Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133362e302f32332d3233203d3e20323635303431.roa
File: 3137302e3135302e3133362e302f32332d3233203d3e20323635303431.roa (raw, json)
Hash identifier: ajwbWK5y3RGLwkVrlH72SR6VIVPZmfRJTPO4DaVNI0c=
Subject key identifier: 0F:D9:FE:84:D7:60:39:D4:95:BE:3C:46:B0:83:AE:31:80:14:3B:09
Certificate issuer: /CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Certificate serial: 40C6BA87E1241C35642BB49DBC6503B288C16148
Authority key identifier: A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133362e302f32332d3233203d3e20323635303431.roa
Signing time: Thu 06 Mar 2025 16:52:48 +0000
ROA not before: Thu 06 Mar 2025 16:47:48 +0000
ROA not after: Thu 05 Mar 2026 16:52:48 +0000
asID: 265041
IP address blocks: 170.150.136.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:c6:ba:87:e1:24:1c:35:64:2b:b4:9d:bc:65:03:b2:88:c1:61:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Validity
Not Before: Mar 6 16:47:48 2025 GMT
Not After : Mar 5 16:52:48 2026 GMT
Subject: CN=0FD9FE84D76039D495BE3C46B083AE3180143B09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:74:b1:d9:a8:15:6f:ed:af:60:ae:34:30:e1:
75:61:74:a7:30:27:af:ba:a1:92:9d:f2:0c:12:1f:
6f:a0:32:ce:7d:9e:75:49:9b:88:7d:8e:9d:aa:c0:
80:bc:76:09:5d:ac:54:b3:f1:3e:0c:84:82:a5:3a:
10:7b:9b:00:d4:e6:ff:7c:5a:90:84:e6:41:43:0c:
76:27:22:ac:30:db:48:5f:97:95:b2:bb:09:fe:11:
01:c9:32:9a:7b:a7:06:1d:28:03:40:d4:df:a0:ac:
1d:f5:df:ea:27:17:84:38:af:5d:bc:9c:6e:01:d8:
94:0f:81:92:92:52:6c:33:95:d7:30:4e:c6:f4:94:
75:04:c4:cd:86:0a:49:ba:36:d3:fe:23:84:3a:15:
4d:7f:92:a9:5e:1f:d2:3b:af:90:11:7f:a4:fa:fc:
ca:f8:6c:4c:1e:1c:39:76:9e:c0:cb:05:4e:97:e8:
11:14:80:07:40:b6:8d:6d:c6:1e:db:94:7f:0a:e9:
c1:96:93:4f:1d:44:a7:fc:06:e4:b9:1b:24:74:1d:
4f:0b:51:2a:89:b0:1d:f5:8b:6c:68:ae:f8:77:e8:
94:59:4c:6f:08:a9:35:af:4f:7a:f3:d2:24:de:de:
c5:86:da:7d:c6:dc:9c:20:11:f0:6a:80:e8:c0:3e:
fa:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D9:FE:84:D7:60:39:D4:95:BE:3C:46:B0:83:AE:31:80:14:3B:09
X509v3 Authority Key Identifier:
keyid:A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133362e302f32332d3233203d3e20323635303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.136.0/23
Signature Algorithm: sha256WithRSAEncryption
27:46:8d:b5:6a:5b:65:71:97:77:93:ac:fc:d3:da:52:85:de:
ee:cd:20:d2:67:46:28:a7:f6:9b:36:a6:2b:48:3d:fc:6f:b3:
66:c1:69:6d:c6:95:24:97:f0:b5:73:45:d4:b0:93:8b:d9:e4:
