Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/323830343a333336343a383130303a3a2f34302d3430203d3e20323635333933.roa
File: 323830343a333336343a383130303a3a2f34302d3430203d3e20323635333933.roa (raw, json)
Hash identifier: GEZgWE1/bj4bzaJPDaidcMR5rnBXrtOWThLz0TFmcFw=
Subject key identifier: 9A:FA:B3:37:39:DB:11:8E:BC:DC:9A:09:AB:1D:73:5D:45:E5:C2:1A
Certificate issuer: /CN=A09E880C389D905D05A33FAE05CDA14AD03B4CE7
Certificate serial: 7CCABF239363AA99A602252432BA7F4B9F690B47
Authority key identifier: A0:9E:88:0C:38:9D:90:5D:05:A3:3F:AE:05:CD:A1:4A:D0:3B:4C:E7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/323830343a333336343a383130303a3a2f34302d3430203d3e20323635333933.roa
Signing time: Tue 04 Mar 2025 06:47:12 +0000
ROA not before: Tue 04 Mar 2025 06:42:12 +0000
ROA not after: Tue 03 Mar 2026 06:47:12 +0000
asID: 265393
IP address blocks: 2804:3364:8100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.crl
rsync://rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 14:51:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:ca:bf:23:93:63:aa:99:a6:02:25:24:32:ba:7f:4b:9f:69:0b:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A09E880C389D905D05A33FAE05CDA14AD03B4CE7
Validity
Not Before: Mar 4 06:42:12 2025 GMT
Not After : Mar 3 06:47:12 2026 GMT
Subject: CN=9AFAB33739DB118EBCDC9A09AB1D735D45E5C21A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cb:08:9e:33:07:ba:fc:cf:33:36:ad:d9:ad:
83:ff:ce:36:a9:36:cd:34:7a:ee:79:8b:40:77:55:
7b:7f:b5:71:25:29:be:9d:ed:c9:4b:ca:25:ce:96:
a5:9c:e8:38:93:75:59:9e:03:34:5b:3d:bd:8d:3e:
73:d1:f6:6b:81:ab:e0:49:81:74:fa:e7:43:93:92:
b2:e3:f7:53:5e:6c:12:83:44:22:78:62:91:f6:cb:
1a:32:e4:c9:35:43:05:c2:4a:af:6a:8e:2d:53:33:
ae:c8:f8:fb:a0:d8:22:30:a1:65:46:40:24:ba:b6:
10:e2:e7:2e:64:5a:73:68:32:da:48:24:48:79:af:
19:d5:ab:3c:43:85:fa:80:a8:8a:51:2b:a4:e1:23:
f2:94:47:f8:27:dc:d6:b4:ae:66:b8:b9:24:01:7d:
32:3d:a7:bb:e5:d4:80:58:b0:35:36:e9:35:a9:77:
44:8d:e0:8a:d4:44:2d:70:1a:b2:0c:c1:11:e8:51:
ae:6a:14:cb:b8:68:42:fe:9b:65:5e:e2:8b:e6:44:
a8:a1:88:73:75:02:17:92:a0:39:5a:20:d5:3a:3f:
2b:81:06:fc:27:a8:f7:86:b1:94:54:23:4b:de:7e:
26:33:f2:17:86:a8:be:ee:db:cf:26:89:65:14:9e:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FA:B3:37:39:DB:11:8E:BC:DC:9A:09:AB:1D:73:5D:45:E5:C2:1A
X509v3 Authority Key Identifier:
keyid:A0:9E:88:0C:38:9D:90:5D:05:A3:3F:AE:05:CD:A1:4A:D0:3B:4C:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A09E880C389D905D05A33FAE05CDA14AD03B4CE7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7Vhv5c4ZEhaf8ALZANuRtpGjrjY5n3dE4T2xvk6gvqrL/0/323830343a333336343a383130303a3a2f34302d3430203d3e20323635333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3364:8100::/40
