Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137372e3132352e33322e302f32312d3234203d3e203238313436.roa
File: 3137372e3132352e33322e302f32312d3234203d3e203238313436.roa (raw, json)
Hash identifier: sSSpLikDA/EjNxaMUyD+eBK+/rCB+UccbtvHBBHwx1M=
Subject key identifier: A5:63:6D:FF:88:ED:BF:92:52:36:6C:49:EC:BE:BD:AE:A1:1E:CA:70
Certificate issuer: /CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Certificate serial: 22C9BC3970DF95792A81B4670083B7FCC00CA0EB
Authority key identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137372e3132352e33322e302f32312d3234203d3e203238313436.roa
Signing time: Fri 08 Nov 2024 18:30:33 +0000
ROA not before: Fri 08 Nov 2024 18:25:33 +0000
ROA not after: Fri 07 Nov 2025 18:30:33 +0000
asID: 28146
IP address blocks: 177.125.32.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 17:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c9:bc:39:70:df:95:79:2a:81:b4:67:00:83:b7:fc:c0:0c:a0:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Validity
Not Before: Nov 8 18:25:33 2024 GMT
Not After : Nov 7 18:30:33 2025 GMT
Subject: CN=A5636DFF88EDBF9252366C49ECBEBDAEA11ECA70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5c:ba:29:74:26:f8:e6:0b:5e:52:ef:86:d8:
4c:b8:be:b8:87:7a:17:91:fd:0c:c9:f7:e3:cc:57:
6f:a9:e1:97:d5:51:af:21:4f:4c:af:fb:ce:0f:ec:
1f:12:41:0b:32:c3:20:28:70:c1:8c:24:fa:8e:24:
73:23:47:a7:30:67:21:65:b6:d7:c0:11:8a:76:de:
f1:1b:1f:50:60:49:61:4b:21:49:32:8b:6b:ee:81:
af:bd:e1:cd:22:11:ae:b6:ae:e3:a3:bc:c9:93:25:
29:6a:77:f5:e9:f0:99:6d:6e:5b:4c:e9:9b:f0:b4:
77:eb:13:d9:5e:a8:d7:51:21:90:de:8d:4c:62:cd:
31:e3:34:b5:73:95:7a:66:69:6b:e9:a1:79:bd:d9:
41:0d:13:da:c3:88:62:2f:b4:ff:1d:40:02:c3:67:
f9:f5:55:01:c9:8a:03:6e:bb:c3:18:5d:2b:3c:b8:
23:a3:62:27:5f:85:29:08:4b:8b:25:24:bd:08:b4:
7f:b0:a5:da:a6:63:a5:54:b3:34:2f:e8:af:36:7a:
40:4d:c1:d1:2b:e7:14:be:d8:bc:f9:39:35:23:08:
3b:38:9c:ff:e7:a8:2d:1a:33:d3:ba:50:b6:26:9b:
2f:c6:56:4e:d1:0b:fd:d7:01:21:20:97:45:94:2d:
ff:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:63:6D:FF:88:ED:BF:92:52:36:6C:49:EC:BE:BD:AE:A1:1E:CA:70
X509v3 Authority Key Identifier:
keyid:C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/3137372e3132352e33322e302f32312d3234203d3e203238313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.125.32.0/21
Signature Algorithm: sha256WithRSAEncryption
c8:18:8d:53:07:7a:d6:b7:dc:b1:e4:0b:0d:69:20:4b:aa:1f:
b3:58:45:d0:ce:a1:b1:c7:b8:d4:a4:60:10:e4:df:8f:17:b7:
5b:5c:3b:03:88:1d:9a:94:87:b7:8a:a7:ff:4a:f6:cf:4b:fa:
8b:e9:af:73:15:c3:d1:be:b7:e5:44:fc:03:3a:e9:92:2b:d5:
3a:51:04:cd:8d:af:e4:39:88:01:f6:4f:ce:ab:9c:cb:08:71:
c7:96:19:70:3f:cd:2e:25:fb:19:16:10:e5:cb:de:55:87:9c:
ce:ca:d9:08:12:4a:8f:34:15:05:45:a6:05:db:08:ba:dc:43:
84:91:7e:f4:50:ab:c3:8e:62:45:37:e4:06:b3:2b:68:02:29:
87:00:e0:e6:35:44:26:6c:82:57:73:71:d0:08:c6:35:f9:80:
42:de:26:09:ba:a8:b0:10:4d:95:36:da:38:e6:cc:8e:18:0e:
0a:3b:52:4e:e0:80:73:12:f0:cb:aa:65:58:6d:67:bf:b4:42:
cb:a8:42:83:1d:e9:b8:7e:95:a5:28:a6:8a:38:f2:23:21:4f:
d6:21:a6:6d:c8:4f:62:32:20:a8:eb:30:52:fe:80:f2:d4:7c:
06:b9:4a:00:b3:60:79:f0:70:38:ed:d9:50:c0:ea:f5:8b:85:
d5:5f:70:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:37:04 2025 by rpki-client