aa:cf:0e:8f:07:fa:f4:91:0d:30:ee:57:5c:63:ca:cf:65:6c:
7c:6d:83:bc:5d:8a:81:2c:69:8d:f7:26:e0:72:34:41:a3:2a:
a1:c1:b4:5c:22:66:3b:0e:8f:b8:be:aa:c9:5a:52:be:73:4c:
56:d6:b6:87:12:ec:29:5c:24:ad:78:55:44:37:81:82:ec:4f:
f8:84:a9:f6:27:5d:ae:db:61:d1:90:fa:25:e1:cf:78:15:e2:
61:b5:53:9b:78:9a:b5:f4:88:6c:cb:ac:84:10:9c:32:25:11:
05:d8:bf:62:08:b2:97:99:5d:ca:1e:51:69:13:2b:49:d8:8f:
4e:6e:67:13:9a:b1:0c:e6:ee:f8:0e:48:3c:f9:6f:cb:be:6e:
0b:da:b0:39:a1:33:6e:a8:33:70:99:73:1d:ca:c5:b0:55:83:
78:64:94:a1:72:5a:b8:bf:43:4d:c2:ff:cc:c2:3f:a7:5e:a9:
66:8e:c5:ee:ef:79:54:33:63:9f:06:22:38:70:a7:be:35:34:
b2:ef:65:ff
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUQMa6h+EkHDVkK7SdvGUDsojBYUgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTdCQzNCREJDMjg3NzFFMjNCNkEzQUY4RkJEMzY2NEFD
NEMwRUNCRjAeFw0yNTAzMDYxNjQ3NDhaFw0yNjAzMDUxNjUyNDhaMDMxMTAvBgNV
BAMTKDBGRDlGRTg0RDc2MDM5RDQ5NUJFM0M0NkIwODNBRTMxODAxNDNCMDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkdLHZqBVv7a9grjQw4XVhdKcw
J6+6oZKd8gwSH2+gMs59nnVJm4h9jp2qwIC8dgldrFSz8T4MhIKlOhB7mwDU5v98
WpCE5kFDDHYnIqww20hfl5Wyuwn+EQHJMpp7pwYdKANA1N+grB313+onF4Q4r128
nG4B2JQPgZKSUmwzldcwTsb0lHUExM2GCkm6NtP+I4Q6FU1/kqleH9I7r5ARf6T6
/Mr4bEweHDl2nsDLBU6X6BEUgAdAto1txh7blH8K6cGWk08dRKf8BuS5GyR0HU8L
USqJsB31i2xorvh36JRZTG8IqTWvT3rz0iTe3sWG2n3G3JwgEfBqgOjAPvolAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUD9n+hNdgOdSVvjxGsIOuMYAUOwkwHwYDVR0j
BBgwFoAUp7w728KHceI7ajr4+9NmSsTA7L8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOEJTcEtGZERzNTlyUkJYZGVKeGFXRHNDNzN5WnBQZmNzZWN6WlNlaVJB
Yk4vMS9BN0JDM0JEQkMyODc3MUUyM0I2QTNBRjhGQkQzNjY0QUM0QzBFQ0JGLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E3QkMzQkRCQzI4NzcxRTIz
QjZBM0FGOEZCRDM2NjRBQzRDMEVDQkYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhCU3BLRmREczU5clJCWGRlSnhhV0RzQzczeVpwUGZjc2VjelpTZWlSQWJOLzEv
MzEzNzMwMmUzMTM1MzAyZTMxMzMzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy
MzYzNTMwMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAaqWiDANBgkqhkiG9w0BAQsFAAOCAQEAJ0aN
tWpbZXGXd5Os/NPaUoXe7s0g0mdGKKf2mzamK0g9/G+zZsFpbcaVJJfwtXNF1LCT
i9nkqs8Ojwf69JENMO5XXGPKz2VsfG2DvF2KgSxpjfcm4HI0QaMqocG0XCJmOw6P
uL6qyVpSvnNMVta2hxLsKVwkrXhVRDeBguxP+ISp9iddrtth0ZD6JeHPeBXiYbVT
m3iatfSIbMushBCcMiURBdi/Ygiyl5ldyh5RaRMrSdiPTm5nE5qxDObu+A5IPPlv
y75uC9qwOaEzbqgzcJlzHcrFsFWDeGSUoXJauL9DTcL/zMI/p16pZo7F7u95VDNj
nwYiOHCnvjU0su9l/w==
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:07:29 2025 by rpki-client