Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8nM5kNVEPy9vD5dTcQcdNByuxpd2nHy4S3jkUqHRKDgn/0/323830343a326233343a3a2f33322d3334203d3e20323635313430.roa
File: 323830343a326233343a3a2f33322d3334203d3e20323635313430.roa (raw, json)
Hash identifier: uVxLH7D1ow0Hh8/yZxt1+IGQzZ0wkS42JQSyCTZ76C0=
Subject key identifier: 90:37:69:7A:6E:93:DF:CB:CA:E3:85:9E:78:99:A4:61:C8:A7:B2:CC
Certificate issuer: /CN=68EC60223DF10BE63B7A84464ACF2A9697173D75
Certificate serial: 15472D22CB33C8EA7C5265EC5E890C1BDFA6C3C5
Authority key identifier: 68:EC:60:22:3D:F1:0B:E6:3B:7A:84:46:4A:CF:2A:96:97:17:3D:75
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/68EC60223DF10BE63B7A84464ACF2A9697173D75.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8nM5kNVEPy9vD5dTcQcdNByuxpd2nHy4S3jkUqHRKDgn/0/323830343a326233343a3a2f33322d3334203d3e20323635313430.roa
Signing time: Fri 21 Mar 2025 14:34:12 +0000
ROA not before: Fri 21 Mar 2025 14:29:12 +0000
ROA not after: Fri 20 Mar 2026 14:34:12 +0000
asID: 265140
IP address blocks: 2804:2b34::/32 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:47:2d:22:cb:33:c8:ea:7c:52:65:ec:5e:89:0c:1b:df:a6:c3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68EC60223DF10BE63B7A84464ACF2A9697173D75
Validity
Not Before: Mar 21 14:29:12 2025 GMT
Not After : Mar 20 14:34:12 2026 GMT
Subject: CN=9037697A6E93DFCBCAE3859E7899A461C8A7B2CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:a8:40:86:1f:78:61:80:24:3d:be:c5:af:
f6:13:b5:47:92:a3:35:95:c8:84:06:3e:20:6a:dc:
d3:1b:4e:cb:4d:fe:bb:35:51:3d:b9:36:7a:1b:1b:
9f:be:3f:c6:43:10:c1:a3:ae:8e:59:15:86:5e:86:
a0:d7:6c:1b:00:7e:83:82:a0:c0:e5:78:79:ed:46:
19:7b:bf:aa:8e:f5:7f:6e:7d:8a:1a:4e:86:62:69:
5b:9e:10:9a:9b:2e:f9:09:75:36:f1:23:e4:4b:dd:
6a:30:83:df:16:e1:c2:13:23:2b:76:89:b9:2b:12:
8a:d4:a1:eb:bc:78:20:16:6e:22:b5:cb:76:17:15:
54:61:82:7e:9c:a0:bf:54:85:52:08:46:dd:21:42:
21:f7:0e:47:e4:28:d4:d9:e5:63:03:27:99:21:48:
72:4c:46:a1:e3:4b:0a:ad:46:af:dd:73:db:d3:4f:
f8:a8:65:05:62:c0:e7:61:a0:a7:24:0b:64:74:0d:
3c:1a:36:de:da:44:5a:f4:36:72:39:5d:74:4d:2c:
21:ba:10:38:ae:48:c5:73:01:2c:3d:52:3d:59:f0:
81:99:21:09:2f:65:27:d3:aa:2d:f5:e0:58:8f:26:
7a:a0:c3:07:32:04:ec:92:52:36:e6:77:a0:2c:dd:
ef:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:37:69:7A:6E:93:DF:CB:CA:E3:85:9E:78:99:A4:61:C8:A7:B2:CC
X509v3 Authority Key Identifier:
keyid:68:EC:60:22:3D:F1:0B:E6:3B:7A:84:46:4A:CF:2A:96:97:17:3D:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8nM5kNVEPy9vD5dTcQcdNByuxpd2nHy4S3jkUqHRKDgn/0/68EC60223DF10BE63B7A84464ACF2A9697173D75.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/68EC60223DF10BE63B7A84464ACF2A9697173D75.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8nM5kNVEPy9vD5dTcQcdNByuxpd2nHy4S3jkUqHRKDgn/0/323830343a326233343a3a2f33322d3334203d3e20323635313430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2b34::/32
