Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/85tAm5nyLLvSrUdgRt44TPY5vR9qTbyzFMRDUaTVNuFW/1/323830343a386165303a3a2f33322d3332203d3e203631363130.roa
File: 323830343a386165303a3a2f33322d3332203d3e203631363130.roa (raw, json)
Hash identifier: xmmz9LTZttl2Xfzv5kWiCmHEssTo7PK1z0cqHjKY0mE=
Subject key identifier: 41:C4:20:86:B1:7F:76:C6:4F:C9:6F:6B:BD:0B:40:33:80:1B:FE:DC
Certificate issuer: /CN=5A68B88E027E5A12DC69EAEAAC2011ED1D2825A2
Certificate serial: 5960E6B40838C9441D7B3A97F5F62D61A8263B13
Authority key identifier: 5A:68:B8:8E:02:7E:5A:12:DC:69:EA:EA:AC:20:11:ED:1D:28:25:A2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A68B88E027E5A12DC69EAEAAC2011ED1D2825A2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/85tAm5nyLLvSrUdgRt44TPY5vR9qTbyzFMRDUaTVNuFW/1/323830343a386165303a3a2f33322d3332203d3e203631363130.roa
Signing time: Thu 06 Mar 2025 00:20:41 +0000
ROA not before: Thu 06 Mar 2025 00:15:41 +0000
ROA not after: Thu 05 Mar 2026 00:20:41 +0000
asID: 61610
IP address blocks: 2804:8ae0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:60:e6:b4:08:38:c9:44:1d:7b:3a:97:f5:f6:2d:61:a8:26:3b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A68B88E027E5A12DC69EAEAAC2011ED1D2825A2
Validity
Not Before: Mar 6 00:15:41 2025 GMT
Not After : Mar 5 00:20:41 2026 GMT
Subject: CN=41C42086B17F76C64FC96F6BBD0B4033801BFEDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d7:87:44:26:67:17:0d:82:04:6b:31:86:c8:
fc:d8:2f:c2:c3:d3:94:80:a6:cc:37:4d:30:2c:c0:
6d:a2:5c:d0:62:f7:d1:2e:21:8a:b8:d1:81:19:f4:
3d:62:e4:38:dc:9a:e8:83:db:cc:18:74:6e:f9:c8:
4a:e8:ac:d4:a8:4e:70:35:a4:ea:38:9c:22:2a:30:
90:c9:a6:ef:d2:30:e4:4f:26:19:18:34:6c:99:fd:
8e:e8:dc:e1:62:97:e5:aa:06:58:86:94:a7:a9:de:
03:fd:18:b6:29:90:a9:be:cb:47:72:0e:44:ff:3a:
2b:86:c8:ef:c4:02:86:21:8f:90:3a:97:84:0c:c5:
25:1e:ba:48:57:03:49:37:48:6d:fc:9a:d1:f4:0d:
bc:60:52:8d:c8:d6:21:42:48:9c:f8:f3:7a:43:06:
0c:09:da:ad:3d:02:31:fd:3e:e9:e3:b3:21:15:be:
e6:a6:9b:67:15:3c:64:fb:23:66:6e:fe:05:e5:a0:
63:96:ba:07:6f:45:00:c6:93:f2:51:b8:9d:95:bb:
2d:f4:af:6a:ab:af:8e:b7:51:41:dc:20:b8:0f:03:
7a:a4:a3:1f:63:be:d9:4f:ff:89:11:ba:56:0b:01:
05:97:7f:af:5a:9e:3d:ac:f4:f3:b5:92:82:56:4c:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C4:20:86:B1:7F:76:C6:4F:C9:6F:6B:BD:0B:40:33:80:1B:FE:DC
X509v3 Authority Key Identifier:
keyid:5A:68:B8:8E:02:7E:5A:12:DC:69:EA:EA:AC:20:11:ED:1D:28:25:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/85tAm5nyLLvSrUdgRt44TPY5vR9qTbyzFMRDUaTVNuFW/1/5A68B88E027E5A12DC69EAEAAC2011ED1D2825A2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A68B88E027E5A12DC69EAEAAC2011ED1D2825A2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/85tAm5nyLLvSrUdgRt44TPY5vR9qTbyzFMRDUaTVNuFW/1/323830343a386165303a3a2f33322d3332203d3e203631363130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8ae0::/32
Signature Algorithm: sha256WithRSAEncryption
84:98:72:fb:40:61:0b:8b:92:af:4f:ab:f2:29:a4:a0:8f:69:
7c:7c:f9:39:4b:34:52:15:e3:80:94:02:54:7e:25:51:98:ba:
22:f2:27:1c:1d:a2:35:2c:85:e8:7f:c3:e9:88:20:4f:bc:83:
d1:c3:90:30:70:b8:93:17:55:24:19:bf:33:19:3d:c3:cf:d1:
3a:f5:12:50:87:17:34:7b:4a:68:b7:91:40:5a:64:88:4b:ab:
f7:71:6c:83:bb:9a:4f:81:41:67:6d:3a:9d:14:0b:1f:a1:07:
eb:34:86:bf:7a:16:42:c5:63:dc:1b:ed:a3:f5:92:00:97:14:
78:60:7e:9c:a2:41:07:69:95:ff:ea:74:86:fd:8c:35:fd:01:
80:32:00:8d:69:9a:9a:f0:6d:eb:f6:86:30:02:8b:78:0a:67:
68:5c:42:ed:1f:d9:5b:1b:a8:82:63:7c:7a:b8:56:92:af:23:
52:ad:2a:64:41:63:72:28:19:51:de:e3:c6:a7:85:83:43:33:
50:93:95:48:ec:e8:fa:b9:1f:3b:eb:2a:d2:64:e2:70:bb:ed:
23:70:a5:07:02:f4:c7:a5:a3:30:79:6c:fe:b0:7e:87:3f:08:
ea:82:04:15:49:6b:2b:b1:87:8d:6c:88:ae:d0:e7:be:d2:9b:
45:63:4c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:54:12 2025 by rpki-client