Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/0/AS52900.roa
File: AS52900.roa (raw, json)
Hash identifier: qckn3zvZJ/gYovfD8XqB9rjJlrO4tvGRqJ+rM8556rw=
Subject key identifier: 60:53:49:A6:66:54:20:CC:2A:03:FE:97:20:49:66:0C:C5:54:79:5E
Certificate issuer: /CN=C68E4855E8AF4680CC3827C5F548D11AFEEC9178
Certificate serial: 0B513F65F1695E6B536588C5ED58E3C7AD1361DD
Authority key identifier: C6:8E:48:55:E8:AF:46:80:CC:38:27:C5:F5:48:D1:1A:FE:EC:91:78
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C68E4855E8AF4680CC3827C5F548D11AFEEC9178.cer
Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/0/AS52900.roa
Signing time: Wed 10 Apr 2024 22:18:29 +0000
ROA not before: Wed 10 Apr 2024 22:13:29 +0000
ROA not after: Wed 09 Apr 2025 22:18:29 +0000
asID: 52900
IP address blocks: 131.221.252.0/22 maxlen: 24
138.186.52.0/22 maxlen: 24
186.251.156.0/22 maxlen: 24
2804:26c8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:51:3f:65:f1:69:5e:6b:53:65:88:c5:ed:58:e3:c7:ad:13:61:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C68E4855E8AF4680CC3827C5F548D11AFEEC9178
Validity
Not Before: Apr 10 22:13:29 2024 GMT
Not After : Apr 9 22:18:29 2025 GMT
Subject: CN=605349A6665420CC2A03FE972049660CC554795E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fa:67:53:57:a5:f1:7b:3d:54:2c:0d:c5:98:
21:32:60:ad:7a:e1:e9:09:46:a3:7a:eb:65:54:b5:
fe:42:f2:da:d3:4f:a6:79:a4:b5:7e:9b:91:20:68:
d8:24:b0:7e:02:65:12:80:8b:d6:97:cc:09:e7:bf:
d1:61:0c:44:1d:54:b9:e8:21:cd:71:53:c3:80:bb:
8f:20:b1:d9:25:57:f1:45:df:49:7a:d1:ae:69:0a:
f8:3d:13:f9:5a:9c:6e:17:62:0c:78:ae:18:2e:11:
d2:89:bb:6a:79:30:df:39:af:97:56:b7:e8:d2:cb:
8f:30:5d:61:62:f2:f1:38:63:02:b9:eb:b4:c8:84:
17:e2:35:26:20:bd:7a:e6:cc:73:e9:0b:b9:1c:83:
3f:eb:39:f3:c7:4c:a0:8a:26:b8:98:0a:d7:52:d4:
b4:81:ca:86:45:2e:87:e3:90:64:ca:56:74:bf:2d:
ed:4d:ac:6d:f9:f1:24:8d:ee:34:93:cd:df:eb:6d:
9e:6e:cd:ef:29:44:1a:5d:97:5f:15:a7:a2:c5:c6:
50:6c:88:b2:51:fd:4b:c4:1b:21:b1:b2:ef:b4:95:
2a:1e:2d:24:ab:dd:8f:60:5c:af:f5:1a:33:b5:5e:
6b:c5:a2:e3:4d:b6:f4:49:a8:61:02:b8:a5:dd:56:
cb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:53:49:A6:66:54:20:CC:2A:03:FE:97:20:49:66:0C:C5:54:79:5E
X509v3 Authority Key Identifier:
keyid:C6:8E:48:55:E8:AF:46:80:CC:38:27:C5:F5:48:D1:1A:FE:EC:91:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/0/C68E4855E8AF4680CC3827C5F548D11AFEEC9178.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/C68E4855E8AF4680CC3827C5F548D11AFEEC9178.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/0/AS52900.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.252.0/22
138.186.52.0/22
186.251.156.0/22
IPv6:
2804:26c8::/32
Signature Algorithm: sha256WithRSAEncryption
