Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137302e38322e36342e302f32322d3234203d3e203533303830.roa
File: 3137302e38322e36342e302f32322d3234203d3e203533303830.roa (raw, json)
Hash identifier: FBMajAqG4OHonFn7sOgjN4Dgn8d/xOPG4GwOxHy7feo=
Subject key identifier: 3A:13:1B:81:06:7E:FB:F0:9B:42:45:82:30:85:30:1A:1A:21:FD:FB
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 71E90AA01EBCE90111715E4EBDEA0F486AB8002B
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137302e38322e36342e302f32322d3234203d3e203533303830.roa
Signing time: Mon 25 Nov 2024 17:03:45 +0000
ROA not before: Mon 25 Nov 2024 16:58:45 +0000
ROA not after: Mon 24 Nov 2025 17:03:45 +0000
asID: 53080
IP address blocks: 170.82.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:e9:0a:a0:1e:bc:e9:01:11:71:5e:4e:bd:ea:0f:48:6a:b8:00:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:58:45 2024 GMT
Not After : Nov 24 17:03:45 2025 GMT
Subject: CN=3A131B81067EFBF09B4245823085301A1A21FDFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d9:00:23:9b:4a:cd:d2:08:d7:f5:bd:1e:c5:
20:d2:b6:44:65:c6:4c:0c:7c:eb:29:48:fe:be:11:
6e:4a:f0:f2:47:88:eb:05:6f:86:fd:15:67:eb:5e:
71:39:9b:ab:96:96:42:9b:84:0d:37:07:87:c2:41:
6f:81:7c:d2:34:19:8b:43:a2:c4:0b:16:c8:df:7a:
04:e3:9d:4a:e2:79:f0:b0:0a:36:bd:89:a7:7b:0b:
46:85:e2:ff:cd:bd:c2:0a:e0:28:7a:ce:24:47:1f:
ab:76:fc:30:e1:6c:b9:81:f3:32:0b:8a:86:74:39:
c5:5a:b9:69:4e:52:96:33:36:b9:28:96:3a:9d:37:
b1:7e:20:17:42:ca:d0:ba:02:07:52:ef:8b:cb:e3:
a4:ba:1d:07:af:60:1d:00:66:6a:c5:27:68:65:81:
b3:9f:9a:81:c3:3e:52:b7:86:80:44:76:60:a5:62:
07:26:90:dc:51:5a:6e:0f:ee:0a:2d:61:a4:ad:21:
16:2f:62:27:3f:d0:c2:c1:57:ca:66:fc:5c:0d:95:
45:04:34:d6:1a:ee:21:1e:d7:a2:e4:08:8d:f5:ed:
e5:97:7f:44:b7:09:67:c5:4b:0a:2e:5c:cd:99:5e:
dd:dd:cb:04:87:25:bb:ef:ff:0a:ab:a4:8d:39:4f:
bd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:13:1B:81:06:7E:FB:F0:9B:42:45:82:30:85:30:1A:1A:21:FD:FB
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137302e38322e36342e302f32322d3234203d3e203533303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.64.0/22
Signature Algorithm: sha256WithRSAEncryption
16:a0:74:5a:05:13:9a:cb:3b:21:42:9c:d4:64:c5:50:4a:36:
cf:85:b6:ab:ee:60:ad:39:c5:e9:0a:22:fe:f4:af:ce:cf:5a:
07:4f:13:e0:5c:6b:7f:46:d1:29:58:01:7a:2c:a7:dd:eb:93:
6e:c0:f1:67:96:4a:20:b8:b4:0a:8f:63:4c:13:d4:43:09:02:
52:54:9e:27:b9:27:57:41:94:31:46:91:1b:cc:ad:2f:02:28:
8c:23:8e:38:88:7d:b7:9c:c4:38:3a:1e:27:1c:d1:b7:bc:93:
11:61:8f:60:6d:46:c1:34:8b:25:35:f4:d0:d9:30:41:fe:7f:
da:86:f3:ef:5c:73:cf:36:65:10:af:f9:2e:55:8f:68:c1:75:
2e:ff:26:e2:9b:71:96:a5:ed:14:b6:bc:96:8c:4a:bc:ea:07:
a3:2f:86:cf:d3:20:ae:11:b9:7e:7c:f6:3c:65:f8:7b:0d:2b:
3f:00:ed:1d:05:2e:d4:27:59:25:0e:cf:ed:67:74:ad:5c:da:
8d:6a:44:f2:e5:a7:84:d7:e9:d5:03:66:b6:e7:6e:48:dc:2e:
ae:3b:05:02:55:05:44:3c:b9:72:bb:72:f1:ea:12:38:a2:75:
48:f5:cd:d1:08:d1:39:d1:49:17:e9:db:43:5e:3c:00:b8:a0:
b7:f9:ea:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:29:44 2025 by rpki-client