Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e302e3136382e302f32322d3234203d3e203238313436.roa
File: 3137302e302e3136382e302f32322d3234203d3e203238313436.roa (raw, json)
Hash identifier: kA88Gtjvi37dDqWSsfsU/dGdJC9LeVbDgdZr6XeDc84=
Subject key identifier: D4:60:21:63:31:95:CA:97:69:49:28:17:D8:3B:3D:81:1A:03:5E:0A
Certificate issuer: /CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Certificate serial: 45CB8B970F7F51ED5DC40B39A3E63A6F3E232017
Authority key identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e302e3136382e302f32322d3234203d3e203238313436.roa
Signing time: Fri 08 Nov 2024 18:27:55 +0000
ROA not before: Fri 08 Nov 2024 18:22:55 +0000
ROA not after: Fri 07 Nov 2025 18:27:55 +0000
asID: 28146
IP address blocks: 170.0.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:cb:8b:97:0f:7f:51:ed:5d:c4:0b:39:a3:e6:3a:6f:3e:23:20:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Validity
Not Before: Nov 8 18:22:55 2024 GMT
Not After : Nov 7 18:27:55 2025 GMT
Subject: CN=D46021633195CA9769492817D83B3D811A035E0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1b:e6:b9:18:ab:84:59:e5:fd:24:6a:ef:67:
2c:5a:83:91:0f:6c:bf:00:a0:a6:29:72:fb:17:cb:
ee:a1:d7:20:0d:82:89:54:35:18:a2:c6:24:44:54:
97:62:f8:71:0f:5a:59:15:47:18:c1:80:fe:8d:af:
f1:92:9b:1d:a8:9f:a7:ca:b3:ff:fc:e1:12:18:2c:
21:40:41:cb:48:76:4d:df:de:88:0a:2a:15:98:7d:
44:90:f5:36:3a:f1:36:14:2d:11:90:67:db:c9:37:
a7:75:19:06:49:05:8f:7f:48:37:cc:d9:7f:4d:c7:
4a:b5:4b:7a:db:d7:81:6f:a3:b4:9b:a1:71:d1:d9:
73:97:c2:df:e1:f8:07:71:1f:b8:3e:52:a9:78:5b:
67:91:ae:8b:9a:33:b2:57:1d:dd:4c:61:9b:eb:80:
6e:d9:5f:54:cd:4e:5d:45:be:63:07:dc:b8:c6:62:
0a:3e:6f:61:f6:7c:ad:a2:85:5f:43:03:b1:17:ba:
cb:86:89:79:27:26:30:c1:6a:66:68:6e:53:12:c8:
28:75:c1:01:22:a5:80:cc:63:a8:5b:e6:72:ab:ee:
7b:db:e5:c8:71:e1:7f:71:99:2b:ed:de:45:9d:14:
bd:01:b3:00:08:24:1e:cb:ae:b1:3b:69:c3:0a:98:
cc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:60:21:63:31:95:CA:97:69:49:28:17:D8:3B:3D:81:1A:03:5E:0A
X509v3 Authority Key Identifier:
keyid:C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e302e3136382e302f32322d3234203d3e203238313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.168.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:b0:cb:47:51:e9:d2:6c:2e:4f:0c:99:03:06:8c:34:1c:9b:
ad:e0:41:44:78:af:57:4c:50:0d:03:89:61:00:c2:66:2c:13:
ac:72:86:8f:6a:2e:1d:1c:cf:80:ae:a3:0a:23:34:d9:f0:57:
5f:52:c3:39:7b:86:e8:eb:e2:70:ba:fe:bd:18:1e:d1:81:ae:
d0:69:27:71:16:74:9e:ef:ff:c3:77:82:9f:dc:08:9b:23:17:
83:2e:e6:80:b1:f2:57:5c:a7:da:5f:46:6b:32:27:87:e2:04:
49:bc:a9:96:79:30:27:07:bc:d9:be:fb:1c:02:80:47:cb:ea:
ea:c8:9f:2a:5a:26:a4:27:92:40:48:38:dd:b0:07:7d:62:85:
5b:72:ae:32:2f:b7:5d:cd:16:86:dc:19:89:2c:38:aa:60:cf:
e0:23:9e:4a:27:08:44:e7:f5:85:73:18:0e:59:6f:82:b7:98:
11:79:a6:cd:2c:7d:2d:70:5a:82:48:61:ee:1a:23:1b:79:9a:
87:9c:84:9f:3d:97:19:80:36:b1:48:1c:ee:5f:c6:0a:ed:6a:
f5:95:a5:e2:0e:e0:b1:d5:8b:91:b8:9f:92:ba:f7:c2:7c:3b:
b4:69:1c:5b:61:74:c6:5a:a7:e0:96:fe:c8:0a:5f:d8:80:14:
93:c5:2e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:33:26 2025 by rpki-client