Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/323830343a356266303a3a2f33342d3334203d3e20323638383738.roa
File: 323830343a356266303a3a2f33342d3334203d3e20323638383738.roa (raw, json)
Hash identifier: Kbh6OHOa3gs2vpNZICEjjPuq2h1X+/j1UMUI20/fUc4=
Subject key identifier: 4E:BF:F3:51:AD:A4:8A:26:DB:AC:C4:1F:8D:28:F3:3B:83:B5:2D:D5
Certificate issuer: /CN=DBC42DA8F09130640B6DE00AA84DFB10862A2F59
Certificate serial: 5D321F52A8688D0AF60234D296934F444643F60D
Authority key identifier: DB:C4:2D:A8:F0:91:30:64:0B:6D:E0:0A:A8:4D:FB:10:86:2A:2F:59
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DBC42DA8F09130640B6DE00AA84DFB10862A2F59.cer
Subject info access: rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/323830343a356266303a3a2f33342d3334203d3e20323638383738.roa
Signing time: Tue 12 Nov 2024 19:10:07 +0000
ROA not before: Tue 12 Nov 2024 19:05:07 +0000
ROA not after: Tue 11 Nov 2025 19:10:07 +0000
asID: 268878
IP address blocks: 2804:5bf0::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:32:1f:52:a8:68:8d:0a:f6:02:34:d2:96:93:4f:44:46:43:f6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBC42DA8F09130640B6DE00AA84DFB10862A2F59
Validity
Not Before: Nov 12 19:05:07 2024 GMT
Not After : Nov 11 19:10:07 2025 GMT
Subject: CN=4EBFF351ADA48A26DBACC41F8D28F33B83B52DD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:f2:26:9b:15:1b:3d:ec:72:3e:16:ec:85:
31:d8:01:39:a7:69:f3:64:94:9e:1b:d4:f2:97:57:
ee:b8:c5:ac:78:fc:3e:af:23:b7:38:52:2b:02:43:
95:9e:69:4f:dc:f4:49:75:a3:2d:0a:f3:da:39:b6:
98:82:34:45:06:4b:20:54:d6:ea:18:80:9b:d8:10:
72:e9:ec:9a:94:2c:83:bc:65:a1:35:d6:76:cc:bc:
ba:53:e8:45:9b:d3:d1:05:51:bb:9e:d4:ac:43:89:
75:a0:38:32:0e:3a:34:3d:ab:a0:5d:45:de:5a:cf:
1e:37:2c:a8:90:05:da:3f:99:86:29:23:45:46:da:
29:0b:b5:c8:e2:1f:4a:1b:72:bc:bd:6d:58:7a:59:
30:ea:8d:53:ec:72:60:1b:8f:8a:84:f0:41:11:1b:
e3:92:30:bd:24:0a:cf:f6:5c:c2:f4:83:42:ce:0c:
aa:51:ba:04:8f:e1:3f:45:82:33:47:23:10:3a:00:
30:85:7c:fd:83:bb:a2:6c:f0:5a:0e:aa:af:8e:d8:
41:1e:03:cf:c2:a8:fe:62:6a:ea:24:95:cc:b1:cd:
67:b6:83:9a:9f:79:60:1c:2f:58:ea:d0:b2:d6:bd:
62:87:ed:80:75:b2:f0:46:2b:d2:8a:82:47:d5:ff:
50:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BF:F3:51:AD:A4:8A:26:DB:AC:C4:1F:8D:28:F3:3B:83:B5:2D:D5
X509v3 Authority Key Identifier:
keyid:DB:C4:2D:A8:F0:91:30:64:0B:6D:E0:0A:A8:4D:FB:10:86:2A:2F:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/DBC42DA8F09130640B6DE00AA84DFB10862A2F59.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DBC42DA8F09130640B6DE00AA84DFB10862A2F59.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/323830343a356266303a3a2f33342d3334203d3e20323638383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:5bf0::/34
Signature Algorithm: sha256WithRSAEncryption
9e:dc:b8:98:f2:d9:29:b2:c9:3d:7b:6d:32:75:d4:fa:d4:52:
6e:d7:07:bf:76:de:15:f8:c0:2d:d6:19:74:93:07:bc:0b:cf:
33:d4:28:57:89:42:15:84:74:bd:9b:61:97:e0:f3:9f:d8:4d:
26:7e:79:5b:e6:e6:ae:2f:96:1d:08:98:61:ec:03:e5:6e:fd:
1d:69:58:3e:1e:0b:b2:15:ad:78:af:7e:94:d5:98:2f:18:de:
a4:e2:60:21:e2:62:2a:2b:24:80:d9:e0:cf:8d:45:eb:6e:74:
23:0e:cb:47:04:6d:31:ab:4d:76:e3:41:eb:ce:a8:b2:72:55:
db:f4:0f:0c:74:96:52:53:46:a7:75:7a:a2:af:5d:96:a1:e9:
74:0a:4a:28:e0:dd:08:c4:25:14:e5:5c:c7:57:d0:e6:e4:43:
9d:94:85:a2:34:43:05:77:ec:6f:e4:98:aa:da:6f:35:37:88:
e7:ea:24:ad:7b:7f:56:75:07:e6:c5:35:81:c8:af:11:51:2a:
01:e7:f9:02:b5:9b:fd:3d:a4:d4:60:fc:03:0f:df:cd:da:0e:
3a:6d:6c:49:b8:c9:c7:77:e2:fe:f3:a1:60:76:47:33:23:d9:
c4:b9:5a:a7:a1:c7:d4:98:ce:18:be:9a:1a:e6:11:78:e2:d0:
87:97:79:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:58:12 2025 by rpki-client