Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/3137302e37382e322e302f32332d3233203d3e20323635343931.roa
File: 3137302e37382e322e302f32332d3233203d3e20323635343931.roa (raw, json)
Hash identifier: OcBBDf2/tFN+bReGdOJBt9sSQtBMR0ynZM9zUpuZOn8=
Subject key identifier: 76:C2:13:A1:DD:F0:0B:07:95:5D:47:F1:6D:2A:6C:6F:D5:8D:B8:43
Certificate issuer: /CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46
Certificate serial: 3F33278C88A4F318C49804159C40CCC60E332CC6
Authority key identifier: 96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/3137302e37382e322e302f32332d3233203d3e20323635343931.roa
Signing time: Tue 25 Feb 2025 19:17:27 +0000
ROA not before: Tue 25 Feb 2025 19:12:27 +0000
ROA not after: Tue 24 Feb 2026 19:17:27 +0000
asID: 265491
IP address blocks: 170.78.2.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:33:27:8c:88:a4:f3:18:c4:98:04:15:9c:40:cc:c6:0e:33:2c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=963A564A40CD8C84E5D11B9970B53BA3A441CF46
Validity
Not Before: Feb 25 19:12:27 2025 GMT
Not After : Feb 24 19:17:27 2026 GMT
Subject: CN=76C213A1DDF00B07955D47F16D2A6C6FD58DB843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5b:bb:5d:e6:a6:d5:55:47:dc:22:8f:97:d6:
21:8e:b3:29:5e:48:f0:37:a1:cb:a5:72:be:fc:a9:
bc:6a:70:d2:a9:45:ed:cc:a3:b5:f7:48:39:92:23:
8d:67:54:17:fb:54:80:cd:97:24:dc:62:39:d2:ee:
4b:2e:b4:f1:0b:53:08:f8:c9:19:35:88:ad:26:f5:
fc:16:9d:06:3a:ac:65:66:05:e9:6a:c7:f1:1a:01:
2e:58:2c:f4:f3:89:dc:6d:e6:11:14:39:5e:f5:1d:
2a:4d:f3:4c:b4:d4:7e:c4:6b:96:84:67:6c:0f:d6:
36:30:65:c2:be:d7:a4:ac:64:f3:67:62:25:ad:59:
d5:a5:a8:51:31:2c:07:23:d5:ae:5e:b6:14:2e:6e:
47:a3:fc:d5:64:eb:0c:a2:84:8b:86:70:03:5e:e5:
93:e2:03:ce:bc:69:04:c7:f2:8a:6e:35:5d:0b:b2:
79:8e:12:f7:02:bb:01:af:21:e9:5e:2d:47:30:48:
2a:a8:7a:35:5b:fa:1e:b2:50:76:4b:0d:f5:69:0a:
c4:61:52:43:dd:5f:ac:be:28:29:47:b5:8c:7f:e9:
d6:4d:a6:5d:88:70:8f:65:87:76:3d:b7:58:27:af:
38:ad:92:c0:75:8c:6e:25:73:ce:4a:0a:94:b2:f1:
40:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C2:13:A1:DD:F0:0B:07:95:5D:47:F1:6D:2A:6C:6F:D5:8D:B8:43
X509v3 Authority Key Identifier:
keyid:96:3A:56:4A:40:CD:8C:84:E5:D1:1B:99:70:B5:3B:A3:A4:41:CF:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/963A564A40CD8C84E5D11B9970B53BA3A441CF46.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/963A564A40CD8C84E5D11B9970B53BA3A441CF46.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8QvPx4PzrLtZsVZaJ7DpK3F8RFVrSbQjqcqQ9x722euD/0/3137302e37382e322e302f32332d3233203d3e20323635343931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.78.2.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:5a:81:ef:45:c9:82:67:3c:35:c6:6b:ca:d9:36:49:d6:3f:
