Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
File: 34352e3233382e342e302f32332d3233203d3e20323638333038.roa (raw, json)
Hash identifier: /V3insPIhj7zOcOJi06l25cvUNZPOTL0D83Aa9zEFW4=
Subject key identifier: 84:FD:E2:7A:D0:D7:92:91:97:B3:F6:F6:83:2A:3A:38:DB:7E:8F:D7
Certificate issuer: /CN=88C04555C130EFBD50B75032689878210EFAA940
Certificate serial: 5FB7B6DFD70110800136052C71F00F236DC537D7
Authority key identifier: 88:C0:45:55:C1:30:EF:BD:50:B7:50:32:68:98:78:21:0E:FA:A9:40
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/88C04555C130EFBD50B75032689878210EFAA940.cer
Subject info access: rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
Signing time: Mon 18 Dec 2023 18:48:29 +0000
ROA not before: Mon 18 Dec 2023 18:43:29 +0000
ROA not after: Mon 16 Dec 2024 18:48:29 +0000
asID: 268308
IP address blocks: 45.238.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:b7:b6:df:d7:01:10:80:01:36:05:2c:71:f0:0f:23:6d:c5:37:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88C04555C130EFBD50B75032689878210EFAA940
Validity
Not Before: Dec 18 18:43:29 2023 GMT
Not After : Dec 16 18:48:29 2024 GMT
Subject: CN=84FDE27AD0D7929197B3F6F6832A3A38DB7E8FD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7e:d5:7c:e0:89:df:2d:4a:14:4b:70:69:1d:
a9:5d:4c:c2:97:fa:77:3c:52:2d:c9:e7:a8:38:56:
ec:12:ef:d8:c3:b5:1e:51:2c:d4:67:8f:95:dd:e0:
81:90:a0:28:4c:d8:d7:48:c4:06:0c:99:da:5a:2d:
93:06:6f:82:f2:91:aa:d4:d8:3a:e7:06:d2:b0:6c:
a5:11:80:e9:24:92:e9:8b:24:fb:9c:a8:2f:f5:f2:
10:c2:7a:5a:a9:4f:03:20:64:19:f2:ad:af:88:d4:
31:7d:8f:49:af:c6:1e:7b:5f:0f:d9:51:f4:6a:38:
f8:fe:7c:13:58:51:73:ad:2d:d6:82:25:ac:04:55:
b7:cf:ef:a5:2a:52:18:ae:d6:62:4b:db:5a:da:27:
3a:36:d4:34:78:57:29:a4:6b:8a:f0:22:4c:23:75:
b5:61:f0:43:0b:86:e3:6a:c1:04:d9:ae:e6:ed:db:
4f:39:35:2b:f1:9b:6a:1c:b4:0a:80:86:67:8e:69:
51:7d:4d:c1:c0:c5:16:89:68:a5:72:51:7e:cc:79:
02:e1:f6:da:14:18:2d:ab:82:73:1e:90:dc:ae:16:
9c:d0:ac:25:ed:aa:30:37:ee:71:ef:8a:25:e0:36:
b9:43:af:48:9e:b0:a8:57:8b:02:0c:66:86:50:6b:
78:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FD:E2:7A:D0:D7:92:91:97:B3:F6:F6:83:2A:3A:38:DB:7E:8F:D7
X509v3 Authority Key Identifier:
keyid:88:C0:45:55:C1:30:EF:BD:50:B7:50:32:68:98:78:21:0E:FA:A9:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/88C04555C130EFBD50B75032689878210EFAA940.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/88C04555C130EFBD50B75032689878210EFAA940.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.238.4.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:42:1c:04:8b:12:70:8b:72:fb:9e:0b:8f:0b:e6:80:ae:cf:
3f:9a:f5:c9:36:22:c4:9b:d0:6c:1f:71:10:f6:e2:75:f4:70:
f1:fd:ee:e7:fe:f5:a6:6e:b3:c7:b5:09:89:9f:d0:33:69:b8:
37:5d:83:2b:58:bc:2b:37:41:1a:82:2e:8b:27:6f:c2:4d:78:
61:da:fa:d0:9f:22:72:da:da:a2:92:4d:25:ac:f9:3b:87:48:
ee:c7:c9:42:66:3e:20:c6:74:43:95:93:90:0c:54:35:e9:0a:
a1:30:f1:88:e2:3b:2f:9d:1a:ee:f7:fb:30:6a:e3:b0:94:7e:
23:42:af:54:e0:b8:a1:d1:3f:4a:5d:52:5f:ee:d7:8d:fe:11:
54:5e:ba:6f:60:85:cd:9b:90:b2:57:99:b6:eb:e4:fe:5d:d3:
85:1c:5b:ab:f4:0c:bd:f2:6f:0b:a0:7a:cf:0f:14:93:d4:9c:
29:b5:06:77:fe:86:5f:b9:65:7c:0b:7c:86:b2:cb:0c:75:78:
ac:cf:20:b7:de:27:b5:85:d2:62:35:59:c0:32:8a:43:b2:d8:
23:f5:8a:28:6c:e7:9c:ac:49:68:70:1e:cf:99:94:0b:c7:1c:
2b:52:45:5b:eb:26:a2:59:ac:82:99:d6:85:c8:d7:44:85:f7:
a2:a0:37:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:49 2024 by rpki-client on console-fra.rpki-client.org