Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7Jon2s1Y1AkVCstMHNGYjbtyCeftAQKReQpo3qFrbDK7/1/3132382e3230312e3134382e302f32322d3234203d3e20323636363332.roa
File: 3132382e3230312e3134382e302f32322d3234203d3e20323636363332.roa (raw, json)
Hash identifier: stP92oJ4IE5MiAZ9P5AQoFIryaIIHVovcUqJt+GD6Mc=
Subject key identifier: 6C:6C:66:7F:89:F0:F1:01:A0:A9:54:A3:F6:C7:29:E8:C2:ED:D1:68
Certificate issuer: /CN=25678997D666BF9281FFEAB78B6D28A1FA51FF78
Certificate serial: 7F38C124419DEEC8BCD481A3F985689EBFECFF24
Authority key identifier: 25:67:89:97:D6:66:BF:92:81:FF:EA:B7:8B:6D:28:A1:FA:51:FF:78
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/25678997D666BF9281FFEAB78B6D28A1FA51FF78.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7Jon2s1Y1AkVCstMHNGYjbtyCeftAQKReQpo3qFrbDK7/1/3132382e3230312e3134382e302f32322d3234203d3e20323636363332.roa
Signing time: Thu 06 Mar 2025 03:00:11 +0000
ROA not before: Thu 06 Mar 2025 02:55:11 +0000
ROA not after: Thu 05 Mar 2026 03:00:11 +0000
asID: 266632
IP address blocks: 128.201.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:38:c1:24:41:9d:ee:c8:bc:d4:81:a3:f9:85:68:9e:bf:ec:ff:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25678997D666BF9281FFEAB78B6D28A1FA51FF78
Validity
Not Before: Mar 6 02:55:11 2025 GMT
Not After : Mar 5 03:00:11 2026 GMT
Subject: CN=6C6C667F89F0F101A0A954A3F6C729E8C2EDD168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:90:06:e5:c2:4c:a5:23:8b:c4:d8:64:35:
15:8f:17:4e:3e:fa:ab:04:be:c5:cd:b2:3b:af:9f:
b1:a5:60:57:7f:bb:4f:79:df:fd:2e:08:c6:82:7e:
81:a9:1d:2e:4c:ca:47:59:ca:88:64:3f:ce:a3:7e:
7b:16:a2:5a:bb:2d:4d:f6:ce:6a:e4:0e:37:e4:c6:
ec:e7:00:c8:d3:f5:1d:ee:16:dc:8d:64:9a:05:4d:
5b:d7:7f:d6:d6:c2:39:8a:8f:b7:5a:f5:05:af:ab:
fb:34:ac:71:f7:ce:f6:19:e4:5c:2e:1b:7f:c7:38:
2b:38:74:b5:7a:ce:6d:e7:88:6f:22:98:58:48:06:
bb:50:0c:d5:c3:6d:42:28:4d:28:17:56:3a:9a:13:
24:4f:84:f2:fe:b7:2a:01:16:32:b8:e3:c3:b9:5b:
b1:3f:4b:a5:69:de:b1:6b:d2:36:2c:c0:08:37:20:
8b:a5:c6:b9:57:02:e6:fa:45:c9:36:7e:69:85:ab:
c1:06:f0:76:05:57:93:8a:60:56:96:e3:50:03:35:
d4:47:bd:26:da:e3:9b:5c:3b:d5:41:c2:7e:aa:87:
ae:e8:58:11:9a:f8:3c:cb:26:7e:0f:f6:d1:4b:a9:
65:77:b0:e8:ea:2a:8c:88:ad:29:2a:ad:9a:8b:1a:
a3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6C:66:7F:89:F0:F1:01:A0:A9:54:A3:F6:C7:29:E8:C2:ED:D1:68
X509v3 Authority Key Identifier:
keyid:25:67:89:97:D6:66:BF:92:81:FF:EA:B7:8B:6D:28:A1:FA:51:FF:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7Jon2s1Y1AkVCstMHNGYjbtyCeftAQKReQpo3qFrbDK7/1/25678997D666BF9281FFEAB78B6D28A1FA51FF78.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/25678997D666BF9281FFEAB78B6D28A1FA51FF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7Jon2s1Y1AkVCstMHNGYjbtyCeftAQKReQpo3qFrbDK7/1/3132382e3230312e3134382e302f32322d3234203d3e20323636363332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.148.0/22
