Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS53135.roa
File: AS53135.roa (raw, json)
Hash identifier: xK+PW4k8OH8OzN/S3+hhxO1SdxUKxhXXftk3dx+K4wI=
Subject key identifier: A8:C1:05:7A:7C:B1:C2:F0:18:29:71:C9:C0:05:59:89:1F:47:7D:37
Certificate issuer: /CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD
Certificate serial: 48A2F8D50BF976252C73DAA0176473384E8B0434
Authority key identifier: 5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS53135.roa
Signing time: Wed 12 Mar 2025 23:23:54 +0000
ROA not before: Wed 12 Mar 2025 23:18:54 +0000
ROA not after: Wed 11 Mar 2026 23:23:54 +0000
asID: 53135
IP address blocks: 131.221.92.0/22 maxlen: 24
138.219.152.0/22 maxlen: 24
168.227.232.0/22 maxlen: 24
170.79.184.0/22 maxlen: 24
177.39.240.0/21 maxlen: 24
177.39.248.0/21 maxlen: 24
186.192.176.0/20 maxlen: 24
186.193.48.0/20 maxlen: 24
191.243.112.0/20 maxlen: 24
2804:1054::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:a2:f8:d5:0b:f9:76:25:2c:73:da:a0:17:64:73:38:4e:8b:04:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD
Validity
Not Before: Mar 12 23:18:54 2025 GMT
Not After : Mar 11 23:23:54 2026 GMT
Subject: CN=A8C1057A7CB1C2F0182971C9C00559891F477D37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:15:ff:e0:34:79:58:d5:f5:99:08:65:41:af:
ce:f7:b3:fd:1c:93:00:2b:60:b9:0f:5c:b4:ea:ac:
68:ec:17:c9:9f:f6:d1:a6:6a:dd:41:43:98:0a:0f:
e1:59:79:24:6b:b5:da:06:34:45:62:b4:96:e7:bb:
65:95:51:f0:e2:f1:72:d2:ba:ff:db:9f:89:7f:5e:
df:15:95:fb:e6:dc:0e:1a:41:be:cc:63:45:b4:bd:
4b:02:b6:3c:21:90:c0:65:18:2b:9b:95:42:dd:33:
9f:b7:05:c0:fb:6a:73:95:d6:b4:88:9d:82:48:70:
7f:05:9f:cf:8d:35:9b:05:7c:ec:54:5d:3a:d5:98:
ba:bd:36:94:9f:84:c2:1e:fa:19:ff:3e:ed:46:23:
f8:0b:79:e1:a0:71:29:ad:44:5d:4f:aa:46:2e:a3:
d1:79:d0:ff:73:f3:19:ab:2c:87:5c:91:5e:e1:6a:
18:99:85:61:14:83:1f:8a:39:71:b2:f1:64:7e:e8:
40:ce:75:46:5a:d9:be:90:48:d8:ab:93:7f:da:df:
38:0a:e7:d2:fe:73:85:02:e3:60:32:aa:51:a9:c1:
dd:b2:e3:83:70:44:3a:cd:eb:03:94:a6:03:6e:74:
49:33:f4:98:e4:a8:a0:e9:49:e8:59:40:5d:62:f6:
e8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C1:05:7A:7C:B1:C2:F0:18:29:71:C9:C0:05:59:89:1F:47:7D:37
X509v3 Authority Key Identifier:
keyid:5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS53135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.92.0/22
138.219.152.0/22
168.227.232.0/22
170.79.184.0/22
177.39.240.0/20
186.192.176.0/20
186.193.48.0/20
191.243.112.0/20
IPv6:
2804:1054::/32
Signature Algorithm: sha256WithRSAEncryption
a0:85:e6:42:84:cb:cf:a8:24:57:af:f7:49:d2:19:3f:24:b4:
5c:a0:13:af:0c:04:87:3d:f0:a0:bf:be:12:e0:3d:cd:49:26:
a7:dd:32:0c:93:0d:1e:a2:c0:a7:67:dc:0b:8e:61:11:73:2d:
09:d7:1c:91:42:09:9b:dc:a3:a4:6d:2c:dc:61:0f:42:8c:b5:
5f:81:58:49:23:4b:a0:37:9a:4e:1f:27:fc:48:4c:1e:54:ac:
1f:3d:18:6c:1c:45:35:55:18:5c:e1:27:b3:7e:3b:e5:aa:13:
53:bb:18:6b:5d:50:f8:98:1c:c7:0b:6c:21:05:5a:de:fd:bd:
e1:4e:4c:91:d3:d0:b7:08:7f:11:fb:d2:02:ac:02:34:c0:28:
e3:6a:fa:69:ea:b6:5e:62:77:1b:e5:70:22:82:76:55:14:7f:
76:f5:4b:d3:09:de:8d:53:90:71:0e:7d:ff:79:7c:ad:75:4c:
8b:2c:5f:58:15:46:34:d1:a7:93:46:29:26:45:06:06:a7:f9:
f3:fc:c9:62:59:8e:c6:6a:a3:81:54:d5:00:ba:64:56:58:88:
fa:6d:e4:97:c4:33:2b:d3:0a:4f:58:6c:37:48:ae:f0:fa:2d:
38:f0:bc:5b:62:ef:2c:b0:d1:00:d7:7c:68:79:09:ab:42:84:
b1:4d:c4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:28:00 2025 by rpki-client