34:02 +0000
ROA not after: Thu 05 Mar 2026 11:39:02 +0000
asID: 262868
IP address blocks: 138.255.198.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:9c:fc:60:8b:72:b1:c0:4f:7e:ff:45:d5:6c:25:f2:af:1f:cc:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Validity
Not Before: Mar 6 11:34:02 2025 GMT
Not After : Mar 5 11:39:02 2026 GMT
Subject: CN=5D83498E9F7EDF5CDC00B34D4BE1EC4071DBC1BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:35:12:b4:12:62:63:78:39:0f:6b:98:d2:
68:7e:90:b2:34:aa:d0:ba:70:8c:11:a1:d6:c7:ae:
d9:fc:d3:f7:c1:38:4a:58:75:10:b5:5a:bb:bb:ed:
c9:45:ae:62:38:c1:5e:1d:d2:b4:79:7f:87:02:d3:
9f:6c:6d:d9:e0:10:30:ed:71:b4:99:cc:93:42:6a:
98:16:75:6e:ae:98:8b:2e:ca:43:e7:e1:59:cb:6b:
4e:a8:23:38:09:2c:a7:51:fe:9a:e6:94:67:6f:eb:
a0:13:24:ed:8f:0c:5d:d6:79:55:e9:9c:88:cc:59:
cd:00:e3:44:2d:7a:65:c6:33:90:be:71:70:ff:de:
73:33:0b:45:c1:6b:16:60:13:3b:88:97:a3:25:1c:
fd:88:5a:ce:ee:44:7a:96:53:e8:56:ad:05:2e:e8:
d4:2d:1d:88:08:6e:b3:da:c5:de:d3:36:12:78:26:
86:55:22:5c:79:a8:55:9d:57:61:6b:7b:9c:84:1c:
1c:f4:ef:42:b2:e3:cc:af:28:54:df:bf:19:27:b8:
ef:8c:50:dc:91:07:5b:31:4a:b6:34:12:70:b5:69:
18:e7:4f:28:65:f9:02:9f:1e:dd:25:3f:4b:c9:70:
fa:21:e6:0c:91:38:b1:25:a6:07:b0:dc:e1:03:1f:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:83:49:8E:9F:7E:DF:5C:DC:00:B3:4D:4B:E1:EC:40:71:DB:C1:BE
X509v3 Authority Key Identifier:
keyid:BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3133382e3235352e3139382e302f32332d3233203d3e20323632383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.255.198.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:b1:b0:b5:2c:ba:fe:0d:0c:5d:c5:8a:0c:a8:de:d8:37:83:
99:86:7e:b3:c0:93:c1:0c:79:1e:39:7d:7f:30:80:f5:00:b7:
72:d0:ac:8d:aa:51:c3:e4:82:75:13:0a:24:3d:2e:36:df:0d:
8a:36:ef:a2:c1:59:b8:88:ac:f8:cc:82:cb:81:b7:97:8b:5a:
dd:e4:23:03:10:f8:51:1b:aa:db:40:8e:24:ff:72:19:15:1a:
e1:1c:5b:2c:30:f8:f4:6e:84:b4:f9:a4:49:7a:12:4e:40:4d:
a3:f1:81:af:db:43:6e:9f:7a:9b:9f:e5:38:64:20:e7:a7:f5:
eb:71:94:0a:6d:6e:a2:a1:bb:91:ff:d9:34:2d:e0:0c:6a:64:
72:a4:49:1a:0d:b0:bb:e7:c4:6e:ae:a3:a4:b1:15:d5:f3:3d:
67:58:2a:24:04:e5:b3:f7:19:14:5f:f1:cb:a3:f3:97:40:03:
38:9b:0a:54:c9:9a:61:c4:76:93:ae:3a:e2:69:47:d7:86:d3:
14:5c:07:e3:32:0b:b3:12:41:e2:48:d8:bc:44:fb:ff:3c:4e:
18:40:22:46:c3:79:c4:41:7c:bb:86:b7:60:4f:f1:ec:17:93:
db:74:9d:62:c1:9b:75:2c:71:72:dd:d7:64:86:b9:c0:12:43:
a1:a6:47:16
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUIJz8YItyscBPfv9F1Wwl8q8fzHcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkFFMkQ1NEQ2QzE3OTNCN0RDRDc3NDY5OTIxNkQzMTZF
OEM3NTM1MTAeFw0yNTAzMDYxMTM0MDJaFw0yNjAzMDUxMTM5MDJaMDMxMTAvBgNV
BAMTKDVEODM0OThFOUY3RURGNUNEQzAwQjM0RDRCRTFFQzQwNzFEQkMxQkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gDUStBJiY3g5D2uY0mh+kLI0
qtC6cIwRodbHrtn80/fBOEpYdRC1Wru77clFrmI4wV4d0rR5f4cC059sbdngEDDt
cbSZzJNCapgWdW6umIsuykPn4VnLa06oIzgJLKdR/prmlGdv66ATJO2PDF3WeVXp
nIjMWc0A40QtemXGM5C+cXD/3nMzC0XBaxZgEzuIl6MlHP2IWs7uRHqWU+hWrQUu
6NQtHYgIbrPaxd7TNhJ4JoZVIlx5qFWdV2Fre5yEHBz070Ky48yvKFTfvxknuO+M
UNyRB1sxSrY0EnC1aRjnTyhl+QKfHt0lP0vJcPoh5gyROLElpgew3OEDH+qNAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUXYNJjp9+31zcALNNS+HsQHHbwb4wHwYDVR0j
BBgwFoAUuuLVTWwXk7fc13RpkhbTFujHU1EwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNjRUV1E4NFN3Z2k1cTg1SnQ3WGRFU0UxNlZQenZicE50dWpIVjZ5enpL
d0EvMS9CQUUyRDU0RDZDMTc5M0I3RENENzc0Njk5MjE2RDMxNkU4Qzc1MzUxLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBRTJENTRENkMxNzkzQjdE
Q0Q3NzQ2OTkyMTZEMzE2RThDNzUzNTEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzY0VFdRODRTd2dpNXE4NUp0N1hkRVNFMTZWUHp2YnBOdHVqSFY2eXp6S3dBLzEv
MzEzMzM4MmUzMjM1MzUyZTMxMzkzODJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy
MzYzMjM4MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAYr/xjANBgkqhkiG9w0BAQsFAAOCAQEAK7Gw
tSy6/g0MXcWKDKje2DeDmYZ+s8CTwQx5Hjl9fzCA9QC3ctCsjapRw+SCdRMKJD0u
Nt8NijbvosFZuIis+MyCy4G3l4ta3eQjAxD4URuq20COJP9yGRUa4RxbLDD49G6E
tPmkSXoSTkBNo/GBr9tDbp96m5/lOGQg56f163GUCm1uoqG7kf/ZNC3gDGpkcqRJ
Gg2wu+fEbq6jpLEV1fM9Z1gqJATls/cZFF/xy6Pzl0ADOJsKVMmaYcR2k6464mlH
14bTFFwH4zILsxJB4kjYvET7/zxOGEAiRsN5xEF8u4a3YE/x7BeT23SdYsGbdSxx
ct3XZIa5wBJDoaZHFg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 05:42:53 2025 by rpki-client