Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7rAziowefNmFrwbW51SyPKaD3H1wNUj1JwUPwgujmacU/2/323830343a6439303a3a2f33322d3536203d3e20323033.roa
File: 323830343a6439303a3a2f33322d3536203d3e20323033.roa (raw, json)
Hash identifier: 1y0TbzKpWe6TLGRKrp4mp8CVkZkPZepQDLRmRpSwKCk=
Subject key identifier: A3:B4:C4:29:F5:64:CE:51:54:99:EF:35:18:23:E7:7B:3C:3A:39:02
Certificate issuer: /CN=4C331098B84DC9296BBDAEE9D2C05BE2AC3CC5A2
Certificate serial: 7A182FA3B10D895E9A13F1EFC931644D677D2097
Authority key identifier: 4C:33:10:98:B8:4D:C9:29:6B:BD:AE:E9:D2:C0:5B:E2:AC:3C:C5:A2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4C331098B84DC9296BBDAEE9D2C05BE2AC3CC5A2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7rAziowefNmFrwbW51SyPKaD3H1wNUj1JwUPwgujmacU/2/323830343a6439303a3a2f33322d3536203d3e20323033.roa
Signing time: Thu 06 Mar 2025 00:58:54 +0000
ROA not before: Thu 06 Mar 2025 00:53:54 +0000
ROA not after: Thu 05 Mar 2026 00:58:54 +0000
asID: 203
IP address blocks: 2804:d90::/32 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:18:2f:a3:b1:0d:89:5e:9a:13:f1:ef:c9:31:64:4d:67:7d:20:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C331098B84DC9296BBDAEE9D2C05BE2AC3CC5A2
Validity
Not Before: Mar 6 00:53:54 2025 GMT
Not After : Mar 5 00:58:54 2026 GMT
Subject: CN=A3B4C429F564CE515499EF351823E77B3C3A3902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:90:fb:f1:09:ab:dc:54:ed:d8:89:f6:cc:69:
09:6a:d5:cc:2b:0f:07:a2:a8:74:91:0f:b5:72:1d:
fb:de:22:02:77:29:62:76:2b:a5:ac:7d:be:04:a5:
db:7f:fa:bc:f9:9f:5e:bb:71:93:b4:f2:51:93:b4:
7c:10:5f:25:c9:bd:23:9e:56:53:22:05:a8:f0:5e:
71:86:2d:95:ca:1b:3d:65:43:62:ce:e2:f5:f1:78:
90:04:05:ae:b8:fd:33:3a:c2:bf:50:fd:20:86:84:
d9:ab:51:43:02:74:93:63:0d:3f:d8:64:af:fc:38:
fa:89:e7:ea:61:5b:11:c6:64:35:4c:5a:b7:98:d1:
35:96:24:51:af:7d:d1:c3:3b:17:65:0c:3e:ac:60:
9f:78:69:0e:e8:c3:53:d2:26:4f:ea:23:32:45:6d:
cd:99:b3:c8:f8:30:c2:96:a7:86:b6:12:3c:98:fa:
3d:10:07:25:54:2d:a6:43:81:c9:b2:8d:e4:e9:22:
87:05:da:71:a2:a8:68:48:2f:3a:a8:84:92:3c:83:
fa:c1:61:a3:02:31:28:fe:d3:0a:79:cc:77:f9:d2:
ce:c9:dd:9d:2a:9c:c1:28:71:3b:d3:7a:87:66:de:
24:6c:a7:df:40:0e:d4:b5:f5:62:18:2c:3b:68:60:
9b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B4:C4:29:F5:64:CE:51:54:99:EF:35:18:23:E7:7B:3C:3A:39:02
X509v3 Authority Key Identifier:
keyid:4C:33:10:98:B8:4D:C9:29:6B:BD:AE:E9:D2:C0:5B:E2:AC:3C:C5:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7rAziowefNmFrwbW51SyPKaD3H1wNUj1JwUPwgujmacU/2/4C331098B84DC9296BBDAEE9D2C05BE2AC3CC5A2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4C331098B84DC9296BBDAEE9D2C05BE2AC3CC5A2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7rAziowefNmFrwbW51SyPKaD3H1wNUj1JwUPwgujmacU/2/323830343a6439303a3a2f33322d3536203d3e20323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:d90::/32
Signature Algorithm: sha256WithRSAEncryption
1a:18:9f:43:4f:61:13:64:91:40:dd:72:df:3f:58:83:a3:6f:
42:d7:15:b5:2b:76:82:bc:78:dd:5f:8d:30:a5:44:0d:ee:49:
10:04:0e:70:c2:03:5c:69:2f:ad:bf:dd:9e:4d:09:21:12:9d:
f0:14:f7:4e:db:dc:12:3c:6e:83:e0:06:d3:1a:64:e8:d1:f1:
ee:6b:00:f9:da:e9:2b:62:db:a1:6c:16:74:3e:d7:4b:4d:bf:
ab:1d:1b:80:a9:30:60:83:23:08:7c:5f:13:72:c2:4f:dd:84:
38:84:0d:ba:b0:71:ef:4f:eb:2f:dc:e5:20:f7:3d:09:30:a9:
94:2d:8a:cb:65:3a:e4:74:46:cf:dd:ed:06:14:c2:16:10:b2:
85:7e:04:52:8b:a5:15:a3:ca:80:ad:1e:d3:0b:64:12:63:c6:
8b:2a:97:c4:53:73:32:72:ae:ec:5c:75:c6:4e:a3:21:85:93:
e5:26:4a:3d:3a:08:c3:4e:c6:3b:3d:96:af:85:b0:25:54:4f:
bb:c7:61:a7:13:7e:a1:a9:6b:07:04:99:d3:06:98:01:d0:02:
b9:88:8e:04:2d:cb:65:56:7c:cc:92:77:24:17:37:c0:fd:03:
57:89:e0:5e:7c:4d:10:64:3b:5c:78:ea:86:9c:a0:78:c5:46:
76:e1:8e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:07:12 2025 by rpki-client