Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/3230302e3133322e3137362e302f32302d3230203d3e20323638373434.roa
File: 3230302e3133322e3137362e302f32302d3230203d3e20323638373434.roa (raw, json)
Hash identifier: 5iX0hiQM4IyUXIjwA/mncQhuuY9/FnIZoolNjzM1wVs=
Subject key identifier: A5:76:67:0D:4B:99:13:45:70:D2:8E:D2:F6:85:22:DD:3D:B0:52:EE
Certificate issuer: /CN=D54C376960A26972A0B767BDA084048DFFE3673E
Certificate serial: 3ADA662299FE6E232FF7B81FEE6137FD7A5938EB
Authority key identifier: D5:4C:37:69:60:A2:69:72:A0:B7:67:BD:A0:84:04:8D:FF:E3:67:3E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D54C376960A26972A0B767BDA084048DFFE3673E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/3230302e3133322e3137362e302f32302d3230203d3e20323638373434.roa
Signing time: Wed 05 Mar 2025 19:00:02 +0000
ROA not before: Wed 05 Mar 2025 18:55:02 +0000
ROA not after: Wed 04 Mar 2026 19:00:02 +0000
asID: 268744
IP address blocks: 200.132.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:da:66:22:99:fe:6e:23:2f:f7:b8:1f:ee:61:37:fd:7a:59:38:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D54C376960A26972A0B767BDA084048DFFE3673E
Validity
Not Before: Mar 5 18:55:02 2025 GMT
Not After : Mar 4 19:00:02 2026 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:1d:e5:e7:72:95:07:41:cc:59:50:2f:8e:
b6:e7:fc:bc:50:23:a5:07:65:21:be:32:8f:c9:bb:
b6:f8:8e:63:69:b3:19:6f:61:ce:51:6d:18:c5:1f:
bd:14:73:eb:82:f1:ff:08:0d:58:d8:78:f4:61:c9:
b4:cb:ff:ed:fa:a9:74:95:a9:3d:73:10:68:67:5d:
21:b2:ad:a5:9e:ae:66:4c:25:49:51:1b:72:88:ac:
ad:fe:25:b4:16:fc:2f:15:94:4a:83:66:f8:50:aa:
5f:65:01:5b:2f:e7:7c:1e:1d:1e:b9:8e:9b:54:c5:
ce:e9:85:1a:0f:41:56:3f:0a:6f:47:1b:8c:11:e7:
46:60:d4:5f:cd:dd:db:02:8d:35:f4:36:fa:61:9b:
f7:5f:e4:f7:f0:6a:c3:5a:17:c7:fb:ee:a9:05:f2:
ae:f0:ff:bc:42:89:6f:f3:54:18:0c:19:30:80:39:
66:b9:c6:17:18:7c:99:f4:ad:9f:d4:27:c0:e1:99:
a7:d6:a8:0e:02:1a:a4:c2:47:ea:3f:48:98:29:eb:
59:35:65:83:25:5e:f5:d1:f3:80:51:aa:a8:a5:ff:
16:e8:2e:3a:7c:d7:c4:2e:96:70:e4:6d:5b:03:66:
f2:a8:48:96:23:4b:dd:27:31:7c:68:a9:49:d1:4f:
c1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:76:67:0D:4B:99:13:45:70:D2:8E:D2:F6:85:22:DD:3D:B0:52:EE
X509v3 Authority Key Identifier:
keyid:D5:4C:37:69:60:A2:69:72:A0:B7:67:BD:A0:84:04:8D:FF:E3:67:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/D54C376960A26972A0B767BDA084048DFFE3673E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D54C376960A26972A0B767BDA084048DFFE3673E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eb4AGjfNY9zd7tBmwhTXLTJyFFAFzUFqPgeHUCN1Swa/1/3230302e3133322e3137362e302f32302d3230203d3e20323638373434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.132.176.0/20
Signature Algorithm: sha256WithRSAEncryption
57:23:b8:3d:e3:f3:0f:14:f3:f1:d3:45:38:9e:3b:cd:ac:84:
9d:e8:54:7d:cb:1e:88:0e:7c:69:d5:ee:86:e5:3a:d4:93:e3:
80:6a:44:ca:a9:ed:98:90:99:7f:da:a3:87:70:6c:a1:08:e3:
5a:59:85:33:df:9d:62:a6:cc:5c:58:74:77:1a:17:05:ef:29:
12:f0:90:60:ca:7f:43:7f:7b:aa:10:5c:76:6b:38:f5:48:d2:
49:40:2a:fa:dc:06:51:d0:4c:73:24:43:e9:ae:21:d3:af:fa:
9c:7e:cd:d2:0c:96:cc:5d:18:50:61:e2:7a:59:0d:7c:a5:d6:
