Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa
File: 34352e37302e3134382e302f32322d3234203d3e20323637353839.roa (raw, json)
Hash identifier: 2p6uFFtOxrFLgwvk+5zkCXG63pr08f9yEGYoLV1hAJY=
Subject key identifier: 5C:CC:FA:63:A0:C1:4F:9C:0A:E9:55:55:FA:70:25:FF:DF:08:BD:F2
Certificate issuer: /CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC
Certificate serial: 225B5AD5FF5A4C02222AF406DCFBAE4BF94CB825
Authority key identifier: AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa
Signing time: Wed 08 Jan 2025 11:54:48 +0000
ROA not before: Wed 08 Jan 2025 11:49:48 +0000
ROA not after: Wed 07 Jan 2026 11:54:48 +0000
asID: 267589
IP address blocks: 45.70.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:5b:5a:d5:ff:5a:4c:02:22:2a:f4:06:dc:fb:ae:4b:f9:4c:b8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC
Validity
Not Before: Jan 8 11:49:48 2025 GMT
Not After : Jan 7 11:54:48 2026 GMT
Subject: CN=5CCCFA63A0C14F9C0AE95555FA7025FFDF08BDF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fe:8f:80:5e:37:16:e1:01:83:8d:61:83:3d:
e5:a3:d0:49:12:6c:2b:84:9a:2d:b7:9c:53:ae:53:
ee:94:e5:bd:d3:db:8d:de:75:53:37:98:94:03:30:
71:e0:f2:54:55:7c:95:af:4d:3a:23:08:24:53:20:
43:14:5b:be:d0:c6:1e:59:0f:94:7d:26:78:8b:4d:
bc:03:dc:79:36:90:24:fa:11:51:a7:d6:e1:d0:dd:
96:20:12:19:5b:9a:8b:a3:5f:d9:ba:92:30:ba:fd:
17:db:e1:a1:f9:e0:b3:2d:54:f1:af:88:7d:ff:4f:
e1:91:b5:5b:a2:2e:6e:34:99:86:62:dd:6f:70:e8:
b8:d9:5d:4f:6f:32:f4:a1:2e:53:a9:20:68:98:02:
e6:47:02:99:a4:85:60:1f:e6:09:b8:d9:06:23:09:
28:eb:2e:5b:88:99:a9:48:86:27:49:07:17:8e:34:
68:19:b2:68:ab:18:c7:aa:16:d9:a4:1d:64:6b:62:
0f:91:6a:3d:9e:3f:b6:de:39:9c:40:2b:24:67:3b:
28:d8:93:88:4d:fc:52:81:91:23:c8:02:a7:6a:7c:
0b:4c:e4:cc:ce:89:98:75:e4:e1:e7:28:fe:17:79:
27:ac:e9:47:48:e5:45:54:92:33:1d:4c:d5:30:17:
58:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CC:FA:63:A0:C1:4F:9C:0A:E9:55:55:FA:70:25:FF:DF:08:BD:F2
X509v3 Authority Key Identifier:
keyid:AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3234203d3e20323637353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.148.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:73:08:f2:65:c1:03:52:54:d7:5b:c6:5a:ec:f4:c9:dd:ec:
72:58:2a:8b:2f:48:66:b5:30:d0:01:fa:37:42:0e:6d:03:64:
dc:a0:f9:ab:18:a7:ee:72:69:79:3c:b4:db:07:d4:6e:a1:18:
af:74:07:68:0d:87:77:68:3f:33:a7:dd:d4:d6:9b:a4:ee:09:
28:eb:b7:c7:cf:57:a4:71:a6:e2:f9:30:ee:99:5e:0e:91:d8:
73:b1:df:5e:9b:37:6e:d6:ba:79:e7:51:2c:a8:1a:cc:65:2c:
86:40:ac:e5:d9:7d:48:d6:a3:9a:1a:a5:43:6f:f1:34:17:10:
b4:21:21:b0:e4:b3:de:bf:61:c6:5e:a7:02:9e:56:90:d1:57:
e2:3f:90:e0:67:ee:e0:14:86:91:47:f8:bf:e9:d7:f8:a2:25:
d9:4f:5e:9a:e0:ab:e7:fb:81:a6:b1:c4:03:60:73:3a:56:e4:
1b:08:9b:9f:6f:9d:2e:68:49:09:ea:a9:86:fb:e3:48:f0:bb:
f8:6e:fc:81:d4:2a:3a:74:86:56:c8:82:ab:92:89:96:31:dc:
e1:fc:2c:1f:cb:c5:65:66:2a:bf:23:d4:e0:2b:53:a4:0f:b4:
1c:71:37:aa:06:5d:75:24:89:36:60:62:b9:b7:a8:22:13:24:
3f:d0:24:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:15 2025 by rpki-client