Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS28664.roa
File: AS28664.roa (raw, json)
Hash identifier: T6Ir5/jDLVnoQ+qeWx91oNfgpMUbLVj950jV5ntp3pA=
Subject key identifier: CB:DB:FE:BE:4A:F8:3D:BD:6B:70:A6:66:6D:AA:C6:5F:71:5A:C8:70
Certificate issuer: /CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD
Certificate serial: 0E86A0FA6307CBF2432F8BD662A9BB24CC7F7C0D
Authority key identifier: 5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS28664.roa
Signing time: Wed 12 Mar 2025 23:23:57 +0000
ROA not before: Wed 12 Mar 2025 23:18:57 +0000
ROA not after: Wed 11 Mar 2026 23:23:57 +0000
asID: 28664
IP address blocks: 189.1.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:86:a0:fa:63:07:cb:f2:43:2f:8b:d6:62:a9:bb:24:cc:7f:7c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD
Validity
Not Before: Mar 12 23:18:57 2025 GMT
Not After : Mar 11 23:23:57 2026 GMT
Subject: CN=CBDBFEBE4AF83DBD6B70A6666DAAC65F715AC870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:04:b5:b3:0b:b1:b6:ab:82:86:66:f1:25:37:
e3:2d:8a:32:9d:8d:99:73:cd:c4:27:a2:52:12:43:
62:39:d4:c2:4f:62:c0:d4:82:3d:02:40:db:07:8c:
46:26:bf:3a:1d:fe:db:9d:28:b4:d4:e8:79:1b:53:
70:4b:50:10:98:85:51:c4:18:04:c3:c5:4f:f4:de:
89:ae:d7:b9:26:26:7c:9a:0c:30:2b:8a:eb:1c:dc:
f3:39:5f:fd:df:21:3d:27:87:79:04:55:b5:2d:f2:
97:9b:be:d5:b5:98:9d:f3:6d:fb:6f:54:91:2a:52:
31:82:a3:98:7e:3d:a7:1f:73:f0:d1:35:ba:e6:27:
28:70:f7:78:00:52:e4:cd:df:df:57:8b:4c:5f:55:
62:e5:45:40:0c:d0:2f:06:30:19:7e:96:8c:c5:dc:
63:8b:c2:8d:fe:9c:ae:7d:b7:00:ea:62:71:30:a3:
b9:72:c8:7a:ba:a1:21:ac:ea:e8:14:fa:83:70:a5:
d0:65:11:85:b1:ad:d1:20:b6:99:9e:9d:d1:39:8d:
de:40:98:c6:54:76:41:3f:f6:fc:24:94:ff:3f:88:
53:c2:0f:59:f4:d8:ad:eb:07:7c:be:5a:87:85:4d:
70:ab:59:d1:8d:2b:1f:10:ba:66:13:be:7f:77:7e:
fb:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DB:FE:BE:4A:F8:3D:BD:6B:70:A6:66:6D:AA:C6:5F:71:5A:C8:70
X509v3 Authority Key Identifier:
keyid:5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS28664.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.1.80.0/20
Signature Algorithm: sha256WithRSAEncryption
9a:9b:33:ba:df:d5:98:93:c8:8b:f8:45:8f:71:9b:cf:c4:0a:
76:08:48:3d:17:33:7d:65:80:5f:a7:e6:dc:f8:76:d4:9d:a0:
2d:82:4c:56:08:ed:78:0d:a7:07:7d:43:45:fb:5f:89:3c:94:
f7:c2:7a:a4:85:2c:ef:f5:0e:5a:75:27:42:3f:e7:81:d5:2f:
d7:b4:4a:ae:73:06:ce:fe:7e:eb:07:53:65:93:99:28:8c:ed:
f8:2b:c5:34:a5:c7:49:b9:39:a6:12:13:71:9d:d9:c7:e1:77:
a1:43:71:fc:d9:17:17:b9:4f:62:38:d3:82:e4:26:31:13:8b:
3c:2a:0b:e9:f5:89:83:e8:29:2a:c6:b0:67:7e:e5:f9:b6:58:
96:4c:d1:16:e0:79:be:93:a1:db:83:07:77:4f:8e:34:0e:60:
64:17:b3:4e:4c:de:3f:77:ea:88:b0:b5:e7:84:d5:aa:93:d5:
a0:27:d6:4f:4f:cc:33:6a:54:2b:4c:d0:15:54:fa:06:32:1a:
4c:a2:1e:bc:09:cf:f3:a0:f8:a2:07:5e:c2:b6:4b:7f:21:85:
38:22:6b:27:86:e7:39:fa:d5:34:e2:82:e2:2f:52:ac:bc:25:
5d:74:d5:1a:a1:c5:ba:0e:42:61:aa:b7:de:2a:2e:14:84:ed:
76:35:13:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:21 2025 by rpki-client