Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8MSVXq2ApoPiZRqZaPC3rq76nYLTUKg7T9KZQaZXwMH7/1/3137302e38332e3231302e302f32342d3234203d3e203532353933.roa
File: 3137302e38332e3231302e302f32342d3234203d3e203532353933.roa (raw, json)
Hash identifier: GGfPNnK453FsKm3o6J9O4h597I8FcLz779e605jXz8w=
Subject key identifier: 33:E7:8E:EF:E3:B9:05:2F:9F:2C:3C:A5:39:12:82:98:B3:67:44:F0
Certificate issuer: /CN=71F86B10A77D1BB0176438DDC470DFE2D19A6F14
Certificate serial: 09860A7C019087CE717AB495CBEBB4129BDB5F79
Authority key identifier: 71:F8:6B:10:A7:7D:1B:B0:17:64:38:DD:C4:70:DF:E2:D1:9A:6F:14
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71F86B10A77D1BB0176438DDC470DFE2D19A6F14.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8MSVXq2ApoPiZRqZaPC3rq76nYLTUKg7T9KZQaZXwMH7/1/3137302e38332e3231302e302f32342d3234203d3e203532353933.roa
Signing time: Wed 03 Apr 2024 22:00:30 +0000
ROA not before: Wed 03 Apr 2024 21:55:30 +0000
ROA not after: Wed 02 Apr 2025 22:00:30 +0000
asID: 52593
IP address blocks: 170.83.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:86:0a:7c:01:90:87:ce:71:7a:b4:95:cb:eb:b4:12:9b:db:5f:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71F86B10A77D1BB0176438DDC470DFE2D19A6F14
Validity
Not Before: Apr 3 21:55:30 2024 GMT
Not After : Apr 2 22:00:30 2025 GMT
Subject: CN=33E78EEFE3B9052F9F2C3CA539128298B36744F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:df:0b:ba:6d:10:53:ad:8d:f8:f6:c7:ee:81:
40:db:3d:b0:45:3e:1e:1b:ef:8f:53:fb:8e:da:0e:
91:a8:05:34:ba:cc:43:e9:13:e8:b3:cd:dd:54:b2:
33:70:43:72:e6:98:7a:24:bb:3e:18:7f:25:c7:4f:
d8:1c:27:e9:61:de:36:e7:c3:e7:7d:63:f5:93:70:
cf:2a:a4:b5:4f:38:ac:2b:03:20:a7:71:1e:9c:17:
4a:fa:3e:62:9c:c6:39:f1:3f:12:82:41:69:3c:06:
2e:02:f2:fd:5a:fd:c3:4b:b4:01:96:26:2c:ec:ca:
ab:9c:f4:d9:2b:28:6c:e6:aa:70:3c:2e:61:12:3d:
fa:d0:7b:b8:85:ee:84:6e:d0:c9:e7:d7:d1:04:36:
09:b8:f5:2c:cf:40:29:06:64:92:de:16:28:e7:e9:
9e:5e:62:d0:a4:39:47:10:9a:d1:d2:bf:e7:17:2f:
8e:d1:1c:55:bb:e5:2e:78:58:c3:58:08:b3:b6:14:
39:c0:fc:10:97:d6:6c:09:fb:f6:46:fb:96:fc:a3:
4a:c1:68:ad:a5:70:f8:2d:04:e6:4a:36:c7:99:d3:
68:8a:76:e3:2c:c9:ce:8d:04:d8:8f:c8:2d:84:cc:
2b:12:15:ab:46:5c:7a:f4:4a:fd:ad:fe:3e:48:85:
9d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E7:8E:EF:E3:B9:05:2F:9F:2C:3C:A5:39:12:82:98:B3:67:44:F0
X509v3 Authority Key Identifier:
keyid:71:F8:6B:10:A7:7D:1B:B0:17:64:38:DD:C4:70:DF:E2:D1:9A:6F:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8MSVXq2ApoPiZRqZaPC3rq76nYLTUKg7T9KZQaZXwMH7/1/71F86B10A77D1BB0176438DDC470DFE2D19A6F14.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71F86B10A77D1BB0176438DDC470DFE2D19A6F14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8MSVXq2ApoPiZRqZaPC3rq76nYLTUKg7T9KZQaZXwMH7/1/3137302e38332e3231302e302f32342d3234203d3e203532353933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.210.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:33:53:7b:1e:22:0e:a3:ed:b6:8e:8e:77:31:4c:eb:d2:c4:
94:06:d8:73:f3:31:b5:2b:19:f2:5e:62:62:4b:f1:4b:8e:ee:
77:45:3f:e6:dd:39:0a:8e:9d:34:85:08:8f:a3:39:3d:c8:c9:
f6:d8:85:30:9c:ea:6a:e9:a1:5a:83:5e:42:95:76:82:6e:c2:
f0:2d:91:45:21:93:ed:0e:26:88:b2:df:e3:ce:bf:34:98:3b:
04:8a:d6:48:f1:be:68:a0:90:07:f7:90:fa:fc:95:c5:40:6e:
47:c9:99:8e:f1:67:d6:7a:d1:97:5a:a7:00:1c:8d:c7:2b:4d:
9d:a3:76:1c:84:33:b0:2f:03:c5:4d:d6:bb:c4:de:c6:b0:e0:
cc:80:f5:99:3a:98:d0:17:ed:79:66:45:77:bf:57:ba:1a:e7:
e8:ab:b9:41:e8:00:3f:ef:49:c4:a9:6d:a1:17:52:7a:50:47:
01:fa:ad:39:97:5d:43:6f:0a:3c:74:cb:37:c1:4c:ae:ff:31:
64:6b:f0:e9:e9:23:3a:3f:26:ef:b2:bf:71:be:50:ac:a4:00:
37:67:c1:67:30:7a:30:a4:7b:d9:62:7f:69:64:ae:6d:27:de:
75:ce:17:1d:80:4a:6f:ca:9e:11:43:61:0c:7a:7d:ad:e8:fa:
cf:ac:9e:f3
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUCYYKfAGQh85xerSVy+u0EpvbX3kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzFGODZCMTBBNzdEMUJCMDE3NjQzOEREQzQ3MERGRTJE
MTlBNkYxNDAeFw0yNDA0MDMyMTU1MzBaFw0yNTA0MDIyMjAwMzBaMDMxMTAvBgNV
BAMTKDMzRTc4RUVGRTNCOTA1MkY5RjJDM0NBNTM5MTI4Mjk4QjM2NzQ0RjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK3wu6bRBTrY349sfugUDbPbBF
Ph4b749T+47aDpGoBTS6zEPpE+izzd1UsjNwQ3LmmHokuz4YfyXHT9gcJ+lh3jbn
w+d9Y/WTcM8qpLVPOKwrAyCncR6cF0r6PmKcxjnxPxKCQWk8Bi4C8v1a/cNLtAGW
Jizsyquc9NkrKGzmqnA8LmESPfrQe7iF7oRu0Mnn19EENgm49SzPQCkGZJLeFijn
6Z5eYtCkOUcQmtHSv+cXL47RHFW75S54WMNYCLO2FDnA/BCX1mwJ+/ZG+5b8o0rB
aK2lcPgtBOZKNseZ02iKduMsyc6NBNiPyC2EzCsSFatGXHr0Sv2t/j5IhZ2pAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUM+eO7+O5BS+fLDylORKCmLNnRPAwHwYDVR0j
BBgwFoAUcfhrEKd9G7AXZDjdxHDf4tGabxQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOE1TVlhxMkFwb1BpWlJxWmFQQzNycTc2bllMVFVLZzdUOUtaUWFaWHdN
SDcvMS83MUY4NkIxMEE3N0QxQkIwMTc2NDM4RERDNDcwREZFMkQxOUE2RjE0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxRjg2QjEwQTc3RDFCQjAx
NzY0MzhEREM0NzBERkUyRDE5QTZGMTQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhNU1ZYcTJBcG9QaVpScVphUEMzcnE3Nm5ZTFRVS2c3VDlLWlFhWlh3TUg3LzEv
MzEzNzMwMmUzODMzMmUzMjMxMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMy
MzUzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAqlPSMA0GCSqGSIb3DQEBCwUAA4IBAQBLM1N7HiIO
o+22jo53MUzr0sSUBthz8zG1KxnyXmJiS/FLju53RT/m3TkKjp00hQiPozk9yMn2
2IUwnOpq6aFag15ClXaCbsLwLZFFIZPtDiaIst/jzr80mDsEitZI8b5ooJAH95D6
/JXFQG5HyZmO8WfWetGXWqcAHI3HK02do3YchDOwLwPFTda7xN7GsODMgPWZOpjQ
F+15ZkV3v1e6Gufoq7lB6AA/70nEqW2hF1J6UEcB+q05l11Dbwo8dMs3wUyu/zFk
a/Dp6SM6Pybvsr9xvlCspAA3Z8FnMHowpHvZYn9pZK5tJ951zhcdgEpvyp4RQ2EM
en2t6PrPrJ7z
-----END CERTIFICATE-----
Generated at Tue Apr 8 21:42:34 2025 by rpki-client