Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31382e302f32332d3233203d3e20323638383738.roa
File: 34352e3137342e31382e302f32332d3233203d3e20323638383738.roa (raw, json)
Hash identifier: o2AWkGLSZ5uTr9uUvc/qL3QyFADL0DLPLW60o2iQcfM=
Subject key identifier: C3:7B:EF:D6:1B:CA:7F:81:03:D3:6F:4C:A0:7A:67:96:21:76:CF:A8
Certificate issuer: /CN=BFB590FA7A04C15A07E802593C4472D77FAB7820
Certificate serial: 70D96B48AD2F7A7A6EBB61A5D3A07E933ED9D386
Authority key identifier: BF:B5:90:FA:7A:04:C1:5A:07:E8:02:59:3C:44:72:D7:7F:AB:78:20
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BFB590FA7A04C15A07E802593C4472D77FAB7820.cer
Subject info access: rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31382e302f32332d3233203d3e20323638383738.roa
Signing time: Wed 25 Dec 2024 09:58:29 +0000
ROA not before: Wed 25 Dec 2024 09:53:29 +0000
ROA not after: Wed 24 Dec 2025 09:58:29 +0000
asID: 268878
IP address blocks: 45.174.18.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d9:6b:48:ad:2f:7a:7a:6e:bb:61:a5:d3:a0:7e:93:3e:d9:d3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFB590FA7A04C15A07E802593C4472D77FAB7820
Validity
Not Before: Dec 25 09:53:29 2024 GMT
Not After : Dec 24 09:58:29 2025 GMT
Subject: CN=C37BEFD61BCA7F8103D36F4CA07A67962176CFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ff:ed:98:69:92:d7:70:74:71:5b:06:58:6e:
fb:aa:b1:d7:d6:4d:d5:97:6c:1a:ae:3b:28:85:61:
70:b1:69:bb:bf:47:4b:c5:7d:bc:0c:81:8a:95:c8:
49:83:e9:df:bc:d8:10:c0:61:15:68:db:74:6a:6b:
35:c6:f8:0c:a1:98:46:9f:f5:f5:63:c8:26:31:2c:
01:b8:09:aa:9d:92:99:75:54:19:c0:0d:fc:54:ee:
dd:1e:6b:62:80:2a:07:66:94:69:c4:1b:c0:c0:d5:
30:50:aa:6c:ea:57:e1:5b:f4:c1:dd:f0:c9:6c:36:
7a:f0:aa:77:92:fc:07:09:a7:fd:05:7b:1c:78:4b:
64:bc:a0:14:ff:38:20:e4:57:aa:f5:e2:65:d9:87:
e6:ca:74:53:c4:21:5a:02:0f:b3:3c:5d:a2:0c:7e:
48:b6:fc:91:b4:72:d6:a9:3a:82:45:11:cf:89:e5:
fd:82:5b:b5:4d:59:5a:5e:4f:1d:17:da:78:4f:80:
4e:f6:97:1a:20:b9:2e:46:df:80:11:7e:3f:19:88:
23:f7:ab:db:c0:57:b0:03:eb:03:2f:9b:f3:8a:59:
56:51:75:16:cd:73:ee:30:f8:65:f3:6c:a2:be:df:
79:cd:cb:c3:19:c4:3e:49:14:4c:70:be:66:5b:b3:
9d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7B:EF:D6:1B:CA:7F:81:03:D3:6F:4C:A0:7A:67:96:21:76:CF:A8
X509v3 Authority Key Identifier:
keyid:BF:B5:90:FA:7A:04:C1:5A:07:E8:02:59:3C:44:72:D7:7F:AB:78:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/BFB590FA7A04C15A07E802593C4472D77FAB7820.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BFB590FA7A04C15A07E802593C4472D77FAB7820.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31382e302f32332d3233203d3e20323638383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.174.18.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:c8:3e:ff:c7:ee:fa:ef:e3:33:7b:6a:4b:7b:15:a5:7f:7f:
56:de:f3:27:78:27:28:bb:e7:0f:40:86:f8:71:e9:2d:56:db:
57:e5:aa:2f:c3:4f:bf:23:1b:52:f2:a2:fa:13:c8:49:06:b9:
ac:48:79:66:eb:dd:56:35:e0:f0:e7:d8:a2:6c:36:80:be:df:
b1:8e:7a:e0:9e:22:e6:0a:00:99:6f:5e:db:f9:0a:7b:a7:90:
b1:15:11:05:c6:32:d4:d3:83:78:67:e9:af:c1:f1:2e:5f:b0:
dc:88:18:ff:5c:22:c0:94:1d:72:64:a9:69:8b:95:f5:53:3d:
af:54:ca:9c:0c:0f:4a:47:23:24:4e:af:e2:4d:18:77:02:5b:
ab:14:b4:f7:85:f8:ce:71:ec:b1:f3:97:1e:0d:db:c1:ac:58:
c9:da:ba:a4:7b:b3:f6:d9:11:a5:fb:0f:dd:14:18:09:88:2d:
49:f9:00:c9:25:d6:96:a0:43:63:86:24:2a:2c:8a:06:fb:7b:
a9:1a:41:04:0f:14:e1:75:a7:37:62:3c:f5:7e:93:7f:10:f3:
fe:b7:e7:14:4e:89:48:a7:bf:1b:a6:9f:33:61:50:50:d8:45:
b9:01:b4:5c:fc:c4:f1:20:07:aa:3e:e0:ba:dd:f4:6a:a5:9a:
31:b2:7e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:36:21 2025 by rpki-client