Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e39312e35322e302f32322d3232203d3e20323632353033.roa
File: 3137372e39312e35322e302f32322d3232203d3e20323632353033.roa (raw, json)
Hash identifier: vwc3U8dnCUSAGA4pEWGE30YvnjFwSS5yOubMqMt6Hs4=
Subject key identifier: B5:09:A5:39:8D:3D:D6:E4:CE:AA:7E:3F:78:01:B8:B1:CE:90:6F:7B
Certificate issuer: /CN=A5A5E563B461C001EA666874188010075B6CA70D
Certificate serial: 08AC9B99D42E01FF0CFFE59D560E32BD43033ADF
Authority key identifier: A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e39312e35322e302f32322d3232203d3e20323632353033.roa
Signing time: Sun 05 Jan 2025 18:58:46 +0000
ROA not before: Sun 05 Jan 2025 18:53:46 +0000
ROA not after: Sun 04 Jan 2026 18:58:46 +0000
asID: 262503
IP address blocks: 177.91.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:ac:9b:99:d4:2e:01:ff:0c:ff:e5:9d:56:0e:32:bd:43:03:3a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A5E563B461C001EA666874188010075B6CA70D
Validity
Not Before: Jan 5 18:53:46 2025 GMT
Not After : Jan 4 18:58:46 2026 GMT
Subject: CN=B509A5398D3DD6E4CEAA7E3F7801B8B1CE906F7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:62:f6:bf:93:17:6f:82:0c:2d:b2:3b:c2:eb:
9f:8d:2c:86:8e:83:95:78:95:4b:26:78:90:70:17:
07:f5:ef:fd:1e:81:7c:05:57:0f:f1:2e:91:73:11:
56:a8:63:fd:75:d7:21:d8:09:5c:f2:75:5a:ca:28:
0d:c9:0a:ac:fb:99:0c:0d:81:7c:7b:1c:f3:39:2b:
85:b7:58:b8:b2:9b:80:1e:f1:41:53:e7:92:98:35:
9d:46:c1:2f:a3:f6:6a:da:83:58:7c:df:15:25:d3:
bb:80:fb:9b:7b:65:1d:76:b4:8c:ab:dd:26:94:69:
ac:4b:c8:21:97:50:e4:97:4c:dd:0e:f4:ac:1e:d3:
7a:cf:62:66:43:a8:34:69:e1:21:12:07:16:05:d4:
4f:30:d6:c3:d8:c0:ca:7c:80:75:63:8b:ea:0d:c7:
2e:9b:88:10:86:8e:ea:1b:eb:19:df:e8:56:8c:c2:
d1:f5:8e:4b:e5:ca:e2:d8:0f:80:1c:69:e4:dc:53:
4b:fe:ee:91:23:64:cc:81:b1:0b:3a:e3:d6:08:f0:
8d:a2:f1:50:0c:7b:06:48:43:82:c4:b4:12:72:4e:
54:d9:c8:1c:f5:bd:57:64:54:a2:09:14:9b:0b:7a:
5f:57:f3:7b:46:30:e8:34:92:a5:c9:31:bb:d5:58:
93:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:09:A5:39:8D:3D:D6:E4:CE:AA:7E:3F:78:01:B8:B1:CE:90:6F:7B
X509v3 Authority Key Identifier:
keyid:A5:A5:E5:63:B4:61:C0:01:EA:66:68:74:18:80:10:07:5B:6C:A7:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/A5A5E563B461C001EA666874188010075B6CA70D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A5A5E563B461C001EA666874188010075B6CA70D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/3137372e39312e35322e302f32322d3232203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.91.52.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:71:db:fb:23:87:a7:af:21:a5:43:80:bb:2e:35:37:cc:3e:
