Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32312d3231203d3e20323632383638.roa
File: 3137372e32302e3230382e302f32312d3231203d3e20323632383638.roa (raw, json)
Hash identifier: z9fOmU5nAqHyHx+aFuqYVkhCfCHfhfOCrGR1iY4F+b4=
Subject key identifier: B9:38:BC:78:2E:D4:31:5E:FC:55:82:70:DF:E0:C8:1B:0F:06:E7:DA
Certificate issuer: /CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Certificate serial: 707284922F35B51415C13973A5A513249CA8C798
Authority key identifier: BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject info access: rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32312d3231203d3e20323632383638.roa
Signing time: Thu 06 Mar 2025 11:39:00 +0000
ROA not before: Thu 06 Mar 2025 11:34:00 +0000
ROA not after: Thu 05 Mar 2026 11:39:00 +0000
asID: 262868
IP address blocks: 177.20.208.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:72:84:92:2f:35:b5:14:15:c1:39:73:a5:a5:13:24:9c:a8:c7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Validity
Not Before: Mar 6 11:34:00 2025 GMT
Not After : Mar 5 11:39:00 2026 GMT
Subject: CN=B938BC782ED4315EFC558270DFE0C81B0F06E7DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:a5:b3:3e:3c:eb:bf:c9:0e:57:80:31:f5:
7a:62:ee:79:39:59:e2:17:ff:73:10:e1:34:43:96:
f5:58:ac:96:fd:c6:49:ce:35:1c:03:15:e3:91:99:
5d:71:04:e7:ad:1d:de:9d:f5:29:da:05:7f:aa:19:
36:44:6b:4b:09:dd:96:b7:51:31:6e:6c:f2:db:c4:
c4:c1:91:a5:74:fe:3d:cb:2a:a6:40:73:20:5e:cb:
ae:93:cf:45:e5:a5:d8:7f:6e:af:65:fe:6c:5f:04:
1a:4c:21:b2:3b:fe:28:40:f0:8a:9f:74:7e:b1:80:
cd:c2:04:e2:99:5f:68:9c:c7:eb:89:43:d7:62:4d:
32:1d:0f:77:7e:32:c3:29:42:9a:bb:a6:0c:a5:78:
53:76:cd:78:de:5c:4a:5d:c5:39:22:61:b7:b3:aa:
72:e8:a8:ae:c9:1f:4a:3b:ff:be:7b:d1:ab:30:33:
58:79:06:96:ce:60:94:53:9d:36:1d:ef:49:d2:07:
f7:95:f5:62:fc:ca:8a:86:cf:69:ff:86:17:4b:7a:
1f:71:4f:09:9e:8d:4e:bd:89:0e:79:9b:1c:fd:df:
5e:16:56:c7:46:d7:b2:82:14:b1:80:11:9a:f3:ba:
1c:bb:64:cf:cb:b6:f3:75:4b:08:51:d7:37:50:c1:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:38:BC:78:2E:D4:31:5E:FC:55:82:70:DF:E0:C8:1B:0F:06:E7:DA
X509v3 Authority Key Identifier:
keyid:BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32312d3231203d3e20323632383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.20.208.0/21
Signature Algorithm: sha256WithRSAEncryption
85:5d:a7:05:8a:18:01:a4:3f:e2:39:0b:31:d1:77:6a:b1:67:
22:ba:44:f4:e7:60:c9:16:4c:8e:69:c9:b3:2d:09:4d:f7:98:
ec:5e:82:c7:82:1e:54:e8:e9:b8:e3:4c:da:e3:bc:c8:1f:97:
73:d5:80:ff:1f:fc:59:65:48:83:9e:3c:73:be:59:54:ca:b1:
2a:39:fd:61:7b:0d:76:90:d6:b7:22:2c:69:de:0f:6b:98:4c:
a7:32:76:63:54:82:2b:01:4f:58:e3:c7:d9:4a:b7:90:20:ae:
0c:34:0b:08:16:f8:6f:61:4b:41:d7:c3:03:4d:d2:7e:10:d2:
c7:14:2b:31:e8:f0:2e:54:7a:c0:3b:4c:74:0e:9f:31:3e:78:
29:2f:f8:af:8a:f2:90:14:fd:a7:c1:b1:38:30:e2:11:83:eb:
35:c0:12:1a:86:31:67:6a:f0:c6:48:1a:3c:2f:e6:62:d9:3f:
24:2e:21:ed:3c:c6:66:d6:34:5c:c6:7d:25:9f:b6:2b:5f:3d:
23:ac:bf:e6:b1:58:9f:06:43:7e:82:6d:4a:ba:bd:93:6f:95:
49:f6:5f:f8:ab:5a:b8:23:cd:30:ff:48:bb:1a:9f:24:96:b8:
90:fb:17:3f:4c:3f:a3:b0:2c:2f:98:4f:ba:d8:13:75:72:49:
30:67:bc:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:37:25 2025 by rpki-client