Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e3234352e3231362e302f32322d3234203d3e203238313436.roa
File: 3137302e3234352e3231362e302f32322d3234203d3e203238313436.roa (raw, json)
Hash identifier: 3c4/oskp4aA6WLwgtBVLaxSLEJlFSAwIMK/beiMOhQs=
Subject key identifier: 6E:D4:80:B3:7E:8C:78:F2:56:F2:18:ED:02:5A:E8:64:30:01:A9:11
Certificate issuer: /CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Certificate serial: 2311EF256405F797EE52F2CEB63097F2BE9F26D0
Authority key identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e3234352e3231362e302f32322d3234203d3e203238313436.roa
Signing time: Fri 08 Nov 2024 18:28:46 +0000
ROA not before: Fri 08 Nov 2024 18:23:46 +0000
ROA not after: Fri 07 Nov 2025 18:28:46 +0000
asID: 28146
IP address blocks: 170.245.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 17:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:11:ef:25:64:05:f7:97:ee:52:f2:ce:b6:30:97:f2:be:9f:26:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Validity
Not Before: Nov 8 18:23:46 2024 GMT
Not After : Nov 7 18:28:46 2025 GMT
Subject: CN=6ED480B37E8C78F256F218ED025AE8643001A911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7d:20:01:8d:7d:59:dc:8a:0e:01:70:40:6b:
6f:c5:51:2c:7c:02:8b:da:f9:b3:8c:46:aa:3a:79:
32:02:31:df:23:c7:bb:18:3a:73:22:b6:9b:24:c5:
03:fd:d2:dd:f6:50:0a:b6:33:e0:e0:02:bd:d9:a9:
a4:c3:05:4c:a0:e6:75:d9:34:e9:88:1c:52:46:9a:
22:ed:20:1f:0d:62:db:30:51:83:df:8b:0f:f7:ea:
95:db:e2:8d:f3:39:f4:79:87:a7:38:ea:4e:69:1f:
c2:ba:53:e4:85:e0:1a:89:94:90:9b:9d:80:9b:d4:
79:aa:cb:47:88:c2:9a:9d:90:91:17:5e:93:d2:aa:
02:92:7d:4a:09:0e:03:a1:52:59:73:36:d8:a9:ed:
cd:cf:92:88:c7:58:e4:1f:7f:94:a1:4a:8c:bc:2f:
7e:21:c1:e0:38:c3:1d:48:3c:50:1e:cb:99:d7:d2:
b5:39:03:86:f8:af:53:45:1b:82:47:09:00:08:9a:
91:dc:f0:9c:5b:ec:6a:d7:5c:d8:17:9d:18:ec:48:
a8:19:95:f8:0e:1a:02:a0:6c:db:f1:55:37:1a:d1:
ef:2c:6c:cb:10:a8:de:34:25:9d:12:8d:94:a9:a8:
4f:cd:31:7d:ae:f2:38:ec:02:ba:0d:19:25:06:15:
b1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D4:80:B3:7E:8C:78:F2:56:F2:18:ED:02:5A:E8:64:30:01:A9:11
X509v3 Authority Key Identifier:
keyid:C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137302e3234352e3231362e302f32322d3234203d3e203238313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.245.216.0/22
Signature Algorithm: sha256WithRSAEncryption
55:78:83:8e:20:86:f0:26:26:b3:9c:14:fc:3d:dc:b6:46:70:
77:f8:5f:62:19:94:9f:c8:ff:43:fc:f6:e4:12:cd:61:8f:c4:
13:63:63:56:65:43:5e:5c:7e:66:9a:2a:f2:86:e9:9d:00:e1:
43:4d:7f:c3:bb:00:42:d7:70:ba:1a:50:09:2d:cd:ab:d7:3b:
43:cb:a3:ca:87:73:86:df:84:35:eb:1b:96:80:ce:4e:83:fa:
f1:a2:02:74:64:af:f1:da:ce:6f:63:48:2c:b2:fe:3a:b2:d2:
da:96:96:6e:25:67:9f:e7:da:f6:c5:91:bb:eb:f9:08:fd:dd:
7b:b0:0e:88:3d:cf:51:7f:cf:5e:03:b0:b7:2f:8c:23:1b:db:
4c:90:5d:d6:4c:b4:f3:6c:e4:f5:71:0b:a4:4b:9c:19:44:54:
7d:27:d7:c5:d5:24:5d:35:fd:ec:25:b6:f1:b9:7f:7d:e8:cb:
25:ce:2b:12:62:14:1b:1c:b8:a6:fb:ef:b9:52:b8:3d:d5:21:
cc:54:b4:88:60:9d:55:7a:70:bf:03:fa:f3:1a:cd:af:16:4f:
be:4c:32:1b:5e:db:7e:5c:3f:13:c2:9b:1d:0f:ed:88:53:02:
82:6d:a2:01:6f:c9:49:6b:5d:d5:6f:24:99:b9:a4:10:3b:c1:
23:7e:eb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:09:39 2025 by rpki-client