Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6XHomFh2pBRr2AZxwZdbYpTjpLuR9qkReDxCQTSdYBJg/1/323830343a3666303a3a2f34302d3430203d3e203533303437.roa
File: 323830343a3666303a3a2f34302d3430203d3e203533303437.roa (raw, json)
Hash identifier: 3Rf8xWeRp2WOYJTmncdaO3KOiR6PYIatWdXveJAcekw=
Subject key identifier: D4:FE:8D:15:1D:8F:EF:C5:C5:A7:E0:A0:8B:A4:C4:D7:89:1F:E1:28
Certificate issuer: /CN=40654D1C88C090F47A51793F972DCFF8DCF3C699
Certificate serial: 64C708885D6884B4244982F4146E68798D224EF6
Authority key identifier: 40:65:4D:1C:88:C0:90:F4:7A:51:79:3F:97:2D:CF:F8:DC:F3:C6:99
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40654D1C88C090F47A51793F972DCFF8DCF3C699.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6XHomFh2pBRr2AZxwZdbYpTjpLuR9qkReDxCQTSdYBJg/1/323830343a3666303a3a2f34302d3430203d3e203533303437.roa
Signing time: Thu 04 Apr 2024 17:39:02 +0000
ROA not before: Thu 04 Apr 2024 17:34:02 +0000
ROA not after: Thu 03 Apr 2025 17:39:02 +0000
asID: 53047
IP address blocks: 2804:6f0::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:c7:08:88:5d:68:84:b4:24:49:82:f4:14:6e:68:79:8d:22:4e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40654D1C88C090F47A51793F972DCFF8DCF3C699
Validity
Not Before: Apr 4 17:34:02 2024 GMT
Not After : Apr 3 17:39:02 2025 GMT
Subject: CN=D4FE8D151D8FEFC5C5A7E0A08BA4C4D7891FE128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2f:8d:1e:b3:00:88:b6:5f:78:b6:7f:11:99:
14:82:87:76:b8:e8:bc:9f:e9:7d:1c:07:96:2b:f8:
1c:41:72:44:69:b7:19:c4:d5:a1:a6:6a:df:fb:3c:
f8:ab:b6:f4:eb:a2:6f:7f:82:c2:6c:ee:0d:42:e5:
b1:f8:61:69:33:8a:ab:06:0e:b9:89:4d:87:1a:0f:
4b:5f:c9:75:ab:ce:7f:c7:e6:2e:a7:f3:83:55:28:
c3:00:6a:8e:76:78:00:b4:50:0d:16:f1:46:70:9f:
63:47:d9:ac:db:a6:52:d6:d3:51:47:bc:7a:9a:b0:
65:d8:26:a0:d0:84:ea:c1:53:76:45:53:26:c4:3a:
04:70:93:47:cc:ca:6a:a1:7a:bc:d6:f0:ea:ae:48:
ae:8b:60:f7:d4:ab:90:40:33:0a:f9:eb:bc:72:60:
00:c6:5b:49:48:f2:21:22:62:d3:db:28:b5:1c:7a:
71:83:a4:c4:16:2c:99:b7:26:a2:17:7a:d4:38:4c:
0f:bc:ab:07:67:b5:c9:d8:13:9b:77:9e:9e:13:37:
5e:87:bf:5e:a0:02:ab:eb:8a:41:b5:44:10:39:65:
43:45:cb:81:a8:cc:a6:d7:cc:92:e7:c7:b4:98:83:
a0:7a:0c:78:01:62:55:f9:9f:4f:d6:73:d1:13:2c:
97:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FE:8D:15:1D:8F:EF:C5:C5:A7:E0:A0:8B:A4:C4:D7:89:1F:E1:28
X509v3 Authority Key Identifier:
keyid:40:65:4D:1C:88:C0:90:F4:7A:51:79:3F:97:2D:CF:F8:DC:F3:C6:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6XHomFh2pBRr2AZxwZdbYpTjpLuR9qkReDxCQTSdYBJg/1/40654D1C88C090F47A51793F972DCFF8DCF3C699.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/40654D1C88C090F47A51793F972DCFF8DCF3C699.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6XHomFh2pBRr2AZxwZdbYpTjpLuR9qkReDxCQTSdYBJg/1/323830343a3666303a3a2f34302d3430203d3e203533303437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:6f0::/40
Signature Algorithm: sha256WithRSAEncryption
00:6c:71:2c:69:cb:6a:a3:2e:5f:8c:33:f5:2f:df:1a:4b:65:
b0:b1:5a:ab:4e:da:e9:e5:f3:bd:e8:de:3a:60:05:9a:90:04:
43:cb:83:94:50:01:95:5e:34:9c:3d:55:6f:ea:8b:69:c9:ce:
73:57:57:3c:7b:78:68:46:35:13:6b:15:39:ee:48:ae:14:a8:
db:8f:9c:47:37:ca:1b:9d:11:d1:df:65:a6:40:2d:83:42:3b:
60:2a:99:9d:ed:c7:be:af:df:12:94:73:8c:38:f4:89:02:8b:
4f:64:36:be:56:8d:84:1a:8e:fb:3e:98:c1:87:9c:00:c1:d2:
28:92:98:8b:41:62:ec:5c:03:30:f6:eb:46:c9:d7:0b:ec:35:
22:31:69:f0:f3:56:c2:c1:7b:04:93:ca:66:29:d9:41:c3:51:
fb:af:1d:4a:81:fb:20:3d:c1:aa:2a:28:e8:bd:c2:9a:39:3c:
b5:80:7b:39:27:7a:cc:91:2e:b2:ff:da:36:05:c7:0d:3b:78:
42:01:78:f0:3f:6c:16:b0:20:73:67:e1:99:9d:36:09:38:31:
0e:ff:e1:e5:fe:db:64:85:2f:64:77:38:3e:f4:1c:4b:57:7d:
cd:1e:69:c7:ea:f9:c7:23:ea:67:64:57:48:40:89:3e:87:b6:
40:91:07:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:57:37 2025 by rpki-client