04:39:3c:a5:61:14:6b:3b:e6:01:3b:d6:eb:2b:9b:0f:51:74:
a0:46:c0:de:dd:b0:7d:9e:f6:fe:e7:46:50:cd:e9:23:29:82:
4c:7d:ba:74:34:c4:7b:6f:32:05:f6:42:f7:1d:62:eb:4b:d6:
08:d8:cf:95:39:7c:1f:b0:da:21:29:51:1f:59:67:03:c9:c8:
84:e8:97:2f:db:91:c9:8d:70:1f:af:93:e4:70:1e:1e:d0:bd:
ad:96:ef:3b:4e:c5:b9:48:8b:8b:33:8e:ad:ba:11:53:e3:1e:
81:ec:fc:de:c1:9b:e6:81:7f:10:7d:3c:95:d2:31:60:c8:39:
5f:d3:94:22:31:52:c3:2e:e2:0b:27:ef:51:d4:90:ff:3f:89:
7f:bf:b6:57:5d:c9:b6:7a:4b:5d:f4:8a:bc:89:66:34:70:84:
5a:57:b5:f7:cf:db:52:9c:b3:49:8b:2d:a1:d4:d1:39:01:e5:
2f:c0:b9:4a:79:56:eb:11:e7:61:b0:91:0f:69:8d:8b:ff:dc:
22:27:7d:37:64:4f:36:66:ff:4b:7f:56:38:01:0c:3c:34:6d:
92:cd:17:5d:70:74:ef:35:f2:ce:88:70:56:3e:be:8c:c9:bf:
2e:ea:2c:5c:40:1c:35:7c:64:56:30:14:42:9e:67:71:73:35:
e9:11:79:c6
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUC1E/ZfFpXmtTZYjF7Vjjx60TYd0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzY4RTQ4NTVFOEFGNDY4MENDMzgyN0M1RjU0OEQxMUFG
RUVDOTE3ODAeFw0yNDA0MTAyMjEzMjlaFw0yNTA0MDkyMjE4MjlaMDMxMTAvBgNV
BAMTKDYwNTM0OUE2NjY1NDIwQ0MyQTAzRkU5NzIwNDk2NjBDQzU1NDc5NUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk+mdTV6Xxez1ULA3FmCEyYK16
4ekJRqN662VUtf5C8trTT6Z5pLV+m5EgaNgksH4CZRKAi9aXzAnnv9FhDEQdVLno
Ic1xU8OAu48gsdklV/FF30l60a5pCvg9E/lanG4XYgx4rhguEdKJu2p5MN85r5dW
t+jSy48wXWFi8vE4YwK567TIhBfiNSYgvXrmzHPpC7kcgz/rOfPHTKCKJriYCtdS
1LSByoZFLofjkGTKVnS/Le1NrG358SSN7jSTzd/rbZ5uze8pRBpdl18Vp6LFxlBs
iLJR/UvEGyGxsu+0lSoeLSSr3Y9gXK/1GjO1XmvFouNNtvRJqGECuKXdVsvbAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUYFNJpmZUIMwqA/6XIElmDMVUeV4wHwYDVR0j
BBgwFoAUxo5IVeivRoDMOCfF9UjRGv7skXgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNjczcVlQU0syRFdXakNCYW1XaE5DN3JncnFoQ1FQQWpkR0hTZENabjlW
Nm8vMC9DNjhFNDg1NUU4QUY0NjgwQ0MzODI3QzVGNTQ4RDExQUZFRUM5MTc4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wL0M2OEU0ODU1RThBRjQ2ODBD
QzM4MjdDNUY1NDhEMTFBRkVFQzkxNzguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr
BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby82NzNx
WVBTSzJEV1dqQ0JhbVdoTkM3cmdycWhDUVBBamRHSFNkQ1puOVY2by8wL0FTNTI5
MDAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E
KzApMBgEAgABMBIDBAKD3fwDBAKKujQDBAK6+5wwDQQCAAIwBwMFACgEJsgwDQYJ
KoZIhvcNAQELBQADggEBAAQ5PKVhFGs75gE71usrmw9RdKBGwN7dsH2e9v7nRlDN
6SMpgkx9unQ0xHtvMgX2QvcdYutL1gjYz5U5fB+w2iEpUR9ZZwPJyIToly/bkcmN
cB+vk+RwHh7Qva2W7ztOxblIi4szjq26EVPjHoHs/N7Bm+aBfxB9PJXSMWDIOV/T
lCIxUsMu4gsn71HUkP8/iX+/tlddybZ6S130iryJZjRwhFpXtffP21Kcs0mLLaHU
0TkB5S/AuUp5VusR52GwkQ9pjYv/3CInfTdkTzZm/0t/VjgBDDw0bZLNF11wdO81
8s6IcFY+vozJvy7qLFxAHDV8ZFYwFEKeZ3FzNekRecY=
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:52:56 2025 by rpki-client