2e:63:3a:04:90:c2:e1:a1:a4:32:33:cc:ad:ad:65:5c:43:55:
d9:fb:04:8c:a6:67:be:05:bf:8c:f5:46:68:18:2e:a7:c2:30:
56:fd:e0:a0:8b:51:0d:28:9d:ce:b3:af:d3:93:87:79:9b:ec:
6b:fd:4d:c1:46:b5:bc:d5:a3:ec:c1:fb:da:28:fb:0e:0e:a8:
59:83:a3:33:4e:f7:37:4a:95:fd:2f:c2:41:ed:f3:eb:a7:a3:
0b:04:90:e6:63:87:d8:ae:b7:9a:92:89:83:cf:e2:da:59:f8:
23:6f:c3:d0:f9:b5:b7:8c:75:3f:91:5d:0a:c1:88:81:22:b1:
a1:71:10:92:51:39:e6:5c:2b:ba:2d:41:2f:42:72:c2:bd:b6:
14:1d:ef:e3:33:30:81:e3:f0:5a:40:2b:84:f9:83:6b:01:aa:
86:45:e7:57:42:da:b7:83:80:b8:7f:b9:91:c3:3f:c3:6e:81:
5d:9d:5b:3e:35:61:a3:d7:91:7d:c6:35:31:1b:9a:dd:0e:e0:
d8:7a:6b:2d:18:d8:0a:d7:3a:f9:69:0e:79:90:d8:8d:c8:52:
5c:8e:63:21:f6:9e:13:1d:1d:b2:9b:51:a5:0f:6e:a8:3f:58:
e8:f6:b0:f9
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUCKybmdQuAf8M/+WdVg4yvUMDOt8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTVBNUU1NjNCNDYxQzAwMUVBNjY2ODc0MTg4MDEwMDc1
QjZDQTcwRDAeFw0yNTAxMDUxODUzNDZaFw0yNjAxMDQxODU4NDZaMDMxMTAvBgNV
BAMTKEI1MDlBNTM5OEQzREQ2RTRDRUFBN0UzRjc4MDFCOEIxQ0U5MDZGN0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoYva/kxdvggwtsjvC65+NLIaO
g5V4lUsmeJBwFwf17/0egXwFVw/xLpFzEVaoY/111yHYCVzydVrKKA3JCqz7mQwN
gXx7HPM5K4W3WLiym4Ae8UFT55KYNZ1GwS+j9mrag1h83xUl07uA+5t7ZR12tIyr
3SaUaaxLyCGXUOSXTN0O9Kwe03rPYmZDqDRp4SESBxYF1E8w1sPYwMp8gHVji+oN
xy6biBCGjuob6xnf6FaMwtH1jkvlyuLYD4AcaeTcU0v+7pEjZMyBsQs649YI8I2i
8VAMewZIQ4LEtBJyTlTZyBz1vVdkVKIJFJsLel9X83tGMOg0kqXJMbvVWJO9AgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUtQmlOY091uTOqn4/eAG4sc6Qb3swHwYDVR0j
BBgwFoAUpaXlY7RhwAHqZmh0GIAQB1tspw0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOEVvNVFNbXF0ZGltNGp3bzVBdFR1UEprUWl6UGNtV1NtOWZvUnVmWU1G
a0YvMC9BNUE1RTU2M0I0NjFDMDAxRUE2NjY4NzQxODgwMTAwNzVCNkNBNzBELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E1QTVFNTYzQjQ2MUMwMDFF
QTY2Njg3NDE4ODAxMDA3NUI2Q0E3MEQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhFbzVRTW1xdGRpbTRqd281QXRUdVBKa1FpelBjbVdTbTlmb1J1ZllNRmtGLzAv
MzEzNzM3MmUzOTMxMmUzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjMy
MzUzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCsVs0MA0GCSqGSIb3DQEBCwUAA4IBAQArcdv7I4en
ryGlQ4C7LjU3zD4uYzoEkMLhoaQyM8ytrWVcQ1XZ+wSMpme+Bb+M9UZoGC6nwjBW
/eCgi1ENKJ3Os6/Tk4d5m+xr/U3BRrW81aPswfvaKPsODqhZg6MzTvc3SpX9L8JB
7fPrp6MLBJDmY4fYrreakomDz+LaWfgjb8PQ+bW3jHU/kV0KwYiBIrGhcRCSUTnm
XCu6LUEvQnLCvbYUHe/jMzCB4/BaQCuE+YNrAaqGRedXQtq3g4C4f7mRwz/DboFd
nVs+NWGj15F9xjUxG5rdDuDYemstGNgK1zr5aQ55kNiNyFJcjmMh9p4THR2ym1Gl
D26oP1jo9rD5
-----END CERTIFICATE-----
Generated at Tue Apr 8 13:46:23 2025 by rpki-client