Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7unTVBznm2HuHMpWg8hSERgqidfLje83NXGvZwd66zDF/1/3133312e3136312e3138382e302f32332d3233203d3e20323634333932.roa
File: 3133312e3136312e3138382e302f32332d3233203d3e20323634333932.roa (raw, json)
Hash identifier: raOkLLdj/L+t+bN2ADUVzQLEqPhSi7NVBjyc3F7kVTY=
Subject key identifier: D9:8C:3A:6F:17:BA:BB:12:F4:D2:90:03:BC:AA:02:85:AE:E8:58:7C
Certificate issuer: /CN=698FB4B827B77BA7F517D219FC2340048BDC33A1
Certificate serial: 6D0CB2A7A22737B0D108C0A397FD70F8F9D509B8
Authority key identifier: 69:8F:B4:B8:27:B7:7B:A7:F5:17:D2:19:FC:23:40:04:8B:DC:33:A1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/698FB4B827B77BA7F517D219FC2340048BDC33A1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7unTVBznm2HuHMpWg8hSERgqidfLje83NXGvZwd66zDF/1/3133312e3136312e3138382e302f32332d3233203d3e20323634333932.roa
Signing time: Thu 06 Mar 2025 06:33:11 +0000
ROA not before: Thu 06 Mar 2025 06:28:11 +0000
ROA not after: Thu 05 Mar 2026 06:33:11 +0000
asID: 264392
IP address blocks: 131.161.188.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:0c:b2:a7:a2:27:37:b0:d1:08:c0:a3:97:fd:70:f8:f9:d5:09:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698FB4B827B77BA7F517D219FC2340048BDC33A1
Validity
Not Before: Mar 6 06:28:11 2025 GMT
Not After : Mar 5 06:33:11 2026 GMT
Subject: CN=D98C3A6F17BABB12F4D29003BCAA0285AEE8587C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:98:a0:5d:be:69:aa:09:19:32:64:82:49:c9:
d7:1e:21:94:cc:81:f6:32:90:88:2b:9f:d1:e0:e9:
bd:cd:03:d4:4d:e4:9b:7f:26:ee:34:f5:dc:91:fc:
9d:3d:b3:de:f4:ce:b9:2b:b9:48:55:ce:91:76:d7:
67:d7:b7:4b:57:d2:48:39:92:a5:73:90:74:12:7c:
cf:12:29:70:26:34:a5:c6:86:e8:73:2f:b6:d6:0e:
6f:5d:47:61:ad:c7:20:ec:a5:8d:f4:70:d4:17:d6:
ab:6d:98:d0:e1:40:0a:4d:b9:74:96:40:53:ec:1f:
a4:14:a4:1a:0b:1d:81:b0:b8:4f:3c:92:60:21:1d:
0a:a3:c6:44:56:42:20:2f:88:30:fd:ac:1a:c8:41:
8a:16:ee:9c:76:4c:9c:1b:ff:c7:95:5b:8f:74:02:
e4:59:3b:9a:23:c3:49:47:07:da:07:2c:9e:a0:cc:
37:8d:2f:4e:a3:1c:97:2b:9b:a9:53:5d:ff:0c:51:
1a:7a:59:e2:c8:b5:73:ec:e1:86:fd:6f:12:08:01:
50:60:8a:cb:02:b2:f4:78:be:b4:85:b4:e6:31:58:
73:b9:ae:fe:de:1a:52:8e:7e:ff:e9:0a:6a:f1:04:
d6:25:e8:fd:c0:07:3d:c8:ad:af:44:e2:6a:64:a9:
62:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8C:3A:6F:17:BA:BB:12:F4:D2:90:03:BC:AA:02:85:AE:E8:58:7C
X509v3 Authority Key Identifier:
keyid:69:8F:B4:B8:27:B7:7B:A7:F5:17:D2:19:FC:23:40:04:8B:DC:33:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7unTVBznm2HuHMpWg8hSERgqidfLje83NXGvZwd66zDF/1/698FB4B827B77BA7F517D219FC2340048BDC33A1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/698FB4B827B77BA7F517D219FC2340048BDC33A1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7unTVBznm2HuHMpWg8hSERgqidfLje83NXGvZwd66zDF/1/3133312e3136312e3138382e302f32332d3233203d3e20323634333932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.161.188.0/23
Signature Algorithm: sha256WithRSAEncryption
99:f1:43:a5:19:63:f4:d8:b5:0e:d1:ce:78:fb:c2:f7:97:d5:
9f:b0:1e:b8:13:cd:b5:96:b0:07:68:c8:26:61:8f:50:a6:f4:
47:51:dc:14:d1:93:47:5e:19:84:fa:72:25:7b:36:45:78:9d:
48:85:21:5e:10:f8:9f:c7:9f:9d:55:81:32:a7:4d:29:d8:d5:
7a:1c:6e:b0:ff:f9:1f:f3:c7:33:22:53:a6:c6:2b:3e:a8:58:
1f:90:bd:01:47:ad:87:8f:4c:73:83:e6:1f:d5:82:19:f8:e1:
40:27:f4:a0:a1:f9:3d:ae:cd:2e:df:62:62:ed:c8:e7:64:2f:
f0:57:c3:e3:2a:b6:c4:db:75:44:3e:a8:59:16:b1:97:e9:1c:
6d:a1:47:be:5d:b8:60:5f:37:de:b3:ac:36:99:3c:82:bf:c7:
5d:3e:a7:20:91:f6:8a:3b:d9:aa:77:9b:69:cb:d3:29:8d:93:
46:a2:29:9b:65:a3:b9:8f:77:ab:d4:f8:d0:18:99:20:b2:c2:
d0:c2:e0:63:14:84:a2:1d:b4:ae:98:54:80:19:77:73:18:59:
3b:3a:5c:a2:1b:b5:57:45:9c:c6:96:7f:0b:4d:9c:91:0a:83:
03:a1:8a:9e:60:e3:75:8b:b2:4d:c0:9b:69:de:89:0f:e8:59:
98:d9:f3:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:42:07 2025 by rpki-client