Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32342e302f32342d3234203d3e20323638303931.roa
File: 34352e3136392e32342e302f32342d3234203d3e20323638303931.roa (raw, json)
Hash identifier: Z9f/ubw5JSEsPIWhy+WmxunSIaZaRRY0FKnkiG1UnLw=
Subject key identifier: A5:14:9F:49:2C:91:41:6D:C3:17:AF:7D:9B:E7:D2:E0:2C:52:3B:9B
Certificate issuer: /CN=3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF
Certificate serial: 2D6284825265A5250E044F0F78604BC06DBE1F1B
Authority key identifier: 3C:9F:72:B9:D4:E7:CA:7E:EF:4F:D6:EA:F0:70:32:0A:18:60:9E:FF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32342e302f32342d3234203d3e20323638303931.roa
Signing time: Fri 14 Feb 2025 17:48:15 +0000
ROA not before: Fri 14 Feb 2025 17:43:15 +0000
ROA not after: Fri 13 Feb 2026 17:48:15 +0000
asID: 268091
IP address blocks: 45.169.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:62:84:82:52:65:a5:25:0e:04:4f:0f:78:60:4b:c0:6d:be:1f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF
Validity
Not Before: Feb 14 17:43:15 2025 GMT
Not After : Feb 13 17:48:15 2026 GMT
Subject: CN=A5149F492C91416DC317AF7D9BE7D2E02C523B9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:30:d8:f3:38:c3:6b:eb:61:fa:51:3e:96:9e:
9e:cd:3c:ba:d1:30:44:4b:c4:36:72:75:3b:1c:30:
73:1f:72:4e:06:3a:9b:51:ed:45:5a:50:07:f4:7a:
ef:87:a4:62:7f:56:f9:3b:40:ae:21:8d:79:a5:8e:
9e:92:5d:9a:0b:7d:9e:db:1b:46:49:a9:46:30:9e:
18:ed:1f:bd:a7:88:88:34:a9:58:15:e3:a7:2d:1e:
e3:80:fa:0a:72:0f:cb:4e:5e:47:50:39:94:92:c7:
5c:1a:be:a7:0c:06:bc:37:8d:fa:cb:21:fc:45:58:
65:fb:7b:7a:07:d3:6b:12:f0:b9:a7:74:b6:2b:70:
f5:d0:a6:58:42:86:f9:bc:d1:86:43:1c:c1:36:62:
31:b9:2d:0a:d0:30:df:f9:0a:37:c0:fd:25:88:88:
eb:cf:da:93:07:39:54:e0:3d:86:af:a5:90:58:4f:
c5:34:62:3b:05:8d:aa:22:74:20:45:9e:cd:3d:70:
91:91:f9:8d:74:77:c1:ec:56:45:82:f8:2e:94:f9:
27:07:10:3b:1e:8a:f2:06:b9:6e:f5:9a:09:3f:26:
ad:0c:ad:6a:78:8b:22:a3:41:39:fc:ae:66:55:89:
6d:27:0b:71:b5:b1:90:65:98:2a:8a:5f:8b:0c:79:
3b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:14:9F:49:2C:91:41:6D:C3:17:AF:7D:9B:E7:D2:E0:2C:52:3B:9B
X509v3 Authority Key Identifier:
keyid:3C:9F:72:B9:D4:E7:CA:7E:EF:4F:D6:EA:F0:70:32:0A:18:60:9E:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32342e302f32342d3234203d3e20323638303931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.169.24.0/24
Signature Algorithm: sha256WithRSAEncryption
51:4c:c7:f0:5e:f0:07:b7:ea:c0:ec:56:25:33:84:8f:38:1f:
1d:8a:e2:36:86:d7:e3:b5:a0:3b:7d:04:da:cd:2d:b2:fb:96:
20:f3:00:89:38:85:6d:3d:d8:c2:d3:b8:c4:d8:60:39:1c:7e:
86:77:a9:3c:c3:ae:d7:08:9e:e1:c6:67:9b:3c:cd:a4:65:6f:
7f:40:6b:14:25:77:06:1e:d8:8d:b0:aa:1d:d2:f0:a4:a6:11:
3d:8f:82:a2:64:86:dc:f8:91:5e:0b:66:2d:90:69:81:33:2a:
22:72:3d:1f:db:67:b5:e9:04:77:88:fd:bb:eb:e3:3c:cf:a7:
b9:4c:4a:29:e1:25:fd:a7:5f:50:5a:78:c6:13:bf:0e:d7:d2:
49:0b:b3:2d:b8:6c:46:24:e0:79:61:3a:2d:b8:0e:33:ce:ec:
78:8a:aa:f3:21:d4:a8:e5:7f:fb:cc:74:a4:f6:9c:49:f1:68:
6f:ec:18:b0:74:44:7d:1d:eb:ee:a2:af:d8:4b:f2:37:d1:44:
09:68:f5:18:fc:fc:8c:d8:ec:de:f2:6a:4f:6b:e5:0d:1a:35:
cc:9e:c4:ee:98:21:c7:3a:54:56:88:a2:73:8c:da:b7:46:32:
64:ac:2d:dd:1e:a5:30:25:50:6a:00:c5:d5:19:b7:b1:2b:3b:
ed:e7:cd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:36:54 2025 by rpki-client