9b:54:c3:12:04:d2:14:e7:a5:1e:4a:1e:53:98:ac:ff:d4:a1:
f9:e2:90:26:ad:51:cc:65:98:9d:00:a1:d7:42:0f:5b:64:8f:
c5:ab:84:80:bb:bd:40:ac:99:1c:da:29:e2:ac:00:c1:4e:54:
63:7b:c4:be:ba:d7:b7:5d:d7:15:8b:c5:c3:d5:20:66:53:7d:
9b:65:d3:7f:3b:84:c9:7d:65:bc:53:10:a7:04:22:c7:0d:f6:
e1:c8:a5:e6:d7:6f:c3:e6:2f:8d:a6:57:84:7a:23:2e:c6:9a:
ec:08:8e:36:65:65:ad:f8:a1:91:59:a1:1e:29:52:9a:5b:de:
2c:b8:62:2d
-----BEGIN CERTIFICATE-----
MIIHRTCCBi2gAwIBAgIUOtpmIpn+biMv97gf7mE3/XpZOOswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDU0QzM3Njk2MEEyNjk3MkEwQjc2N0JEQTA4NDA0OERG
RkUzNjczRTAeFw0yNTAzMDUxODU1MDJaFw0yNjAzMDQxOTAwMDJaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQzI4NjFERTVFNzcyOTUwNzQx
Q0M1OTUwMkY4RUI2RTdGQ0JDNTAyM0E1MDc2NTIxQkUzMjhGQzlCQkI2Rjg4RTYz
NjlCMzE5NkY2MUNFNTE2RDE4QzUxRkJEMTQ3M0VCODJGMUZGMDgwRDU4RDg3OEY0
NjFDOUI0Q0JGRkVERkFBOTc0OTVBOTNENzMxMDY4Njc1RDIxQjJBREE1OUVBRTY2
NEMyNTQ5NTExQjcyODhBQ0FERkUyNUI0MTZGQzJGMTU5NDRBODM2NkY4NTBBQTVG
NjUwMTVCMkZFNzdDMUUxRDFFQjk4RTlCNTRDNUNFRTk4NTFBMEY0MTU2M0YwQTZG
NDcxQjhDMTFFNzQ2NjBENDVGQ0RERERCMDI4RDM1RjQzNkZBNjE5QkY3NUZFNEY3
RjA2QUMzNUExN0M3RkJFRUE5MDVGMkFFRjBGRkJDNDI4OTZGRjM1NDE4MEMxOTMw
ODAzOTY2QjlDNjE3MTg3Qzk5RjRBRDlGRDQyN0MwRTE5OUE3RDZBODBFMDIxQUE0
QzI0N0VBM0Y0ODk4MjlFQjU5MzU2NTgzMjU1RUY1RDFGMzgwNTFBQUE4QTVGRjE2
RTgyRTNBN0NEN0M0MkU5NjcwRTQ2RDVCMDM2NkYyQTg0ODk2MjM0QkREMjczMTdD
NjhBOTQ5RDE0RkMxQjcwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAwoYd5edylQdBzFlQL4625/y8UCOlB2UhvjKPybu2+I5jabMZb2HO
UW0YxR+9FHPrgvH/CA1Y2Hj0Ycm0y//t+ql0lak9cxBoZ10hsq2lnq5mTCVJURty
iKyt/iW0FvwvFZRKg2b4UKpfZQFbL+d8Hh0euY6bVMXO6YUaD0FWPwpvRxuMEedG
YNRfzd3bAo019Db6YZv3X+T38GrDWhfH++6pBfKu8P+8Qolv81QYDBkwgDlmucYX
GHyZ9K2f1CfA4Zmn1qgOAhqkwkfqP0iYKetZNWWDJV710fOAUaqopf8W6C46fNfE
LpZw5G1bA2byqEiWI0vdJzF8aKlJ0U/BtwIDAQABo4ICUzCCAk8wHQYDVR0OBBYE
FKV2Zw1LmRNFcNKO0vaFIt09sFLuMB8GA1UdIwQYMBaAFNVMN2lgomlyoLdnvaCE
BI3/42c+MA4GA1UdDwEB/wQEAwIHgDCBlAYDVR0fBIGMMIGJMIGGoIGDoIGAhn5y
c3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvLzhFYjRBR2pmTlk5emQ3
dEJtd2hUWExUSnlGRkFGelVGcVBnZUhVQ04xU3dhLzEvRDU0QzM3Njk2MEEyNjk3
MkEwQjc2N0JEQTA4NDA0OERGRkUzNjczRS5jcmwweAYIKwYBBQUHAQEEbDBqMGgG
CCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBvL25p
Y2JyX3JlcG8vMS9ENTRDMzc2OTYwQTI2OTcyQTBCNzY3QkRBMDg0MDQ4REZGRTM2
NzNFLmNlcjCBsAYIKwYBBQUHAQsEgaMwgaAwgZ0GCCsGAQUFBzALhoGQcnN5bmM6
Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby84RWI0QUdqZk5ZOXpkN3RCbXdo
VFhMVEp5RkZBRnpVRnFQZ2VIVUNOMVN3YS8xLzMyMzAzMDJlMzEzMzMyMmUzMTM3
MzYyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzMjM2MzgzNzM0MzQucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BATIhLAwDQYJKoZIhvcNAQELBQADggEBAFcjuD3j8w8U8/HTRTieO82shJ3oVH3L
HogOfGnV7oblOtST44BqRMqp7ZiQmX/ao4dwbKEI41pZhTPfnWKmzFxYdHcaFwXv
KRLwkGDKf0N/e6oQXHZrOPVI0klAKvrcBlHQTHMkQ+muIdOv+px+zdIMlsxdGFBh
4npZDXyl1ptUwxIE0hTnpR5KHlOYrP/UofnikCatUcxlmJ0AoddCD1tkj8WrhIC7
vUCsmRzaKeKsAMFOVGN7xL6617dd1xWLxcPVIGZTfZtl0387hMl9ZbxTEKcEIscN
9uHIpebXb8PmL42mV4R6Iy7GmuwIjjZlZa34oZFZoR4pUppb3iy4Yi0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:56:09 2025 by rpki-client