Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133382e302f32332d3233203d3e20323635303431.roa
File: 3137302e3135302e3133382e302f32332d3233203d3e20323635303431.roa (raw, json)
Hash identifier: WPlAWdhfjbywAl2+hopbOu54j7BI28Q92d0uONebl20=
Subject key identifier: DB:62:C3:80:5F:F1:BD:46:2E:83:6D:72:AE:3C:07:12:23:5B:C5:4E
Certificate issuer: /CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Certificate serial: 1A3DFC11E13DF023DF4AD0546615A048CAB7A6D7
Authority key identifier: A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133382e302f32332d3233203d3e20323635303431.roa
Signing time: Thu 06 Mar 2025 16:52:49 +0000
ROA not before: Thu 06 Mar 2025 16:47:49 +0000
ROA not after: Thu 05 Mar 2026 16:52:49 +0000
asID: 265041
IP address blocks: 170.150.138.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:3d:fc:11:e1:3d:f0:23:df:4a:d0:54:66:15:a0:48:ca:b7:a6:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF
Validity
Not Before: Mar 6 16:47:49 2025 GMT
Not After : Mar 5 16:52:49 2026 GMT
Subject: CN=DB62C3805FF1BD462E836D72AE3C0712235BC54E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:dd:ef:9a:9c:ce:35:33:b6:f8:1c:77:f5:
21:76:29:fa:b6:4c:8a:95:ed:7d:02:43:14:c9:5d:
d8:be:18:dc:14:11:07:c5:03:9d:dc:5d:dd:91:28:
a2:d2:47:2d:c6:25:04:a5:96:1f:4f:ec:31:89:e6:
d9:46:01:be:1a:cc:24:7b:99:8b:d4:ae:6e:71:e8:
fa:72:be:4a:6e:04:98:47:b0:75:de:bf:a5:d9:c8:
e5:9a:c5:36:29:3d:fb:66:5e:3e:e1:29:5a:a0:05:
f3:a4:ae:2c:79:17:2e:06:e5:ab:1f:37:32:c4:57:
71:4d:5d:e7:8c:7a:55:4e:66:e9:8b:13:f8:61:c9:
e7:24:f4:f0:5a:15:29:50:b9:09:ce:d0:94:9a:09:
23:34:30:6b:f9:0b:ae:11:e4:a7:40:a0:cf:e6:c1:
d5:77:20:52:2e:69:aa:5c:b5:85:23:21:76:ac:bf:
7d:8e:5b:ad:d9:97:b9:b0:c5:b4:12:fb:b4:bb:ae:
d5:4f:ab:73:da:c9:95:91:c1:80:86:d5:2c:85:77:
66:2a:eb:f6:7e:8c:3c:7d:dd:d3:db:8c:6d:3c:a0:
17:d3:ce:a3:e5:c7:66:e2:e1:98:e5:e4:e8:8d:24:
7d:da:e1:64:4e:eb:6b:db:84:96:61:db:99:cb:93:
9b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:62:C3:80:5F:F1:BD:46:2E:83:6D:72:AE:3C:07:12:23:5B:C5:4E
X509v3 Authority Key Identifier:
keyid:A7:BC:3B:DB:C2:87:71:E2:3B:6A:3A:F8:FB:D3:66:4A:C4:C0:EC:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7BC3BDBC28771E23B6A3AF8FBD3664AC4C0ECBF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8BSpKFdDs59rRBXdeJxaWDsC73yZpPfcseczZSeiRAbN/1/3137302e3135302e3133382e302f32332d3233203d3e20323635303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.138.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:e4:e4:80:b2:59:95:70:6b:e9:52:01:b6:91:6c:55:15:b9:
05:8f:82:b6:10:63:a3:08:ff:db:ae:0a:28:6c:96:36:eb:8e:
77:23:5c:1c:d4:cd:57:e2:a9:98:e4:3c:55:ea:a4:86:53:c0:
78:cd:42:87:48:33:c7:c4:5b:d8:e8:29:89:18:fb:f0:58:e6:
25:95:71:28:fb:0b:9e:8a:d0:6a:43:a0:f7:07:1f:c9:c6:33:
11:f6:ed:23:ef:af:8e:fb:9b:1c:57:b7:c3:0c:66:87:57:f4:
3c:af:93:0d:63:a6:51:2c:8c:f6:8c:fa:ca:62:17:ce:d7:2b:
7d:20:54:dd:34:f5:f8:54:10:3e:98:a6:25:e8:78:d8:a6:ea:
f3:59:4a:6e:e8:81:fb:a0:4d:ee:3a:b1:6f:c5:38:08:14:75:
3c:35:41:50:ff:f7:74:fd:94:e6:46:00:8c:8a:b8:af:e8:6d:
6a:45:8e:4d:20:15:4e:08:10:86:ee:bf:39:68:00:a8:cc:ef:
03:29:6d:1b:80:fb:d0:79:0e:50:5b:96:d6:5d:88:91:d4:6b:
ca:1a:86:24:3a:57:9b:79:9b:e0:0e:9b:1f:f4:3e:13:25:df:
5a:e7:e7:1c:96:9a:72:28:88:31:3d:ee:eb:17:a4:03:fe:54:
84:86:6c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:48:01 2025 by rpki-client