Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133372e302f32342d3234203d3e20323635303431.roa
File: 3137302e3135302e3133372e302f32342d3234203d3e20323635303431.roa (raw, json)
Hash identifier: d6oGku83gjHOs4tK0JTPfqz/BnrJWnp1yKLT4S8LL1w=
Subject key identifier: 24:04:DD:D0:68:3E:85:6A:F2:AA:8E:94:03:C4:76:6F:6C:31:C1:FB
Certificate issuer: /CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Certificate serial: 542238ADB867052C7E14543169216A2356579898
Authority key identifier: A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133372e302f32342d3234203d3e20323635303431.roa
Signing time: Thu 06 Mar 2025 16:52:49 +0000
ROA not before: Thu 06 Mar 2025 16:47:49 +0000
ROA not after: Thu 05 Mar 2026 16:52:49 +0000
asID: 265041
IP address blocks: 170.150.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.crl
rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 07:59:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:22:38:ad:b8:67:05:2c:7e:14:54:31:69:21:6a:23:56:57:98:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Validity
Not Before: Mar 6 16:47:49 2025 GMT
Not After : Mar 5 16:52:49 2026 GMT
Subject: CN=2404DDD0683E856AF2AA8E9403C4766F6C31C1FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:00:55:2b:a9:b0:00:e0:a2:9c:0e:6a:fe:de:
47:06:79:fc:0a:7b:6c:6c:59:4f:25:86:c6:f3:2b:
6b:b8:4a:95:d4:23:7c:72:25:37:d7:f6:02:0e:c0:
45:a1:a7:24:8d:a4:68:de:e7:ab:51:53:7c:38:e8:
34:7c:f5:1e:91:9e:d3:f7:00:83:e2:b6:a4:68:0a:
02:f3:37:49:e9:ba:94:d5:8b:fa:86:8f:74:e7:58:
70:cb:d6:6e:48:a5:c8:5a:fe:92:b9:7b:c6:54:04:
d6:1d:4b:82:b6:31:c8:87:48:c8:a1:02:92:8c:35:
4d:7a:63:e8:46:fa:c3:62:37:9c:2a:d9:1f:48:d7:
1a:63:67:3f:c9:a2:fe:0d:09:d6:7b:c4:8d:dc:65:
5c:5f:b7:27:7a:35:f2:9a:ad:33:ea:51:38:ee:a3:
7a:f6:ec:6f:b2:07:e6:9d:d2:c8:89:a7:b6:b8:42:
a5:f9:78:f7:23:04:5a:2a:f6:04:07:8f:f9:86:b7:
78:34:8c:ba:dd:f1:36:59:99:65:fe:8e:fe:c5:cd:
03:32:31:00:da:11:68:60:0b:fd:1d:e9:e6:0e:d7:
10:9c:24:c9:0d:aa:a7:b3:b4:66:40:bc:b5:94:73:
be:6a:5d:0b:9d:b4:23:44:3c:90:ce:b2:ef:0f:dd:
2f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:04:DD:D0:68:3E:85:6A:F2:AA:8E:94:03:C4:76:6F:6C:31:C1:FB
X509v3 Authority Key Identifier:
keyid:A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133372e302f32342d3234203d3e20323635303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.137.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:0f:b0:95:37:e7:d6:fe:89:ca:16:d9:6c:c6:21:ef:c5:23:
14:cd:04:77:b4:d6:ca:f0:f9:8e:ba:4a:7a:3c:09:86:1b:bc:
21:e9:92:13:19:9b:4e:15:e6:8c:bd:6b:22:c2:35:c2:43:a7:
24:a6:8e:ca:33:3e:90:45:0f:1a:c9:ca:0c:0c:b9:fc:98:cb:
3a:be:71:dd:ca:6c:a7:ff:74:aa:c9:2a:2f:50:ab:a4:ee:b5:
81:2d:2e:05:46:e2:64:c1:5a:c1:71:8e:15:ea:36:19:b6:85:
e1:25:8e:5f:08:03:34:26:b0:fb:52:33:ad:1a:5f:2d:61:f0:
8f:db:06:21:25:e3:08:cd:71:1d:03:4d:9a:4d:95:45:96:8e:
0a:c5:aa:80:6d:71:4a:eb:aa:49:47:e9:e0:c2:b0:3a:a9:74:
75:57:40:df:a0:40:5b:18:8f:5b:a0:45:ed:4c:cd:c5:e8:74:
0a:59:7e:b6:d6:57:ed:ba:22:66:74:ec:c2:61:b5:15:23:23:
3a:ee:86:df:e7:01:57:f9:80:0c:6f:c1:16:e6:07:d1:df:13:
6b:96:15:e8:08:25:7c:7b:ae:28:2a:eb:53:a3:e6:c4:a5:6b:
28:98:34:bd:1f:7e:07:8a:6f:25:6c:2c:98:b1:57:c1:dd:77:
50:f4:9c:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:23:01 2025 by rpki-client