Signature Algorithm: sha256WithRSAEncryption
8b:21:79:fa:a7:84:9f:e2:ab:76:02:69:bf:05:ee:56:20:62:
16:0a:35:f6:c4:28:43:32:5f:28:60:f7:5a:d1:f5:7d:7c:93:
69:23:9a:04:89:37:7d:b0:95:ed:f9:6a:3a:7d:ff:cc:44:98:
67:7b:8a:4b:66:c4:4c:56:22:8d:58:f4:59:0d:a8:c3:74:07:
2c:33:1e:a9:bb:4b:a8:e6:3d:f2:65:95:23:97:c5:71:8b:91:
27:ba:10:25:98:f4:70:f8:c5:d1:01:6e:92:cb:cd:12:87:fc:
dd:6d:db:b8:95:31:ff:b8:98:0c:37:58:1b:56:d9:d5:b1:7c:
e6:ae:2b:7f:a7:99:f5:3e:4d:24:6e:7d:60:1b:c7:bc:4f:e2:
de:ed:e4:51:90:a7:9a:65:52:01:6b:24:44:4f:b0:e0:89:51:
06:9d:c9:5c:da:75:20:a4:20:a1:73:70:82:2a:32:d0:0b:bd:
9b:3f:5d:9b:7d:fe:01:fa:2a:7f:c2:e6:da:c5:f7:30:1c:95:
d7:ca:ed:2f:03:a8:08:b5:fc:c9:71:d6:df:2b:37:47:ff:5f:
dd:81:08:ce:65:47:74:64:f7:67:03:77:1b:3f:d6:94:6e:04:
ee:d1:b0:d2:1c:98:37:a9:81:9c:3a:98:44:6f:4d:b1:fa:5d:
f9:f4:54:60
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIUFUctIsszyOp8UmXsXokMG9+mw8UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjhFQzYwMjIzREYxMEJFNjNCN0E4NDQ2NEFDRjJBOTY5
NzE3M0Q3NTAeFw0yNTAzMjExNDI5MTJaFw0yNjAzMjAxNDM0MTJaMDMxMTAvBgNV
BAMTKDkwMzc2OTdBNkU5M0RGQ0JDQUUzODU5RTc4OTlBNDYxQzhBN0IyQ0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIvKhAhh94YYAkPb7Fr/YTtUeS
ozWVyIQGPiBq3NMbTstN/rs1UT25NnobG5++P8ZDEMGjro5ZFYZehqDXbBsAfoOC
oMDleHntRhl7v6qO9X9ufYoaToZiaVueEJqbLvkJdTbxI+RL3Wowg98W4cITIyt2
ibkrEorUoeu8eCAWbiK1y3YXFVRhgn6coL9UhVIIRt0hQiH3DkfkKNTZ5WMDJ5kh
SHJMRqHjSwqtRq/dc9vTT/ioZQViwOdhoKckC2R0DTwaNt7aRFr0NnI5XXRNLCG6
EDiuSMVzASw9Uj1Z8IGZIQkvZSfTqi314FiPJnqgwwcyBOySUjbmd6As3e+3AgMB
AAGjggJQMIICTDAdBgNVHQ4EFgQUkDdpem6T38vK44WeeJmkYcinsswwHwYDVR0j
BBgwFoAUaOxgIj3xC+Y7eoRGSs8qlpcXPXUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOG5NNWtOVkVQeTl2RDVkVGNRY2ROQnl1eHBkMm5IeTRTM2prVXFIUktE
Z24vMC82OEVDNjAyMjNERjEwQkU2M0I3QTg0NDY0QUNGMkE5Njk3MTczRDc1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY4RUM2MDIyM0RGMTBCRTYz
QjdBODQ0NjRBQ0YyQTk2OTcxNzNENzUuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhuTTVrTlZFUHk5dkQ1ZFRjUWNkTkJ5dXhwZDJuSHk0UzNqa1VxSFJLRGduLzAv
MzIzODMwMzQzYTMyNjIzMzM0M2EzYTJmMzMzMjJkMzMzNDIwM2QzZTIwMzIzNjM1
MzEzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKAQrNDANBgkqhkiG9w0BAQsFAAOCAQEAiyF5+qeE
n+KrdgJpvwXuViBiFgo19sQoQzJfKGD3WtH1fXyTaSOaBIk3fbCV7flqOn3/zESY
Z3uKS2bETFYijVj0WQ2ow3QHLDMeqbtLqOY98mWVI5fFcYuRJ7oQJZj0cPjF0QFu
ksvNEof83W3buJUx/7iYDDdYG1bZ1bF85q4rf6eZ9T5NJG59YBvHvE/i3u3kUZCn
mmVSAWskRE+w4IlRBp3JXNp1IKQgoXNwgioy0Au9mz9dm33+Afoqf8Lm2sX3MByV
18rtLwOoCLX8yXHW3ys3R/9f3YEIzmVHdGT3ZwN3Gz/WlG4E7tGw0hyYN6mBnDqY
RG9Nsfpd+fRUYA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:40:48 2025 by rpki-client