Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8YkFJuPybsmcpY1oQe7ZTNnsVzeMLkVws4vA2Kvz1NcZ/0/323830343a393166343a3a2f33322d3438203d3e20323734363738.roa
File: 323830343a393166343a3a2f33322d3438203d3e20323734363738.roa (raw, json)
Hash identifier: 9XHrOZxEDIpbn6ZXUulNAEJYCwxEUOXHsN3a+uI3AFo=
Subject key identifier: C3:45:91:34:2E:CF:86:69:87:BE:B3:4A:F0:BB:10:EF:AD:D7:5E:37
Certificate issuer: /CN=102604C78C92915676397D8891E762B57AB2192A
Certificate serial: 6AFFBCD982E8030014A34BE879A85D26F59B9258
Authority key identifier: 10:26:04:C7:8C:92:91:56:76:39:7D:88:91:E7:62:B5:7A:B2:19:2A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/102604C78C92915676397D8891E762B57AB2192A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8YkFJuPybsmcpY1oQe7ZTNnsVzeMLkVws4vA2Kvz1NcZ/0/323830343a393166343a3a2f33322d3438203d3e20323734363738.roa
Signing time: Wed 05 Feb 2025 19:57:45 +0000
ROA not before: Wed 05 Feb 2025 19:52:45 +0000
ROA not after: Wed 04 Feb 2026 19:57:45 +0000
asID: 274678
IP address blocks: 2804:91f4::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ff:bc:d9:82:e8:03:00:14:a3:4b:e8:79:a8:5d:26:f5:9b:92:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=102604C78C92915676397D8891E762B57AB2192A
Validity
Not Before: Feb 5 19:52:45 2025 GMT
Not After : Feb 4 19:57:45 2026 GMT
Subject: CN=C34591342ECF866987BEB34AF0BB10EFADD75E37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e6:05:69:78:34:76:28:35:4e:20:e3:6d:83:
4a:1b:72:55:ab:f1:bf:b6:d4:65:43:46:0e:ff:55:
b6:e8:30:84:1a:c9:30:eb:8c:bf:5c:3f:65:6a:00:
3c:e8:f0:06:51:0b:16:62:06:9d:5d:6c:dd:64:1a:
6a:b1:84:1a:b6:d4:91:ed:45:57:12:30:f0:6e:b8:
bf:9e:ea:6f:af:0c:1a:a0:99:0a:64:94:eb:e0:d2:
c7:02:c8:7c:60:13:ee:f6:d9:fb:e4:fc:2a:50:41:
8a:d4:90:1c:ba:6b:2e:31:bd:4d:db:3a:be:65:99:
05:9b:05:ba:a5:95:80:89:61:c6:c5:df:31:db:89:
57:71:46:76:43:e0:ba:52:68:f3:61:d9:5c:c0:84:
5c:c3:29:6a:56:cd:c3:b2:f1:a1:5d:43:34:d1:85:
6d:ee:47:b5:2d:ab:c4:c4:f7:b9:60:6d:9e:24:26:
f9:83:15:75:84:a4:d6:00:f0:dc:62:db:1c:50:c3:
51:7c:ea:52:01:e4:06:05:6b:f7:39:91:8b:bb:6b:
50:ef:e8:fb:8b:98:df:3a:7a:9d:aa:09:07:80:9d:
4a:6c:07:66:e0:11:a7:e7:a8:ff:b7:d3:80:98:db:
d1:3f:5e:34:49:1a:4c:3f:11:f6:3d:6c:5f:16:7b:
77:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:45:91:34:2E:CF:86:69:87:BE:B3:4A:F0:BB:10:EF:AD:D7:5E:37
X509v3 Authority Key Identifier:
keyid:10:26:04:C7:8C:92:91:56:76:39:7D:88:91:E7:62:B5:7A:B2:19:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8YkFJuPybsmcpY1oQe7ZTNnsVzeMLkVws4vA2Kvz1NcZ/0/102604C78C92915676397D8891E762B57AB2192A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/102604C78C92915676397D8891E762B57AB2192A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8YkFJuPybsmcpY1oQe7ZTNnsVzeMLkVws4vA2Kvz1NcZ/0/323830343a393166343a3a2f33322d3438203d3e20323734363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:91f4::/32
Signature Algorithm: sha256WithRSAEncryption
b5:82:f1:73:4d:2d:db:d0:d0:f8:c0:7f:b9:73:4d:d7:80:30:
85:ba:b3:09:af:9f:8a:8e:df:90:fa:dd:f8:af:b6:df:c1:24:
90:2c:a0:41:14:23:2d:07:cf:c2:1f:0a:39:92:cd:2f:7c:00:
d1:71:25:c0:c9:42:a2:6a:b1:ca:96:f0:9e:0e:82:45:8a:2f:
1f:53:ab:b9:ce:8f:82:4b:42:e8:10:b2:a3:e2:8e:ac:21:da:
cb:18:90:7e:74:45:ae:82:be:3d:96:b0:21:a8:56:e7:2b:68:
74:3d:8a:e0:12:27:0a:65:17:f9:b9:16:90:d5:d0:4e:a9:63:
3b:3d:de:d2:7d:03:f2:74:a4:a4:8c:0b:67:0d:2c:91:7a:f0:
d2:56:ed:8d:71:de:f7:15:b3:ef:77:b2:87:10:8d:f2:99:89:
7b:01:b9:55:ce:a5:10:82:32:4e:a5:10:ff:95:0a:97:e4:49:
a5:0e:57:70:38:8b:bb:f9:09:70:2c:68:28:d2:78:79:55:c6:
d5:b1:e8:81:13:86:c7:91:fd:4b:09:e2:74:f5:48:a1:7c:fe:
ab:81:b3:3e:d8:b2:36:9c:f9:8f:f1:ad:8e:7c:65:1b:20:72:
43:65:39:f7:27:32:45:ec:17:f5:87:24:d2:c3:05:ce:e6:38:
35:3c:54:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:20:25 2025 by rpki-client