Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Dd2yafQEDRyLSnEhXwh6CmSYwBuJE5q35zKDVBmY5xw/1/3134332e3230382e3135322e302f32322d3234203d3e20323635313330.roa
File: 3134332e3230382e3135322e302f32322d3234203d3e20323635313330.roa (raw, json)
Hash identifier: 8zjq8Iyw7IcdW954UHmhXxqDwBFnJjLuRcKTBsL83FU=
Subject key identifier: 09:FA:C0:95:B9:2A:D9:5B:0D:11:91:EC:4E:C4:A6:0B:C9:71:21:5F
Certificate issuer: /CN=B4F02299A2EDE5BDF53F6DECAC529C29F6E92881
Certificate serial: 2BF54CA3096A0B5AAB027B4B5AEDF5E35E3FE316
Authority key identifier: B4:F0:22:99:A2:ED:E5:BD:F5:3F:6D:EC:AC:52:9C:29:F6:E9:28:81
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B4F02299A2EDE5BDF53F6DECAC529C29F6E92881.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Dd2yafQEDRyLSnEhXwh6CmSYwBuJE5q35zKDVBmY5xw/1/3134332e3230382e3135322e302f32322d3234203d3e20323635313330.roa
Signing time: Thu 06 Mar 2025 05:51:52 +0000
ROA not before: Thu 06 Mar 2025 05:46:52 +0000
ROA not after: Thu 05 Mar 2026 05:51:52 +0000
asID: 265130
IP address blocks: 143.208.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:f5:4c:a3:09:6a:0b:5a:ab:02:7b:4b:5a:ed:f5:e3:5e:3f:e3:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4F02299A2EDE5BDF53F6DECAC529C29F6E92881
Validity
Not Before: Mar 6 05:46:52 2025 GMT
Not After : Mar 5 05:51:52 2026 GMT
Subject: CN=09FAC095B92AD95B0D1191EC4EC4A60BC971215F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9c:0e:0c:9a:fc:c4:8b:5a:9d:bf:fd:d9:f4:
ef:58:4d:31:77:10:f5:02:dc:66:7f:d7:17:81:8c:
a2:3c:26:7a:2a:f1:d0:fa:72:83:20:64:75:5b:d5:
d8:43:e5:73:fa:37:de:03:12:ea:ad:00:be:c6:9e:
28:7d:e7:5e:3b:f3:ad:e4:89:7a:6f:4d:5a:59:96:
33:fc:c6:35:f9:23:e0:61:bd:e0:9f:42:1e:9b:16:
02:1a:b1:02:85:3d:12:71:9c:2d:2e:79:f4:be:e9:
f6:77:b8:9b:81:31:3b:82:0a:17:ca:77:aa:1c:6e:
68:5f:5e:f8:0e:04:e5:5a:95:9a:03:07:c0:09:af:
1d:b3:9f:5f:09:9e:5e:fd:55:cb:a0:f4:7f:db:ed:
8f:3d:7f:c3:9d:fe:c0:64:4f:7e:66:f4:dc:5d:4a:
0f:db:06:59:b2:13:46:3c:b6:0f:a2:2a:48:d1:90:
c5:59:ea:03:fe:38:77:ad:54:e7:9f:f3:67:c1:8f:
32:de:d2:31:a5:bf:73:48:af:17:c9:90:99:e9:f4:
04:4f:5c:1d:4c:0a:cc:65:25:98:6b:8a:c4:6c:c4:
73:83:eb:79:c8:eb:88:00:df:a7:7a:19:63:11:68:
04:a3:64:4c:c9:07:25:5f:dd:ba:cb:9e:c1:e2:a1:
25:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FA:C0:95:B9:2A:D9:5B:0D:11:91:EC:4E:C4:A6:0B:C9:71:21:5F
X509v3 Authority Key Identifier:
keyid:B4:F0:22:99:A2:ED:E5:BD:F5:3F:6D:EC:AC:52:9C:29:F6:E9:28:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Dd2yafQEDRyLSnEhXwh6CmSYwBuJE5q35zKDVBmY5xw/1/B4F02299A2EDE5BDF53F6DECAC529C29F6E92881.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B4F02299A2EDE5BDF53F6DECAC529C29F6E92881.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Dd2yafQEDRyLSnEhXwh6CmSYwBuJE5q35zKDVBmY5xw/1/3134332e3230382e3135322e302f32322d3234203d3e20323635313330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.208.152.0/22
Signature Algorithm: sha256WithRSAEncryption
75:44:5f:6c:89:31:00:66:cb:46:e3:2d:3d:0a:fc:8e:51:01:
c9:9b:50:dc:b1:88:af:9e:d5:cc:78:57:71:dc:3b:14:f6:4f:
a2:44:1c:e7:49:89:27:c4:d5:4c:aa:de:41:b7:00:d1:2b:1d:
36:bd:8d:e4:10:cf:11:2c:3d:0e:89:02:9e:6e:4d:cf:b4:57:
b8:5b:53:36:76:3b:3c:d5:c9:f4:0c:d4:d1:e8:f0:64:e9:20:
cd:2f:f0:23:f9:69:36:4a:b0:7c:a7:2f:21:62:94:d1:ff:48:
c2:ee:97:72:4e:85:dd:13:90:db:f5:09:43:87:53:2d:4f:45:
7a:4d:06:87:7d:98:14:13:ff:65:bd:a7:57:ad:fa:92:4e:6f:
72:9c:0b:df:d7:53:d3:6f:c3:59:fc:b2:88:ba:df:b8:19:3c:
4d:12:be:ff:f9:e5:1e:74:42:0f:97:77:cb:af:31:c2:7c:e8:
cc:b0:4e:40:43:03:4c:36:b0:cb:a2:7d:c8:62:03:25:bf:e1:
2c:ae:4e:21:0c:7f:b4:a8:b4:f2:c7:ff:d0:16:6a:6d:29:c1:
24:17:eb:f1:96:16:1e:e5:5a:a5:eb:1b:54:4d:e5:05:62:62:
c0:00:e0:b5:fc:96:dd:81:51:ae:f9:13:e8:7a:61:af:95:05:
a0:ad:8f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 15:06:08 2025 by rpki-client