Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137372e382e3230382e302f32312d3234203d3e203238363637.roa
File: 3137372e382e3230382e302f32312d3234203d3e203238363637.roa (raw, json)
Hash identifier: nQLS3790KL9ZjY7DosbMbWoeoRjJgyktrjTfbVaTvLU=
Subject key identifier: 8C:9F:B5:40:06:6E:5B:7F:29:8C:FC:5F:42:0A:CC:BB:D4:2B:0C:2C
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 40E8AD05DA51253F5E97227034752118137B5D19
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137372e382e3230382e302f32312d3234203d3e203238363637.roa
Signing time: Mon 25 Nov 2024 17:04:21 +0000
ROA not before: Mon 25 Nov 2024 16:59:21 +0000
ROA not after: Mon 24 Nov 2025 17:04:21 +0000
asID: 28667
IP address blocks: 177.8.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:e8:ad:05:da:51:25:3f:5e:97:22:70:34:75:21:18:13:7b:5d:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:21 2024 GMT
Not After : Nov 24 17:04:21 2025 GMT
Subject: CN=8C9FB540066E5B7F298CFC5F420ACCBBD42B0C2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:be:92:1d:2d:35:f0:7d:8a:5a:4f:73:61:
24:41:97:ec:d6:f0:92:db:64:77:1a:09:77:77:d5:
f3:dd:9b:1d:f0:9a:d5:ee:7d:d1:01:d8:29:21:45:
3c:47:54:ce:a7:b1:24:72:5d:3b:25:80:24:3b:64:
d1:22:17:c8:cf:cf:a5:c6:58:b5:12:f5:dc:82:eb:
a4:d4:11:1a:92:82:c4:5a:c2:55:28:87:0f:2d:28:
7e:50:42:bc:64:23:a3:da:d5:bf:2a:99:a1:3a:6b:
e6:89:0c:5b:f6:01:4b:b8:78:a9:79:4a:a6:65:af:
b8:8f:9f:fd:02:3a:10:cb:52:2f:e4:0b:d1:20:ed:
b4:0b:23:03:99:a6:a7:ba:ec:d8:be:b3:7d:f1:39:
ce:da:49:c2:78:5b:a8:45:95:37:40:41:1f:33:0f:
94:48:b6:ce:b4:c7:9a:5f:52:b3:06:7f:a6:a8:36:
52:d1:8c:de:f8:4a:42:9e:55:03:95:77:ed:bf:2a:
37:a6:d5:39:1d:af:89:33:63:1f:90:b2:c9:50:7a:
d1:71:02:ae:75:9e:de:b6:e4:6a:2f:7a:66:99:ed:
07:83:63:27:c0:54:ee:66:1f:5c:3c:ba:4b:98:bf:
b7:c8:19:70:ec:95:94:fd:c9:e6:7c:8b:fd:cc:cd:
22:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:9F:B5:40:06:6E:5B:7F:29:8C:FC:5F:42:0A:CC:BB:D4:2B:0C:2C
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3137372e382e3230382e302f32312d3234203d3e203238363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.8.208.0/21
Signature Algorithm: sha256WithRSAEncryption
28:39:37:ce:f3:0e:9d:87:69:9a:b5:89:4b:26:b4:2d:4d:f9:
db:88:59:ff:65:cf:38:90:64:96:e1:77:56:07:1f:b0:0e:bd:
71:6b:c1:e4:2e:2f:6a:bd:88:6b:b0:37:6c:f7:e7:df:a3:bb:
b6:78:72:12:4b:9e:7c:d7:f6:40:3a:6d:83:c5:d0:e1:7d:8b:
ee:0f:0e:78:f6:35:a7:09:d3:08:d3:3f:6e:bb:f9:34:4d:d3:
03:93:1c:2f:fc:c5:4d:b4:61:42:12:8e:9e:0f:21:06:56:54:
b7:dd:b2:60:a5:20:b2:4d:13:29:ed:6f:51:4f:37:22:1e:71:
ec:31:7e:92:0a:a1:97:bb:91:18:ca:bc:f5:28:7a:c3:db:21:
31:c8:d9:b2:f8:41:b5:c0:65:42:52:3b:60:98:53:d5:fb:fe:
2d:04:12:5d:cf:68:10:a0:d7:06:eb:62:7d:49:b1:c0:fe:aa:
7e:b2:38:4e:47:9f:5c:db:76:4b:00:79:e6:33:e3:c0:b6:b8:
63:1f:76:f2:78:91:a1:fd:b6:3d:ea:e9:f1:aa:d2:0b:6e:e8:
59:51:aa:10:70:73:94:99:ba:d2:01:b2:dc:18:7b:d4:1e:6f:
c8:41:04:00:2e:98:7d:2f:ef:f5:61:c7:b3:19:39:dd:dc:d5:
73:d5:51:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:40:31 2025 by rpki-client