Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/3137372e3232332e3134332e302f32342d3234203d3e20323731323039.roa
File: 3137372e3232332e3134332e302f32342d3234203d3e20323731323039.roa (raw, json)
Hash identifier: brZKxqoY+A28jmnDeBS9tjOaImMKzD03J8KuSWCbXWI=
Subject key identifier: 13:5A:52:38:A0:B3:32:C9:60:9D:B2:98:EC:2E:31:A6:D0:57:48:8C
Certificate issuer: /CN=0D43F36140A4C38AD745FB2C264948998A60F421
Certificate serial: 740423FD19874B6309F83A08A609982A3731284C
Authority key identifier: 0D:43:F3:61:40:A4:C3:8A:D7:45:FB:2C:26:49:48:99:8A:60:F4:21
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0D43F36140A4C38AD745FB2C264948998A60F421.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/3137372e3232332e3134332e302f32342d3234203d3e20323731323039.roa
Signing time: Sun 26 Jan 2025 20:21:02 +0000
ROA not before: Sun 26 Jan 2025 20:16:02 +0000
ROA not after: Sun 25 Jan 2026 20:21:02 +0000
asID: 271209
IP address blocks: 177.223.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/0D43F36140A4C38AD745FB2C264948998A60F421.crl
rsync://rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/0D43F36140A4C38AD745FB2C264948998A60F421.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0D43F36140A4C38AD745FB2C264948998A60F421.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 13:08:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:04:23:fd:19:87:4b:63:09:f8:3a:08:a6:09:98:2a:37:31:28:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D43F36140A4C38AD745FB2C264948998A60F421
Validity
Not Before: Jan 26 20:16:02 2025 GMT
Not After : Jan 25 20:21:02 2026 GMT
Subject: CN=135A5238A0B332C9609DB298EC2E31A6D057488C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1d:f9:1f:da:6d:91:13:6f:a8:99:12:b8:a7:
5c:42:59:98:0a:9f:1e:87:ed:b9:ae:5f:a9:3c:6e:
f7:ca:98:f7:67:d1:b6:fe:74:27:bc:15:21:1b:f5:
99:79:88:3c:52:51:10:b3:15:38:3f:15:5b:bb:3a:
fa:27:af:89:68:94:f8:49:03:95:44:ad:fb:91:58:
03:42:bf:d9:51:83:e9:cd:15:95:b4:4a:73:9e:cc:
f2:fb:3b:83:4c:dd:c6:d8:ab:10:ce:97:c0:07:8a:
92:bc:a1:5d:66:36:3d:da:1f:d0:69:be:4f:db:8c:
76:30:af:c9:a0:76:b3:89:ab:10:0c:ac:e6:e4:bd:
ba:fa:d2:0e:fe:93:c7:57:e2:81:19:3d:63:53:f3:
1e:43:5a:a5:08:22:96:d2:02:bb:62:89:59:34:c6:
36:51:f5:2a:d5:b1:cc:9e:15:9d:f7:3e:cb:9c:6b:
4c:1d:65:26:4d:58:e9:58:70:39:92:7a:6c:d6:73:
36:43:1f:44:e9:1f:23:4f:b0:14:78:b7:c4:97:5b:
8c:a7:51:be:15:97:cb:67:d6:23:8a:0e:2e:be:2a:
4f:5f:86:35:25:bc:00:e5:2d:aa:0c:3d:ab:7b:73:
14:e3:13:d3:1a:cc:55:6f:c9:e9:8a:be:aa:f9:23:
d7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5A:52:38:A0:B3:32:C9:60:9D:B2:98:EC:2E:31:A6:D0:57:48:8C
X509v3 Authority Key Identifier:
keyid:0D:43:F3:61:40:A4:C3:8A:D7:45:FB:2C:26:49:48:99:8A:60:F4:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/0D43F36140A4C38AD745FB2C264948998A60F421.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0D43F36140A4C38AD745FB2C264948998A60F421.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7uFxE3aKQsSqPHLbMutFQU2SwqLSJrTSLfLwqkbj3FoL/0/3137372e3232332e3134332e302f32342d3234203d3e20323731323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.223.143.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b0:90:1f:ce:94:90:fa:7d:03:b1:db:3f:c5:eb:25:d7:76:
b1:91:e5:90:19:7a:b6:5e:24:8e:96:95:f8:ab:da:b7:eb:ec:
e9:c7:d3:a2:84:b1:94:bf:f4:ba:65:51:d9:91:17:da:48:32:
a4:0c:f1:bb:11:34:bf:19:6a:5b:09:b9:52:7e:f6:ca:8c:3f:
d3:6e:4e:00:e4:3d:cf:c9:51:5b:79:e3:4c:82:e6:2f:07:00:
d5:3b:46:0d:fb:33:da:89:fc:d2:b6:d0:48:5b:37:6d:00:68:
41:6b:e4:1c:33:fc:00:4d:97:a4:87:11:bd:42:4a:03:9c:3a:
fc:46:4f:14:3f:6c:40:c0:fe:65:17:fa:c8:91:65:43:3d:79:
69:61:5c:03:c4:12:6e:44:87:8a:54:45:13:6f:89:24:15:85:
ae:6b:e1:ce:80:50:ff:4d:f5:42:46:44:99:93:af:a5:df:91:
08:ce:1e:07:85:56:1e:92:d2:89:b1:36:9c:db:56:e1:86:e5:
cb:62:f6:be:f7:e0:17:89:7f:4f:fd:26:ff:9d:1a:39:54:d6:
5e:b4:8b:fc:d5:d2:e6:80:a8:db:0d:22:eb:4b:44:97:fe:03:
d6:23:df:9f:53:f9:93:03:e5:61:94:16:7d:29:d6:8c:07:f9:
14:de:4f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 04:14:27 2025 by rpki-client