d9:0a:d1:a5:e3:21:54:7f:49:2c:c7:51:0b:22:a4:1a:04:a6:
87:ae:96:65:00:45:52:be:5d:37:67:b2:25:d5:c1:08:d8:da:
04:77:e5:b1:07:02:2a:fd:1e:ed:da:45:5d:44:f1:19:47:43:
a3:8a:1e:72:8f:06:b8:2d:e0:be:d9:2b:c6:d8:dd:ce:85:14:
91:26:3f:ab:03:d9:a8:8b:5e:f4:2c:85:06:50:f8:65:ff:bf:
62:c8:6a:15:d6:a2:7d:06:4c:65:b0:83:98:ef:3b:69:85:65:
5d:87:58:9b:72:b2:20:c1:a9:50:18:59:b6:85:b4:85:ab:52:
fc:6a:69:51:24:ac:89:de:ee:02:47:da:0c:69:19:bd:86:0d:
8b:86:39:c3:05:99:db:ec:99:54:31:fb:dd:24:77:cc:a1:de:
4e:cc:0a:02:e7:8e:d1:35:f8:f5:c8:b6:d9:f4:a4:a6:38:6c:
6a:7f:9c:d4:8e:42:c3:79:b6:f5:dd:d7:39:e9:61:d8:34:b6:
58:47:39:7e:35:79:05:51:3d:3b:b6:93:2c:00:c8:ea:64:aa:
2a:4c:83:c6:68:60:d6:67:68:76:ee:22:26:c6:97:b8:b4:66:
4b:b7:a3:7c
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUPzMnjIik8xjEmAQVnEDMxg4zLMYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTYzQTU2NEE0MENEOEM4NEU1RDExQjk5NzBCNTNCQTNB
NDQxQ0Y0NjAeFw0yNTAyMjUxOTEyMjdaFw0yNjAyMjQxOTE3MjdaMDMxMTAvBgNV
BAMTKDc2QzIxM0ExRERGMDBCMDc5NTVENDdGMTZEMkE2QzZGRDU4REI4NDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYW7td5qbVVUfcIo+X1iGOsyle
SPA3oculcr78qbxqcNKpRe3Mo7X3SDmSI41nVBf7VIDNlyTcYjnS7ksutPELUwj4
yRk1iK0m9fwWnQY6rGVmBelqx/EaAS5YLPTzidxt5hEUOV71HSpN80y01H7Ea5aE
Z2wP1jYwZcK+16SsZPNnYiWtWdWlqFExLAcj1a5ethQubkej/NVk6wyihIuGcANe
5ZPiA868aQTH8opuNV0LsnmOEvcCuwGvIeleLUcwSCqoejVb+h6yUHZLDfVpCsRh
UkPdX6y+KClHtYx/6dZNpl2IcI9lh3Y9t1gnrzitksB1jG4lc85KCpSy8UAJAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUdsITod3wCweVXUfxbSpsb9WNuEMwHwYDVR0j
BBgwFoAUljpWSkDNjITl0RuZcLU7o6RBz0YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOFF2UHg0UHpyTHRac1ZaYUo3RHBLM0Y4UkZWclNiUWpxY3FROXg3MjJl
dUQvMC85NjNBNTY0QTQwQ0Q4Qzg0RTVEMTFCOTk3MEI1M0JBM0E0NDFDRjQ2LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk2M0E1NjRBNDBDRDhDODRF
NUQxMUI5OTcwQjUzQkEzQTQ0MUNGNDYuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhRdlB4NFB6ckx0WnNWWmFKN0RwSzNGOFJGVnJTYlFqcWNxUTl4NzIyZXVELzAv
MzEzNzMwMmUzNzM4MmUzMjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzYzNTM0
MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAapOAjANBgkqhkiG9w0BAQsFAAOCAQEAbFqB70XJgmc8
NcZrytk2SdY/2QrRpeMhVH9JLMdRCyKkGgSmh66WZQBFUr5dN2eyJdXBCNjaBHfl
sQcCKv0e7dpFXUTxGUdDo4oeco8GuC3gvtkrxtjdzoUUkSY/qwPZqIte9CyFBlD4
Zf+/YshqFdaifQZMZbCDmO87aYVlXYdYm3KyIMGpUBhZtoW0hatS/GppUSSsid7u
AkfaDGkZvYYNi4Y5wwWZ2+yZVDH73SR3zKHeTswKAueO0TX49ci22fSkpjhsan+c
1I5Cw3m29d3XOelh2DS2WEc5fjV5BVE9O7aTLADI6mSqKkyDxmhg1mdodu4iJsaX
uLRmS7ejfA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 16:37:47 2025 by rpki-client