Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3137302e302f32342d3234203d3e20323632353033.roa
File: 3136372e3234392e3137302e302f32342d3234203d3e20323632353033.roa (raw, json)
Hash identifier: aMpRb6HugsfvxX3J+T+7DxSWXv5yhFNCyeLRf+4xHlM=
Subject key identifier: 50:3C:9C:F1:D1:64:10:4C:6F:90:A1:80:02:47:F2:F1:9B:18:AB:EE
Certificate issuer: /CN=A5A5E563B461C001EA666874188010075B6CA70D
Certificate serial: 3EE478A7F17A8F00504A85ECD4D575B7595AFBA5
Authority key identifier: A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3137302e302f32342d3234203d3e20323632353033.roa
Signing time: Sun 05 Jan 2025 18:58:46 +0000
ROA not before: Sun 05 Jan 2025 18:53:46 +0000
ROA not after: Sun 04 Jan 2026 18:58:46 +0000
asID: 262503
IP address blocks: 167.249.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:e4:78:a7:f1:7a:8f:00:50:4a:85:ec:d4:d5:75:b7:59:5a:fb:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A5E563B461C001EA666874188010075B6CA70D
Validity
Not Before: Jan 5 18:53:46 2025 GMT
Not After : Jan 4 18:58:46 2026 GMT
Subject: CN=503C9CF1D164104C6F90A1800247F2F19B18ABEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ab:e0:02:45:60:51:a7:5a:5b:4b:f9:22:31:
ab:57:4e:3c:98:d1:a3:9f:20:b2:cc:17:27:5a:ee:
2b:ff:28:14:f0:aa:02:bd:be:7d:f2:89:9c:44:1b:
78:a0:70:67:21:df:8d:21:68:3b:e9:8e:d5:1a:1f:
db:21:96:3f:9b:50:d9:bf:17:42:6e:4c:47:27:3c:
fc:17:c7:13:d7:ba:95:26:59:ac:cd:81:74:fa:7e:
df:76:d4:3f:c1:d0:6b:e9:c3:f9:7a:4f:78:45:5f:
10:41:83:0e:a6:05:f6:0c:09:fc:58:2d:f2:b8:7b:
9a:d5:99:99:c7:83:5f:dc:20:13:50:6e:cf:cf:e3:
9b:fc:f1:00:c6:f5:19:fe:72:a9:39:44:54:be:91:
1a:c8:d8:81:3e:ef:9b:d2:30:0e:3d:d3:05:fc:9a:
54:1b:28:89:f3:23:1c:19:16:0b:5d:7e:2f:ee:95:
13:c0:d4:fa:e2:6b:1f:7e:df:22:18:29:08:64:9e:
c2:96:39:53:66:ed:d8:7c:35:31:dc:e6:cd:8a:97:
fe:ce:76:68:3f:40:79:f9:79:36:ca:16:12:67:ee:
de:6c:7d:d5:ba:ab:47:ce:54:8a:6d:2f:8b:9d:f7:
8f:5c:49:7a:15:fd:cb:f5:5b:8d:be:6f:ac:c8:b6:
38:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3C:9C:F1:D1:64:10:4C:6F:90:A1:80:02:47:F2:F1:9B:18:AB:EE
X509v3 Authority Key Identifier:
keyid:A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/A5A5E563B461C001EA666874188010075B6CA70D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3136372e3234392e3137302e302f32342d3234203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.170.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:2b:e0:01:8a:4f:b3:c7:d6:c7:af:44:70:9b:9a:e2:d7:6c:
de:e3:26:c8:2d:42:d4:57:c8:74:99:f6:fe:13:0f:43:83:b1:
11:1e:f7:d0:b8:ac:0f:40:0a:59:72:d7:4c:ec:bd:f3:29:e7:
06:ae:bb:6c:e3:5c:d8:2c:56:24:e3:fb:89:ae:59:06:de:2e:
cd:e6:c1:0a:45:83:df:dd:df:1f:12:8c:37:5a:aa:ab:59:fc:
41:bd:7f:f7:55:75:4c:be:bf:da:9e:b8:ef:91:d7:2c:11:6f:
7d:2c:b6:99:1d:c0:11:b0:af:ac:da:22:69:f8:2f:d0:97:59:
10:7f:fa:2e:6d:f6:73:96:1d:5d:31:17:73:21:ce:84:b3:24:
37:d2:9f:f3:12:29:93:96:98:dc:57:c8:58:ad:9f:77:3e:f3:
f7:b0:5d:d1:62:af:dd:f0:f9:34:aa:db:09:84:9e:96:af:e1:
15:7f:f3:41:d7:49:57:21:1c:6e:b7:26:a2:e1:e4:70:2c:c9:
57:77:ee:ca:20:42:6c:43:24:a7:71:2b:ef:b0:22:14:d5:af:
13:2d:58:bc:15:ba:eb:83:d2:e6:26:cc:4c:67:c0:02:fa:f6:
b4:5e:b8:3a:f9:01:92:19:8a:5a:01:4f:f0:6c:4f:ec:22:9b:
f4:88:48:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 14:30:26 2025 by rpki-client