Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3133322e3235352e36342e302f32322d3234203d3e203238363637.roa
File: 3133322e3235352e36342e302f32322d3234203d3e203238363637.roa (raw, json)
Hash identifier: 3Ukiv/+oZzLMBf/OJS0TZrHpPZFBmHniWqj78ud/rlY=
Subject key identifier: 35:34:7A:1D:D3:F8:56:64:69:80:DC:5A:4B:3C:85:BB:45:41:4F:7A
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 4F437F5D5EB7224880F6D3188F3F6EA94E7EF44F
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3133322e3235352e36342e302f32322d3234203d3e203238363637.roa
Signing time: Mon 25 Nov 2024 17:04:06 +0000
ROA not before: Mon 25 Nov 2024 16:59:06 +0000
ROA not after: Mon 24 Nov 2025 17:04:06 +0000
asID: 28667
IP address blocks: 132.255.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:43:7f:5d:5e:b7:22:48:80:f6:d3:18:8f:3f:6e:a9:4e:7e:f4:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:06 2024 GMT
Not After : Nov 24 17:04:06 2025 GMT
Subject: CN=35347A1DD3F856646980DC5A4B3C85BB45414F7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bc:7b:0b:a8:b0:a8:54:15:61:96:ad:d8:26:
c3:4b:6a:bb:79:d3:7f:67:95:f2:9f:04:e7:7a:97:
d1:f6:e1:dd:27:30:45:77:6b:01:ac:b3:93:d2:4a:
c0:a2:02:8d:ea:fd:3a:3d:1a:b7:68:aa:3a:f4:81:
02:8e:90:61:d4:56:6c:b3:24:47:3d:66:28:d3:51:
04:a4:99:1c:68:a7:e5:95:5d:66:34:02:d2:e3:49:
be:83:8c:e4:32:4b:95:b1:1c:07:88:ae:74:6d:39:
a2:b6:05:0c:2e:8a:bb:c8:74:09:1b:70:ab:f4:26:
14:0c:75:5c:88:a9:f0:49:d5:cb:75:a0:d1:c1:33:
d8:aa:de:de:f2:5c:8d:57:d9:9f:cd:93:57:13:e3:
d7:f8:95:eb:37:45:23:dc:44:e4:b1:dc:fe:80:97:
c6:39:9a:e5:c5:82:19:38:53:d4:af:d3:78:8c:3d:
ba:19:cd:2c:c9:e3:84:05:d5:b9:83:60:da:d2:dd:
51:3a:13:82:79:ef:34:42:bd:33:bb:20:02:fd:1c:
a6:9b:03:d2:9d:68:6e:dc:52:7f:be:43:19:ef:ce:
e9:94:e9:78:f1:71:d1:5f:ad:99:6f:8e:6e:9c:ee:
3d:4a:95:12:79:34:a5:58:ef:87:a7:80:c7:f5:ee:
27:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:34:7A:1D:D3:F8:56:64:69:80:DC:5A:4B:3C:85:BB:45:41:4F:7A
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3133322e3235352e36342e302f32322d3234203d3e203238363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.64.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:f2:6b:e7:f0:a9:f9:21:58:84:0b:c0:e2:67:68:03:de:c3:
78:05:d9:25:e9:fa:cf:0f:71:7d:f6:f0:a5:74:54:47:36:12:
72:51:eb:b5:76:54:e8:09:29:3b:11:cf:43:d9:7b:22:ad:d0:
3d:fa:7f:f8:75:89:a8:35:9b:54:79:38:42:6a:72:34:0a:cd:
25:41:4d:43:33:5b:f7:97:10:2c:e7:02:7b:34:57:5c:a8:14:
fa:1f:aa:2e:55:e4:5f:3d:14:ec:d6:57:09:27:fc:72:06:65:
97:99:c4:86:bf:18:f1:8e:8a:17:bf:f2:17:67:b9:6d:1d:17:
13:5a:af:1e:88:63:e5:c0:fe:68:fd:e8:a2:a0:36:d1:93:98:
37:aa:69:cd:5e:2a:9e:e6:4a:59:e4:ef:fb:d0:9d:bb:c7:fb:
52:ef:67:53:86:d2:1d:61:00:82:32:ee:5e:c1:20:e8:7a:6f:
d5:a9:0a:2a:26:6f:77:84:7f:39:e8:30:02:ce:11:b7:cb:b2:
39:e4:36:ab:bc:2c:4d:97:29:a1:47:99:82:04:90:f9:b9:5c:
85:4a:a9:2c:09:f4:ec:c8:af:e8:ea:d8:86:1f:66:8d:62:e8:
51:29:ea:5b:a7:0c:cb:5a:ce:fd:62:6b:85:82:a4:0a:09:9f:
1b:77:16:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:34:02 2025 by rpki-client