Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e36382e302f32332d3233203d3e20323637323232.roa
File: 34352e3232392e36382e302f32332d3233203d3e20323637323232.roa (raw, json)
Hash identifier: UifxwEG7vJxx646ArwKrEjuPH/DVz2naB23cASE80ZE=
Subject key identifier: 13:EF:3C:0D:40:ED:49:29:15:DF:C1:D0:FA:9B:A0:CB:A7:CA:22:7F
Certificate issuer: /CN=433BD4694845BA65CA4AE1BF622A1C599CB53F72
Certificate serial: 6775B839AC400F5AEB70C3BB4706267E874CE2BF
Authority key identifier: 43:3B:D4:69:48:45:BA:65:CA:4A:E1:BF:62:2A:1C:59:9C:B5:3F:72
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e36382e302f32332d3233203d3e20323637323232.roa
Signing time: Thu 06 Mar 2025 09:21:55 +0000
ROA not before: Thu 06 Mar 2025 09:16:55 +0000
ROA not after: Thu 05 Mar 2026 09:21:55 +0000
asID: 267222
IP address blocks: 45.229.68.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:75:b8:39:ac:40:0f:5a:eb:70:c3:bb:47:06:26:7e:87:4c:e2:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=433BD4694845BA65CA4AE1BF622A1C599CB53F72
Validity
Not Before: Mar 6 09:16:55 2025 GMT
Not After : Mar 5 09:21:55 2026 GMT
Subject: CN=13EF3C0D40ED492915DFC1D0FA9BA0CBA7CA227F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:04:c7:5f:0d:37:46:c9:07:bb:10:5c:03:
e6:61:d4:6c:69:7a:4e:a7:25:43:a2:21:58:8b:7a:
e1:67:ff:b4:0e:ab:2a:30:14:bd:b5:18:2f:c2:37:
40:ec:ee:13:a3:6c:44:cf:29:09:44:49:b4:78:fe:
26:1f:d6:33:fa:04:fe:0a:83:4d:77:9b:a2:cd:16:
2f:d8:ba:d6:d3:d4:83:47:98:05:16:0f:3a:2e:df:
f6:66:10:59:f1:93:58:e5:5b:15:00:9e:e4:61:89:
cb:b1:9f:73:bc:1b:a5:c9:0f:10:4d:99:47:75:35:
20:ae:c0:c9:0c:cf:21:30:25:8a:d1:21:41:7a:f0:
c3:d2:e3:2a:18:6e:43:f2:62:02:70:52:57:4e:5f:
a4:a5:20:6b:ab:f6:a2:d1:df:02:6e:94:dc:cc:0d:
b5:20:d9:07:d0:84:d6:25:64:b4:e2:1e:b2:09:64:
96:55:24:af:91:1a:b7:28:35:40:9c:c4:ea:52:56:
c6:71:64:d4:4b:7e:6b:81:99:8e:e0:aa:15:10:42:
41:04:f2:56:c8:a1:f3:ec:c2:fc:d4:be:b3:f4:f8:
4e:4c:d3:77:46:6c:61:d9:b8:9f:a6:20:ee:6d:9f:
e5:db:4c:f6:11:51:2d:45:cc:71:b0:f7:3b:0f:54:
ef:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EF:3C:0D:40:ED:49:29:15:DF:C1:D0:FA:9B:A0:CB:A7:CA:22:7F
X509v3 Authority Key Identifier:
keyid:43:3B:D4:69:48:45:BA:65:CA:4A:E1:BF:62:2A:1C:59:9C:B5:3F:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e36382e302f32332d3233203d3e20323637323232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.68.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:be:70:a7:2a:5c:fa:fe:34:04:c1:4f:27:f4:7c:72:6f:aa:
13:6b:34:62:3f:04:d6:dd:27:fe:22:fd:dd:b7:21:79:50:2d:
21:90:4d:fe:ce:9a:c3:6a:d3:64:f8:af:16:a0:e3:3b:7d:cd:
2d:02:88:36:f9:56:b0:14:d5:f5:42:78:61:b5:aa:53:0e:08:
1e:4e:fb:43:bb:34:62:58:4e:50:0b:57:ad:98:03:ad:1e:1b:
d9:58:78:5b:1a:51:c4:b1:86:95:e2:d0:d4:ad:c0:7c:95:77:
15:cf:0b:85:d4:a0:f7:6c:83:60:9c:86:f9:67:93:dd:35:b0:
38:7c:8b:c7:a3:2d:83:e6:b6:93:27:fb:89:42:57:78:96:da:
c7:a1:d6:da:61:18:f6:93:9f:fc:3b:01:75:f7:b0:61:59:ab:
86:c7:1e:54:50:6c:ed:83:73:cd:53:2c:4f:c3:b2:64:19:18:
d0:1b:02:1b:fa:d7:c8:d0:c5:06:c2:53:b3:5b:a8:0a:37:69:
66:a4:59:9b:a3:d8:76:73:c3:ea:6b:7e:28:65:82:8d:16:31:
53:8b:56:06:58:29:a7:2f:8e:a6:8b:6f:da:95:ac:36:98:05:
8c:6d:42:b4:08:c1:9d:c6:a0:dc:8e:f9:1d:76:b4:bb:92:98:
37:65:8b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:39:40 2025 by rpki-client