Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e37312e302f32342d3234203d3e20323637333633.roa
File: 34352e3233342e37312e302f32342d3234203d3e20323637333633.roa (raw, json)
Hash identifier: 2GQF4kcygiKfAGZjZfD8fgh6e+FtsR8xTpG+o5Nzm+w=
Subject key identifier: BB:D1:DC:56:8E:B9:0F:D6:75:DA:A2:93:3D:ED:49:FF:5D:5F:65:4C
Certificate issuer: /CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA
Certificate serial: 7FFE2B6F290688566393CB312476A7E3590BB720
Authority key identifier: D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e37312e302f32342d3234203d3e20323637333633.roa
Signing time: Thu 06 Mar 2025 13:54:55 +0000
ROA not before: Thu 06 Mar 2025 13:49:55 +0000
ROA not after: Thu 05 Mar 2026 13:54:55 +0000
asID: 267363
IP address blocks: 45.234.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:fe:2b:6f:29:06:88:56:63:93:cb:31:24:76:a7:e3:59:0b:b7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA
Validity
Not Before: Mar 6 13:49:55 2025 GMT
Not After : Mar 5 13:54:55 2026 GMT
Subject: CN=BBD1DC568EB90FD675DAA2933DED49FF5D5F654C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:da:85:a3:cb:d8:2c:7a:5d:22:97:d7:b1:0b:
e9:57:26:2b:b0:ca:4f:9a:8b:43:f8:0c:ac:26:75:
d6:03:6e:bb:c1:b0:ac:41:25:69:6e:91:55:f0:4d:
5b:44:42:d8:f5:1c:f7:78:4c:47:39:c7:76:39:4c:
9e:63:6f:48:0c:af:64:68:ca:0a:7e:5b:d9:dd:e4:
31:98:51:85:30:a0:90:f5:0e:b3:ad:3c:d1:4b:44:
d7:7e:1c:eb:41:7d:80:55:51:73:22:56:11:1d:58:
c2:54:51:d0:58:45:49:97:3a:81:e8:b5:63:ad:67:
62:f5:19:b8:b0:f8:c9:d2:dd:e6:58:c2:70:da:6a:
dc:1d:7c:f1:38:77:79:4a:03:14:bf:24:e8:f8:84:
7a:55:e7:f9:37:9f:6e:bf:eb:a7:75:fd:ca:ce:08:
e7:8b:a5:76:b2:12:4d:47:67:50:35:8c:b9:0c:0c:
f3:3a:f9:05:79:d3:e8:94:6e:76:4e:3a:75:0b:a0:
14:c8:cd:96:70:3f:bd:9e:19:8e:f3:7a:70:7f:dd:
f4:29:1a:20:c6:49:9a:5a:0c:7a:73:6f:d5:57:1a:
06:1e:28:10:87:4e:fa:53:42:46:8d:ed:5f:f5:50:
de:2c:aa:e8:13:5a:8b:2a:3c:71:99:62:ef:69:d8:
2a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D1:DC:56:8E:B9:0F:D6:75:DA:A2:93:3D:ED:49:FF:5D:5F:65:4C
X509v3 Authority Key Identifier:
keyid:D7:C6:5B:91:75:A8:C5:5D:D1:BE:8B:5D:6F:51:15:2D:72:C5:05:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7C65B9175A8C55DD1BE8B5D6F51152D72C505AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/86E3YjHp4mq3thohga9eZj2FjYEAB1btzuUVo1Cepdaw/1/34352e3233342e37312e302f32342d3234203d3e20323637333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.234.71.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:68:8e:ba:b8:f9:1e:0e:e4:cf:df:ad:87:bf:8a:88:aa:18:
2f:b8:21:6b:81:ab:37:b0:de:d9:c3:21:5b:72:5b:f6:df:69:
d7:a4:c2:a9:cd:8a:58:44:21:7f:f3:9f:9c:95:ad:84:50:43:
a3:eb:5d:a3:f5:d8:74:d7:c6:c6:6d:e1:c5:b2:7a:a9:90:92:
df:34:53:e9:22:0a:91:30:e5:5e:86:ef:13:11:4b:25:96:23:
26:80:ea:b7:a5:85:5e:c1:25:0b:b2:ab:4c:19:0c:60:ed:e0:
b4:2c:f0:86:2c:e8:b8:bb:b4:2a:5d:d5:ee:27:90:2f:bf:90:
95:98:9b:c2:c4:f2:fe:b7:3f:2b:6d:df:f1:2a:83:c9:47:e5:
3d:ec:5f:81:1a:9f:21:15:34:b2:b4:47:40:67:5f:96:35:8d:
03:0d:0b:f3:6c:3a:15:65:e8:05:c0:c4:d0:42:be:9c:12:40:
54:6b:e4:c9:8c:1c:17:56:35:71:59:29:8f:92:7e:ac:5d:85:
09:73:e1:f9:df:08:a2:b8:65:2c:10:35:bd:5c:df:14:f5:dd:
6f:96:c1:22:05:b5:1e:1e:b7:b2:44:b5:3d:db:6d:d8:5c:1e:
78:9f:ba:e6:c1:ec:81:a8:f7:ad:92:00:79:1c:d1:c1:94:71:
44:2c:14:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:09:58 2025 by rpki-client