Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3136382e302f32322d3232203d3e20323632353033.roa
File: 3136372e3234392e3136382e302f32322d3232203d3e20323632353033.roa (raw, json)
Hash identifier: x00g1j0tvrG/uKw9SUhpbm9YamaF399w8cdmYj/hZlY=
Subject key identifier: DF:62:C2:92:92:AC:8B:7C:89:3F:CD:B1:F0:42:0A:0F:07:73:38:FF
Certificate issuer: /CN=A5A5E563B461C001EA666874188010075B6CA70D
Certificate serial: 722B62F3B97A9AC60378DEBC6705CCCDE556F6D5
Authority key identifier: A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3136382e302f32322d3232203d3e20323632353033.roa
Signing time: Sun 05 Jan 2025 18:58:45 +0000
ROA not before: Sun 05 Jan 2025 18:53:45 +0000
ROA not after: Sun 04 Jan 2026 18:58:45 +0000
asID: 262503
IP address blocks: 167.249.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:2b:62:f3:b9:7a:9a:c6:03:78:de:bc:67:05:cc:cd:e5:56:f6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A5E563B461C001EA666874188010075B6CA70D
Validity
Not Before: Jan 5 18:53:45 2025 GMT
Not After : Jan 4 18:58:45 2026 GMT
Subject: CN=DF62C29292AC8B7C893FCDB1F0420A0F077338FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:7d:16:43:9f:82:37:39:1f:ce:2d:e1:50:9b:
ab:af:93:35:c4:82:d6:94:48:ac:11:85:c0:0e:17:
81:fe:25:83:11:f5:13:b7:d3:8f:d3:15:57:32:ba:
f3:4b:39:bd:0a:11:47:34:92:38:88:36:58:63:33:
54:c4:7b:6d:50:78:14:f3:c3:19:b9:6c:17:9f:b2:
2d:fd:4b:52:fb:ca:44:c5:4b:21:d0:76:0a:35:e1:
25:53:c4:f7:f9:14:7f:e8:f3:59:0f:7b:d3:c0:df:
b8:83:a6:e6:7a:d4:61:69:c1:9a:d7:df:af:0b:19:
15:9b:db:47:a9:d2:18:3b:a9:60:01:17:7d:a3:5d:
73:89:f5:8c:9b:28:0d:8f:a6:4c:7c:b1:6d:bd:0c:
5e:67:6d:12:7f:c5:0e:f8:e7:d3:b5:b7:9a:4b:02:
74:68:11:4a:6c:2f:4a:56:09:cc:e0:bd:06:97:b3:
3c:e1:a2:79:45:63:66:f8:44:24:00:7f:04:b0:64:
c5:eb:4c:7a:eb:65:11:14:e9:75:70:50:3d:cf:b4:
56:78:16:b0:b7:49:76:4d:4d:cc:15:dd:e1:14:37:
dd:41:41:59:f8:e6:4c:25:86:71:92:82:61:50:6d:
1e:8a:72:40:c8:85:b6:84:2d:5a:9a:9e:56:fe:bf:
b8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:62:C2:92:92:AC:8B:7C:89:3F:CD:B1:F0:42:0A:0F:07:73:38:FF
X509v3 Authority Key Identifier:
keyid:A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/A5A5E563B461C001EA666874188010075B6CA70D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3136382e302f32322d3232203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.168.0/22
Signature Algorithm: sha256WithRSAEncryption
01:eb:75:03:b2:63:ef:3d:09:49:d7:a7:a1:76:8f:7d:1a:13:
8c:c0:c7:ba:7a:bc:05:44:a3:a4:df:9e:1a:48:d7:3d:e6:02:
32:69:6c:c5:3d:c3:81:f9:b7:ce:82:44:f7:1b:b2:13:d6:32:
a6:9d:a2:1a:95:c8:e7:6e:79:72:8e:ec:52:e7:a4:ab:b6:9b:
36:7b:fd:c3:ce:a9:74:29:d5:c9:87:89:79:4e:45:c0:14:f2:
2e:7a:81:17:59:f5:aa:de:c6:9f:f6:a3:7f:45:6a:50:0d:ae:
6b:f0:4e:4f:16:93:6c:32:64:35:57:0d:5b:e2:08:fa:e2:aa:
b4:5b:60:41:a6:d0:83:26:72:1a:2d:dc:ea:eb:30:b7:fa:ad:
99:c0:b4:67:9f:c3:89:86:58:b5:30:72:ea:1e:f4:26:ac:85:
07:8f:63:56:fd:d6:37:52:1f:ef:a2:6a:18:4f:2d:bc:8d:22:
2b:17:13:1e:bf:b0:a8:b7:02:3b:2d:38:5d:45:6e:2e:d6:fb:
0b:7c:44:d4:71:9a:c7:f8:11:92:34:be:3d:92:e5:8f:b0:18:
02:bc:3b:fa:8d:13:c2:fc:2d:4d:6b:10:54:8b:df:4e:b9:37:
cf:cf:06:6d:f2:de:5c:31:6d:5a:43:c6:c1:32:c2:93:5f:da:
c0:55:fc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:42:17 2025 by rpki-client