Signature Algorithm: sha256WithRSAEncryption
55:5d:6f:a9:80:f7:f3:54:87:81:0e:e0:a2:8d:9f:4d:c0:a6:
87:fa:e5:44:d4:43:5d:d4:21:a7:d9:b0:53:a8:dc:ab:68:0d:
4b:b7:22:88:5d:01:58:dc:f3:aa:2b:11:19:14:26:b8:90:7b:
89:47:fa:e8:61:73:79:8b:54:da:3f:26:9e:28:c3:62:e3:df:
d8:a1:aa:dc:17:00:15:ea:88:75:8c:c9:bc:5a:57:c2:40:90:
69:7c:f7:12:61:1a:59:c9:9b:1c:a9:fe:c1:aa:2e:6a:36:eb:
c8:02:d1:ef:69:f5:59:f2:d0:84:2d:a2:f7:c5:73:f5:19:28:
02:d4:6a:60:29:fd:df:18:62:05:87:cf:6a:69:28:f5:c4:0a:
37:6a:9b:89:59:ad:fd:a4:dc:a2:e6:ef:6d:e0:a2:8d:f4:f9:
29:3f:7e:38:9a:18:a7:86:52:12:65:22:2a:fc:ba:3f:c7:b8:
5a:9e:1a:38:9e:75:07:6e:34:90:14:ec:54:e9:0f:eb:54:48:
aa:38:b5:0c:c6:38:ac:41:89:7c:36:79:ba:94:7f:e9:51:d7:
50:d9:74:51:1d:96:79:41:1a:8a:84:de:01:a5:b0:77:14:79:
d3:44:a4:f3:25:69:17:95:56:82:fb:53:ba:d8:2c:47:90:6e:
99:cc:5c:a1
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUfMq/I5NjqpmmAiUkMrp/S59pC0cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTA5RTg4MEMzODlEOTA1RDA1QTMzRkFFMDVDREExNEFE
MDNCNENFNzAeFw0yNTAzMDQwNjQyMTJaFw0yNjAzMDMwNjQ3MTJaMDMxMTAvBgNV
BAMTKDlBRkFCMzM3MzlEQjExOEVCQ0RDOUEwOUFCMUQ3MzVENDVFNUMyMUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXywieMwe6/M8zNq3ZrYP/zjap
Ns00eu55i0B3VXt/tXElKb6d7clLyiXOlqWc6DiTdVmeAzRbPb2NPnPR9muBq+BJ
gXT650OTkrLj91NebBKDRCJ4YpH2yxoy5Mk1QwXCSq9qji1TM67I+Pug2CIwoWVG
QCS6thDi5y5kWnNoMtpIJEh5rxnVqzxDhfqAqIpRK6ThI/KUR/gn3Na0rma4uSQB
fTI9p7vl1IBYsDU26TWpd0SN4IrURC1wGrIMwRHoUa5qFMu4aEL+m2Ve4ovmRKih
iHN1AheSoDlaINU6PyuBBvwnqPeGsZRUI0vefiYz8heGqL7u288miWUUnjSJAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUmvqzNznbEY683JoJqx1zXUXlwhowHwYDVR0j
BBgwFoAUoJ6IDDidkF0Foz+uBc2hStA7TOcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vN1ZodjVjNFpFaGFmOEFMWkFOdVJ0cEdqcmpZNW4zZEU0VDJ4dms2Z3Zx
ckwvMC9BMDlFODgwQzM4OUQ5MDVEMDVBMzNGQUUwNUNEQTE0QUQwM0I0Q0U3LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0EwOUU4ODBDMzg5RDkwNUQw
NUEzM0ZBRTA1Q0RBMTRBRDAzQjRDRTcuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzdWaHY1YzRaRWhhZjhBTFpBTnVSdHBHanJqWTVuM2RFNFQyeHZrNmd2cXJMLzAv
MzIzODMwMzQzYTMzMzMzNjM0M2EzODMxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNk
M2UyMDMyMzYzNTMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACgEM2SBMA0GCSqGSIb3DQEBCwUA
A4IBAQBVXW+pgPfzVIeBDuCijZ9NwKaH+uVE1ENd1CGn2bBTqNyraA1LtyKIXQFY
3POqKxEZFCa4kHuJR/roYXN5i1TaPyaeKMNi49/YoarcFwAV6oh1jMm8WlfCQJBp
fPcSYRpZyZscqf7Bqi5qNuvIAtHvafVZ8tCELaL3xXP1GSgC1GpgKf3fGGIFh89q
aSj1xAo3apuJWa39pNyi5u9t4KKN9PkpP344mhinhlISZSIq/Lo/x7hanho4nnUH
bjSQFOxU6Q/rVEiqOLUMxjisQYl8Nnm6lH/pUddQ2XRRHZZ5QRqKhN4BpbB3FHnT
RKTzJWkXlVaC+1O62CxHkG6ZzFyh
-----END CERTIFICATE-----
Generated at Sun Apr 13 20:47:40 2025 by rpki-client