Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e36362e3139322e302f32322d3232203d3e20323632353033.roa
File: 3137372e36362e3139322e302f32322d3232203d3e20323632353033.roa (raw, json)
Hash identifier: m+bGn7SkHJRAnKazOvYBGTREkGfwHulFWwaJiiVRYbs=
Subject key identifier: F8:54:B4:66:53:94:BD:DB:90:E8:26:AE:FB:94:EC:AA:36:0A:9B:12
Certificate issuer: /CN=A5A5E563B461C001EA666874188010075B6CA70D
Certificate serial: 43BFBCB371CDA209448BA7B4609B0D0A12C2D4AE
Authority key identifier: A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e36362e3139322e302f32322d3232203d3e20323632353033.roa
Signing time: Sun 05 Jan 2025 18:58:45 +0000
ROA not before: Sun 05 Jan 2025 18:53:45 +0000
ROA not after: Sun 04 Jan 2026 18:58:45 +0000
asID: 262503
IP address blocks: 177.66.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:bf:bc:b3:71:cd:a2:09:44:8b:a7:b4:60:9b:0d:0a:12:c2:d4:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A5E563B461C001EA666874188010075B6CA70D
Validity
Not Before: Jan 5 18:53:45 2025 GMT
Not After : Jan 4 18:58:45 2026 GMT
Subject: CN=F854B4665394BDDB90E826AEFB94ECAA360A9B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:22:c7:c5:e5:96:4a:41:c3:cc:af:3d:80:
e7:c0:d8:d2:1d:5a:a1:77:5d:72:ef:ab:57:ec:36:
6f:f3:49:52:13:c7:88:8e:4d:39:8f:90:fc:87:62:
17:21:6f:c5:dd:87:2f:50:fc:b7:1d:4e:29:03:46:
3f:52:05:a0:92:9a:ed:8e:05:43:14:f4:85:2c:a4:
38:44:c7:3b:a8:2c:21:cb:c5:eb:d1:89:17:86:e8:
02:70:c9:97:94:74:63:2f:af:06:50:96:2e:f6:5f:
2b:6c:7f:b0:8e:4a:d3:cd:f7:b7:64:0d:3d:53:d0:
dd:8b:4b:b3:de:e9:d8:89:d9:0a:07:52:ab:d1:8a:
25:bf:fb:9d:6d:51:5a:54:91:7f:41:a2:72:88:85:
83:53:8f:b5:e1:dc:6d:99:bd:04:5a:7c:77:2d:b8:
a4:bc:67:85:0c:c3:61:28:0c:9c:03:aa:d6:f5:8e:
c1:57:3c:ad:72:46:f0:f0:71:10:90:0c:88:db:78:
65:1b:00:ce:8b:10:ce:ee:b1:5d:55:73:cb:9d:89:
03:8b:05:09:3f:4b:85:d1:04:e3:33:90:6c:45:2f:
aa:4e:7c:db:d0:0c:46:94:47:18:05:2a:22:14:19:
f4:fe:65:ad:a6:6a:ac:c7:7f:75:e0:8e:a4:bf:a1:
99:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:54:B4:66:53:94:BD:DB:90:E8:26:AE:FB:94:EC:AA:36:0A:9B:12
X509v3 Authority Key Identifier:
keyid:A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/A5A5E563B461C001EA666874188010075B6CA70D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e36362e3139322e302f32322d3232203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.66.192.0/22
Signature Algorithm: sha256WithRSAEncryption
64:01:be:3c:15:fd:b7:64:ed:9b:ef:e1:db:e9:60:b0:f4:25:
d9:0f:46:ef:05:45:b7:6b:d6:52:09:fb:a1:6d:bb:da:ea:88:
38:9a:85:58:59:97:a7:56:bf:b0:78:31:83:e0:56:9e:e0:09:
f5:f6:ed:9e:5f:75:05:ec:1e:c6:ac:76:67:a9:3b:f7:8d:8f:
a5:bd:f9:c3:7d:9a:41:8e:79:81:d7:35:3a:fa:dc:97:8e:6a:
6b:d2:2c:47:6a:e4:74:17:28:6e:98:02:5e:09:3d:e8:44:60:
00:0c:8b:95:be:c8:78:ea:21:19:21:57:fb:7d:49:a8:82:96:
28:f4:24:9b:4a:35:50:3f:00:09:9a:c3:05:46:37:44:fe:60:
22:ed:0e:9d:de:dd:a7:29:82:11:32:4d:e5:50:4b:36:22:60:
88:a6:b1:f5:99:54:bd:50:38:69:ca:ed:95:54:e5:16:9a:0b:
b2:80:db:1a:56:f0:a8:13:bb:a9:91:f8:38:55:aa:e1:ae:02:
5a:3e:7a:a4:2f:b3:1f:e7:57:dd:11:6c:d5:80:2a:14:6a:ec:
eb:8f:e5:67:f1:28:79:bd:0e:4e:fa:98:85:7e:58:f2:bb:db:
10:d2:de:63:aa:77:8d:68:3d:2a:88:ef:50:8e:42:95:bc:c5:
91:02:5f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 20:17:36 2025 by rpki-client