Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6ncG9s2gupX8sELknXjoT2628XXVamFRqgmBaNXEmUYQ/0/3230302e33392e36342e302f31392d3234203d3e203533303436.roa
File: 3230302e33392e36342e302f31392d3234203d3e203533303436.roa (raw, json)
Hash identifier: 8zLrjgass4ApL3P9CjQWdqUEEcQLIphDQDXJ+MDMEd0=
Subject key identifier: 75:F6:A4:3D:D1:60:97:FE:1A:78:65:9C:32:D6:13:2D:AC:96:16:92
Certificate issuer: /CN=53BB4AACFE0205BA1F1E509DF70EDF60BE99246B
Certificate serial: 5C119541FC31DDB669308EA28A9EEE13D43D38D4
Authority key identifier: 53:BB:4A:AC:FE:02:05:BA:1F:1E:50:9D:F7:0E:DF:60:BE:99:24:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/53BB4AACFE0205BA1F1E509DF70EDF60BE99246B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6ncG9s2gupX8sELknXjoT2628XXVamFRqgmBaNXEmUYQ/0/3230302e33392e36342e302f31392d3234203d3e203533303436.roa
Signing time: Sat 23 Sep 2023 19:29:50 +0000
ROA not before: Sat 23 Sep 2023 19:24:50 +0000
ROA not after: Sat 21 Sep 2024 19:29:50 +0000
asID: 53046
IP address blocks: 200.39.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:11:95:41:fc:31:dd:b6:69:30:8e:a2:8a:9e:ee:13:d4:3d:38:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53BB4AACFE0205BA1F1E509DF70EDF60BE99246B
Validity
Not Before: Sep 23 19:24:50 2023 GMT
Not After : Sep 21 19:29:50 2024 GMT
Subject: CN=75F6A43DD16097FE1A78659C32D6132DAC961692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:93:dd:b5:a0:16:e3:a1:10:ff:11:59:6e:56:
58:27:7a:4a:0b:9a:13:6c:bf:fe:9f:33:31:81:13:
54:78:dc:98:45:e7:cf:17:e8:8d:a6:7a:f7:84:7b:
4f:d8:7c:95:be:f3:0b:cc:e6:8b:1f:05:73:32:e0:
93:8c:dc:f6:ba:33:64:28:85:23:b4:50:62:30:98:
dc:c0:1b:97:ba:99:3d:54:53:c6:e6:57:e8:13:f6:
93:34:1d:79:bb:a8:c9:97:2f:3c:1c:6e:8d:8a:25:
d6:33:bc:ff:3c:c5:18:5a:7b:49:21:40:7e:f1:f2:
ee:bf:f5:00:c0:e7:98:95:9d:ba:3d:95:ae:af:f0:
40:24:78:64:9c:4e:6b:24:cb:c6:1b:64:12:4e:1f:
59:ee:5a:46:5c:4c:9e:88:1f:a2:71:d6:d4:a4:5f:
92:59:f3:80:24:13:c3:c4:91:9b:b2:4b:db:68:c8:
1c:04:fd:4e:9d:0c:9f:10:6c:74:e3:28:5f:f2:74:
bb:9b:cd:61:e2:23:a6:11:15:8e:c2:e6:26:7c:36:
d6:2d:5a:cd:83:ad:09:d5:fa:ee:4c:a9:ce:e1:33:
0f:b8:6e:e4:19:7a:e2:3e:f7:18:06:9d:32:a1:d7:
8d:de:14:93:96:43:d7:1a:4b:de:22:d3:b2:ff:8c:
a6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F6:A4:3D:D1:60:97:FE:1A:78:65:9C:32:D6:13:2D:AC:96:16:92
X509v3 Authority Key Identifier:
keyid:53:BB:4A:AC:FE:02:05:BA:1F:1E:50:9D:F7:0E:DF:60:BE:99:24:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6ncG9s2gupX8sELknXjoT2628XXVamFRqgmBaNXEmUYQ/0/53BB4AACFE0205BA1F1E509DF70EDF60BE99246B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/53BB4AACFE0205BA1F1E509DF70EDF60BE99246B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6ncG9s2gupX8sELknXjoT2628XXVamFRqgmBaNXEmUYQ/0/3230302e33392e36342e302f31392d3234203d3e203533303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.39.64.0/19
Signature Algorithm: sha256WithRSAEncryption
68:ab:61:79:ac:58:f1:3e:6c:f7:91:fc:ae:79:f0:ce:bd:a6:
fe:c6:9f:25:e8:5a:06:6e:3b:ca:9a:e6:37:78:3d:70:eb:b0:
82:71:7b:cc:55:e0:c7:5a:72:ae:4f:d5:be:6b:98:df:2c:26:
0d:aa:1e:9d:f1:e1:34:4a:d8:76:19:99:02:01:62:ab:52:be:
bf:d1:57:43:6b:b4:9b:83:52:47:1b:56:5b:e7:eb:f4:d3:ac:
b1:79:67:84:83:7e:89:f3:93:84:c0:46:5a:9d:27:4f:05:08:
38:a1:5b:bf:ca:c4:53:a9:34:7c:82:37:c6:19:4b:5c:64:c1:
ea:5f:38:eb:2d:85:fd:b1:8d:14:a6:2d:71:25:26:f8:68:c2:
24:2f:d9:2d:04:34:69:b6:b4:d9:39:a0:c7:0c:f5:77:c0:06:
30:44:df:4e:49:18:38:26:d9:96:81:55:89:04:d7:03:7a:96:
e7:c8:53:5d:c2:66:03:a8:05:ef:7b:da:84:64:28:0f:47:f4:
28:60:77:ff:7e:02:70:6f:19:3f:b8:78:44:0c:06:f7:99:42:
80:89:43:19:7e:13:92:31:d0:c9:19:20:dc:24:c5:0e:8c:b5:
39:37:42:66:c5:cd:e1:14:d5:39:f9:f7:9a:cd:eb:b1:17:0e:
e2:1b:1c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:46 2024 by rpki-client on console-fra.rpki-client.org