Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e37302e302f32332d3233203d3e20323637323232.roa
File: 34352e3232392e37302e302f32332d3233203d3e20323637323232.roa (raw, json)
Hash identifier: YImMQr+RMDsH/GDqY6kCVtep65OxcR2ekjIL8Y2gbew=
Subject key identifier: 02:53:1B:F5:42:17:7E:0E:1C:B3:C9:7C:93:94:86:D4:BD:36:D0:4F
Certificate issuer: /CN=433BD4694845BA65CA4AE1BF622A1C599CB53F72
Certificate serial: 1328DEEB3422CD7411869E92D894DC3F68098D80
Authority key identifier: 43:3B:D4:69:48:45:BA:65:CA:4A:E1:BF:62:2A:1C:59:9C:B5:3F:72
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e37302e302f32332d3233203d3e20323637323232.roa
Signing time: Thu 06 Mar 2025 09:21:52 +0000
ROA not before: Thu 06 Mar 2025 09:16:52 +0000
ROA not after: Thu 05 Mar 2026 09:21:52 +0000
asID: 267222
IP address blocks: 45.229.70.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.crl
rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 09:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:28:de:eb:34:22:cd:74:11:86:9e:92:d8:94:dc:3f:68:09:8d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=433BD4694845BA65CA4AE1BF622A1C599CB53F72
Validity
Not Before: Mar 6 09:16:52 2025 GMT
Not After : Mar 5 09:21:52 2026 GMT
Subject: CN=02531BF542177E0E1CB3C97C939486D4BD36D04F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f1:bb:40:fa:34:d7:1b:9e:b6:88:4d:d8:15:
5a:0d:1c:38:bc:76:a3:43:8a:11:29:e2:54:70:ff:
a7:a1:4b:c2:42:e6:7c:36:45:e0:4b:f7:64:06:8a:
ae:13:61:3c:8e:05:4b:9a:80:ca:a9:36:b5:d2:6e:
ea:1e:aa:74:36:42:bc:bd:66:c6:1a:57:87:64:16:
3c:59:8e:ec:46:53:87:69:99:32:7b:a5:4d:b6:ab:
3f:8f:42:df:49:90:bd:1f:e4:82:3c:78:27:bb:16:
d7:72:60:f2:ed:41:ad:e5:b3:22:89:1f:15:6d:30:
d3:e8:86:cb:c7:ab:93:c1:e6:53:f2:93:83:f7:d9:
ba:90:81:d8:56:8c:e3:00:d7:38:29:36:cc:c5:0b:
6c:c6:1c:b1:68:19:35:2f:59:57:a4:09:5c:c5:50:
db:80:f9:8b:15:75:78:58:2d:e3:6c:0e:53:ba:a0:
10:79:6f:bb:12:e7:89:50:8d:f1:f8:ec:9c:ed:15:
e1:23:7e:4c:f6:b1:89:b5:67:fc:8f:59:94:23:ea:
83:67:d7:c4:0c:fd:8d:7d:ab:48:eb:f8:4e:23:7c:
3a:24:d1:ed:47:8f:d7:05:c2:71:41:08:97:46:37:
87:9e:ce:d5:47:b7:4e:2b:96:41:a9:45:dc:13:a5:
65:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:53:1B:F5:42:17:7E:0E:1C:B3:C9:7C:93:94:86:D4:BD:36:D0:4F
X509v3 Authority Key Identifier:
keyid:43:3B:D4:69:48:45:BA:65:CA:4A:E1:BF:62:2A:1C:59:9C:B5:3F:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/433BD4694845BA65CA4AE1BF622A1C599CB53F72.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7e3qTPZpDcbmoZvhmxfBwY3sdRvtv6VsKTy44yyQMhke/1/34352e3232392e37302e302f32332d3233203d3e20323637323232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.70.0/23
Signature Algorithm: sha256WithRSAEncryption
88:db:b6:f0:96:65:04:75:4d:19:11:6a:df:d5:50:b6:3d:a8:
2b:0e:91:6a:61:c8:8f:29:8e:33:93:b3:3f:9b:8a:2d:22:6e:
ad:de:83:e6:fe:c6:4c:f1:bf:ca:18:4a:4c:45:83:de:03:9b:
83:a0:b9:ec:15:3b:5d:4d:16:24:ac:eb:66:c0:d5:aa:7d:c7:
4e:94:cf:5b:f9:c6:fb:47:1a:d9:41:d3:36:41:fd:31:ca:70:
6d:fb:e2:fa:eb:67:fe:a8:8a:24:c1:92:b1:26:1c:ba:d9:de:
78:d2:9c:b2:15:68:80:c6:55:85:40:1b:88:c0:b9:3a:18:f2:
f0:5f:d1:a1:91:a4:de:8d:b1:02:89:14:b4:bc:4c:9c:26:f3:
8a:b7:36:33:e4:9c:2f:a0:c1:4f:54:dc:48:0b:8a:32:9f:9a:
6d:ec:ee:a1:d6:e5:fb:79:1e:f6:bf:cd:ef:59:b1:1f:da:61:
95:dc:9d:e0:0a:84:2a:81:4d:ce:b3:2e:0b:8e:ad:a8:01:1b:
f0:7c:20:0c:66:a1:4b:9b:35:66:de:47:78:7c:3a:f6:47:b1:
55:a2:9f:d4:36:3d:e9:8a:7d:85:a5:e5:45:90:25:b5:a8:08:
1f:59:54:37:86:6d:ea:92:3a:d5:8e:b0:8f:87:c1:34:45:45:
d5:69:48:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:50:53 2025 by rpki-client