Signature Algorithm: sha256WithRSAEncryption
59:7b:e2:b3:24:c8:1b:cd:dc:45:87:ea:5f:21:ed:12:51:47:
43:03:cb:ff:c7:42:c4:4d:6c:92:5a:4e:d5:3c:9a:f0:b6:7b:
b9:dc:a9:05:67:7b:ca:cc:dc:5e:a1:c7:7e:55:81:6d:0c:a3:
41:5b:67:ad:c5:90:1a:28:18:69:15:99:92:f8:e4:96:93:1a:
30:49:6a:3a:d2:b7:4b:6e:80:a7:0f:ad:88:7a:e5:31:ab:56:
bd:0c:dd:4c:81:e7:ea:ed:de:53:0a:70:44:da:7e:ee:8e:e4:
e4:ed:ef:23:98:f6:f2:ab:15:00:12:bb:c6:2a:01:32:91:60:
25:43:e8:cb:ed:98:73:c9:c7:4e:26:95:6c:a4:9b:44:69:60:
7a:11:f0:01:06:5f:fc:8c:96:64:25:9b:c3:11:46:7b:b2:cc:
c9:40:1a:5c:43:1e:4e:28:c6:b4:b5:a3:b8:e6:b1:54:26:9b:
a0:68:e3:93:fa:44:25:90:15:33:ec:fc:cc:96:47:0b:65:6e:
33:6b:bb:91:a3:f9:4c:25:5f:06:2e:19:8d:58:e1:70:a4:f1:
ee:e2:44:07:a2:79:31:49:9d:04:c2:ea:0f:0e:32:8b:87:c9:
7e:39:e0:51:f3:37:4c:80:05:55:cd:ca:4c:ed:42:19:01:09:
4e:f4:96:bf
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUfzjBJEGd7si81IGj+YVonr/s/yQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjU2Nzg5OTdENjY2QkY5MjgxRkZFQUI3OEI2RDI4QTFG
QTUxRkY3ODAeFw0yNTAzMDYwMjU1MTFaFw0yNjAzMDUwMzAwMTFaMDMxMTAvBgNV
BAMTKDZDNkM2NjdGODlGMEYxMDFBMEE5NTRBM0Y2QzcyOUU4QzJFREQxNjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/IJAG5cJMpSOLxNhkNRWPF04+
+qsEvsXNsjuvn7GlYFd/u0953/0uCMaCfoGpHS5MykdZyohkP86jfnsWolq7LU32
zmrkDjfkxuznAMjT9R3uFtyNZJoFTVvXf9bWwjmKj7da9QWvq/s0rHH3zvYZ5Fwu
G3/HOCs4dLV6zm3niG8imFhIBrtQDNXDbUIoTSgXVjqaEyRPhPL+tyoBFjK448O5
W7E/S6Vp3rFr0jYswAg3IIulxrlXAub6Rck2fmmFq8EG8HYFV5OKYFaW41ADNdRH
vSba45tcO9VBwn6qh67oWBGa+DzLJn4P9tFLqWV3sOjqKoyIrSkqrZqLGqPbAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUbGxmf4nw8QGgqVSj9scp6MLt0WgwHwYDVR0j
BBgwFoAUJWeJl9Zmv5KB/+q3i20oofpR/3gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vN0pvbjJzMVkxQWtWQ3N0TUhOR1lqYnR5Q2VmdEFRS1JlUXBvM3FGcmJE
SzcvMS8yNTY3ODk5N0Q2NjZCRjkyODFGRkVBQjc4QjZEMjhBMUZBNTFGRjc4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzI1Njc4OTk3RDY2NkJGOTI4
MUZGRUFCNzhCNkQyOEExRkE1MUZGNzguY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzdKb24yczFZMUFrVkNzdE1ITkdZamJ0eUNlZnRBUUtSZVFwbzNxRnJiREs3LzEv
MzEzMjM4MmUzMjMwMzEyZTMxMzQzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy
MzYzNjM2MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAoDJlDANBgkqhkiG9w0BAQsFAAOCAQEAWXvi
syTIG83cRYfqXyHtElFHQwPL/8dCxE1sklpO1Tya8LZ7udypBWd7yszcXqHHflWB
bQyjQVtnrcWQGigYaRWZkvjklpMaMElqOtK3S26Apw+tiHrlMatWvQzdTIHn6u3e
UwpwRNp+7o7k5O3vI5j28qsVABK7xioBMpFgJUPoy+2Yc8nHTiaVbKSbRGlgehHw
AQZf/IyWZCWbwxFGe7LMyUAaXEMeTijGtLWjuOaxVCaboGjjk/pEJZAVM+z8zJZH
C2VuM2u7kaP5TCVfBi4ZjVjhcKTx7uJEB6J5MUmdBMLqDw4yi4fJfjngUfM3TIAF
Vc3KTO1CGQEJTvSWvw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:25:00 2025 by rpki-client