Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3232302e302f32322d3232203d3e20323632383638.roa
File: 3137372e32302e3232302e302f32322d3232203d3e20323632383638.roa (raw, json)
Hash identifier: Bmzd1W2IfF32isZRe5BGWWb1v2MaiX08t+vNwpwNITw=
Subject key identifier: 1A:D4:C2:1F:80:93:1E:1E:39:69:10:1B:12:04:A4:89:B5:AF:5E:D9
Certificate issuer: /CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Certificate serial: 2518C822E21846E80BC4081095FA7A8C1095E4CA
Authority key identifier: BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject info access: rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3232302e302f32322d3232203d3e20323632383638.roa
Signing time: Thu 06 Mar 2025 11:39:06 +0000
ROA not before: Thu 06 Mar 2025 11:34:06 +0000
ROA not after: Thu 05 Mar 2026 11:39:06 +0000
asID: 262868
IP address blocks: 177.20.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:18:c8:22:e2:18:46:e8:0b:c4:08:10:95:fa:7a:8c:10:95:e4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BAE2D54D6C1793B7DCD774699216D316E8C75351
Validity
Not Before: Mar 6 11:34:06 2025 GMT
Not After : Mar 5 11:39:06 2026 GMT
Subject: CN=1AD4C21F80931E1E3969101B1204A489B5AF5ED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0d:8b:7b:e3:11:b1:e2:b0:d8:02:dd:cd:16:
e5:bd:3a:a9:42:4d:38:a9:be:21:83:42:24:4b:9b:
df:e9:cf:5e:83:ff:8c:be:46:e2:57:f3:fa:7b:99:
8c:a4:fd:f0:43:1c:4d:7e:60:ff:ed:f6:8a:f8:a6:
da:53:6c:ec:07:80:04:a4:4e:77:57:fb:cf:2c:34:
d4:32:1e:37:11:94:76:fe:80:02:b3:6b:85:7a:1e:
0e:6f:19:57:57:14:a1:12:44:4f:ae:dc:fa:2b:e1:
70:1a:70:e7:66:e9:1b:bd:5e:11:59:e8:d5:8f:a7:
48:30:f9:57:bf:ae:45:a1:d6:ea:b6:b9:25:69:9c:
f2:68:f4:52:fd:c6:12:dc:10:b2:67:90:e7:21:81:
1f:73:cd:a0:21:3b:3f:b4:4a:61:b0:51:21:26:7b:
4e:9f:dd:d6:f6:a9:1d:06:7f:a6:2b:e4:04:f6:4c:
8f:84:03:12:48:d2:40:74:c8:bd:fd:d6:ea:cd:01:
84:25:24:41:f6:72:d4:0b:26:e6:fc:b6:c6:23:4f:
f6:45:8e:09:40:7e:e5:49:62:49:bd:1b:22:73:f0:
0d:83:66:89:b8:a4:98:5f:8b:bb:df:a7:26:7d:89:
e8:21:5b:37:f6:ea:7d:0a:7a:f2:57:80:f1:e5:d8:
49:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D4:C2:1F:80:93:1E:1E:39:69:10:1B:12:04:A4:89:B5:AF:5E:D9
X509v3 Authority Key Identifier:
keyid:BA:E2:D5:4D:6C:17:93:B7:DC:D7:74:69:92:16:D3:16:E8:C7:53:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BAE2D54D6C1793B7DCD774699216D316E8C75351.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/64TWQ84Swgi5q85Jt7XdESE16VPzvbpNtujHV6yzzKwA/1/3137372e32302e3232302e302f32322d3232203d3e20323632383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.20.220.0/22
Signature Algorithm: sha256WithRSAEncryption
30:5f:0c:04:f0:15:65:67:62:b8:16:45:57:6f:12:d0:47:ae:
09:38:dd:50:0a:3e:03:62:50:57:e6:e9:a3:73:3f:81:e3:fe:
e1:3b:34:0f:6b:f5:37:76:fb:8b:06:88:38:7e:5a:29:d8:8c:
f9:45:bd:5b:74:c1:44:e2:2a:e8:52:a6:89:6e:a8:37:3b:6d:
26:a3:46:c9:26:21:7e:9c:d4:bb:c8:08:cc:aa:c3:85:76:63:
65:e3:2b:81:07:9d:e4:fe:12:e3:86:f3:b4:85:0c:27:97:b4:
b3:60:74:45:eb:3e:20:e3:5d:16:1a:1f:5d:24:cf:a9:12:25:
74:47:bf:48:5d:4c:ae:2a:2e:26:39:e7:8c:2b:9c:de:c7:ff:
13:3f:56:6f:aa:7f:4f:8f:2d:83:45:24:f7:8d:ef:17:93:cc:
ba:e8:e3:20:f3:1e:3a:fd:14:f6:46:34:81:a4:62:64:5d:b8:
c3:64:ea:0f:5c:09:d2:5e:00:df:9b:a4:eb:49:df:d3:f6:be:
b0:ed:90:de:0a:c5:c2:13:14:aa:7c:d2:61:e8:c0:dd:02:a9:
9e:89:d8:b2:22:16:5d:13:d0:a7:d0:d5:56:3d:c5:5b:a9:6c:
e9:30:04:fe:79:46:13:86:1c:ee:88:1a:27:de:df:7d:4b:9d:
25:69:95:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:13:24 2025 by rpki-client