Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32322d3232203d3e20323632383638.roa
File: 3137372e32302e3230382e302f32322d3232203d3e20323632383638.roa (raw, json)
Hash identifier: WdyTYOE82BjIDPtBy4MsjKZ/5kktQx0szzJEshv9lDI=
Subject key identifier: 42:A2:FF:63:47:A5:BE:1A:82:3C:21:F9:5F:25:DE:DA:C4:D4:AF:5B
Certificate issuer: /CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Certificate serial: 65A729913B249846F5A8F5E9E45FD7BD6673A0E5
Authority key identifier: BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject info access: rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32322d3232203d3e20323632383638.roa
Signing time: Thu 06 Mar 2025 11:39:01 +0000
ROA not before: Thu 06 Mar 2025 11:34:01 +0000
ROA not after: Thu 05 Mar 2026 11:39:01 +0000
asID: 262868
IP address blocks: 177.20.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:a7:29:91:3b:24:98:46:f5:a8:f5:e9:e4:5f:d7:bd:66:73:a0:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Validity
Not Before: Mar 6 11:34:01 2025 GMT
Not After : Mar 5 11:39:01 2026 GMT
Subject: CN=42A2FF6347A5BE1A823C21F95F25DEDAC4D4AF5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:9e:b5:de:64:71:5a:96:a3:7c:9f:fb:36:
66:22:98:43:ad:66:3e:04:b8:4d:8f:44:23:f5:b6:
cb:6c:62:81:95:4c:04:1a:fd:46:fe:fe:6d:2a:6f:
ab:e8:7f:8d:f6:ac:19:6a:4c:e3:7f:1a:fa:91:52:
cb:ac:20:77:62:2e:44:ac:98:75:26:f9:98:35:40:
2b:24:51:0c:52:68:e7:dc:40:b6:e7:ad:b4:32:54:
6a:04:05:fe:bc:c2:81:fe:83:12:a0:cf:3f:52:c0:
64:3d:38:60:fb:03:b6:64:b4:bc:8f:18:17:73:67:
4e:69:7b:49:6c:c9:47:e5:76:ed:53:d3:5d:a7:94:
c5:fe:46:4e:4c:05:c2:61:da:08:d8:04:6f:50:6c:
ff:9a:8a:dd:cc:4c:0a:03:2e:49:cc:ff:0e:2d:f7:
63:91:98:1e:40:df:cb:6f:54:05:25:05:5c:9c:cf:
52:d0:4d:a4:60:35:9d:bf:62:12:1f:64:63:e1:5a:
23:01:80:ee:90:34:7f:1c:d5:9e:c2:a8:0c:f1:4d:
c2:40:42:5c:2c:64:dc:8b:1f:e9:a6:5f:a9:76:c4:
1e:b4:8c:ed:64:ba:69:ba:be:6d:3d:5d:df:ee:93:
66:cf:3f:db:7b:2e:53:3a:cf:b2:31:24:57:1d:a7:
fb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A2:FF:63:47:A5:BE:1A:82:3C:21:F9:5F:25:DE:DA:C4:D4:AF:5B
X509v3 Authority Key Identifier:
keyid:BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3230382e302f32322d3232203d3e20323632383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.20.208.0/22
Signature Algorithm: sha256WithRSAEncryption
07:63:2c:9e:e5:75:62:56:90:32:4a:7b:34:4c:06:13:5a:f7:
88:a0:c9:64:c3:12:97:94:53:04:11:33:1b:8c:4b:a4:25:3e:
40:c5:16:6e:1d:a2:a8:3b:6d:b1:77:94:02:c8:b0:39:57:14:
ec:4d:04:ae:cd:81:12:7a:42:13:87:f6:51:77:de:f7:54:0c:
3a:63:d9:cf:06:89:8b:1a:4f:49:61:02:65:e2:63:c5:39:aa:
aa:d2:c1:28:06:46:42:ca:70:00:de:3d:fd:60:1b:48:56:8c:
5d:31:4a:7d:ad:11:45:ce:f8:79:1f:02:bb:ce:3a:28:ef:c3:
b7:ce:95:9f:c5:05:88:c8:0e:12:48:83:b7:90:71:75:7e:a9:
5e:ac:a1:d2:41:9e:b3:8d:63:42:2d:d6:47:d2:df:e6:c8:4b:
01:e9:20:e5:0d:a8:c9:fe:e1:06:a0:2c:bb:fd:c5:5d:c3:76:
3a:8c:28:43:50:dd:cf:5d:5f:9f:b4:a9:1d:ff:60:d7:78:a3:
f9:68:3e:55:10:20:e3:03:50:c4:9b:c1:d6:5d:56:62:4f:24:
34:5f:f2:9b:81:5d:a9:7b:69:3a:d1:16:f3:f6:68:1a:27:8b:
db:89:e9:23:ad:43:87:61:24:af:ab:c1:11:2c:7d:5f:b8:fa:
13:2c:6d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:33:49 2025 by rpki-client