Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e3132342e38302e302f32302d3234203d3e203238323837.roa
File: 3138392e3132342e38302e302f32302d3234203d3e203238323837.roa (raw, json)
Hash identifier: DaIW7xsfHdZUo0Ao6Qq38nicLZip7i/0VLcuFM8siSg=
Subject key identifier: D3:55:A1:3E:6C:87:CE:B4:0B:0B:C7:54:6A:C8:64:0F:54:08:A0:17
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 66C2114F8CC76EECBDCC408F6045CB88AB92A5EB
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e3132342e38302e302f32302d3234203d3e203238323837.roa
Signing time: Mon 25 Nov 2024 17:04:20 +0000
ROA not before: Mon 25 Nov 2024 16:59:20 +0000
ROA not after: Mon 24 Nov 2025 17:04:20 +0000
asID: 28287
IP address blocks: 189.124.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:c2:11:4f:8c:c7:6e:ec:bd:cc:40:8f:60:45:cb:88:ab:92:a5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:20 2024 GMT
Not After : Nov 24 17:04:20 2025 GMT
Subject: CN=D355A13E6C87CEB40B0BC7546AC8640F5408A017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:83:b2:c6:7b:5f:55:ee:79:5d:7b:d8:f4:
6c:dd:2d:e1:d6:0e:75:f3:d9:70:b0:d2:10:af:ea:
ed:e1:7b:43:1e:c4:b3:44:ae:ef:05:d0:cc:59:90:
15:e8:3f:79:e2:a2:0e:9d:15:45:c1:69:43:5d:83:
3e:c1:c8:36:aa:c5:cb:03:d8:50:6a:be:d9:03:0c:
51:d6:9b:c2:ce:eb:61:9e:ed:08:ac:6e:1a:78:f6:
44:67:bd:69:51:99:58:d0:24:28:49:48:6f:02:28:
25:54:aa:62:76:29:ab:2f:e5:40:fc:88:f6:35:87:
d0:74:4d:c7:64:2f:88:c9:27:5f:fe:19:1c:5d:dc:
64:dc:d7:cd:ff:30:83:e7:1f:32:ba:c6:25:55:74:
13:39:e1:92:3d:0e:82:87:06:dc:d4:f9:17:b8:c2:
61:25:69:07:f0:d5:0f:9d:bc:b4:81:64:b3:a5:a9:
86:0a:a9:d9:a6:ea:fc:bd:9c:87:c0:e0:ad:34:d8:
45:35:03:b9:85:1e:d3:e6:d6:6f:1c:75:74:cb:fc:
4d:88:fc:c6:38:c8:32:89:d3:8b:1f:a5:07:f6:f2:
4b:96:5d:47:f8:2c:9b:51:f9:b9:88:ce:64:a7:bd:
24:ce:7f:25:ea:00:27:b4:63:c5:6a:e7:94:a4:fd:
33:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:55:A1:3E:6C:87:CE:B4:0B:0B:C7:54:6A:C8:64:0F:54:08:A0:17
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e3132342e38302e302f32302d3234203d3e203238323837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.124.80.0/20
Signature Algorithm: sha256WithRSAEncryption
70:77:66:21:f3:05:70:52:0a:45:d1:d5:25:95:df:6e:5e:0d:
26:00:9a:be:8b:38:5a:6b:ad:0a:96:4d:ae:09:cf:bc:b7:c4:
e5:28:48:aa:c1:aa:72:11:72:cd:40:22:a5:32:c7:6a:b9:03:
aa:ab:9a:ec:2a:a9:1d:0e:e3:55:ec:ce:ce:23:32:93:aa:aa:
bd:95:f5:6e:eb:ca:91:01:11:8f:95:12:86:e8:f2:29:e2:b7:
ac:72:4d:3a:1f:00:57:6f:6d:ac:56:10:f1:ea:56:d9:3b:6f:
b8:68:e6:16:b3:54:41:b2:ea:e6:d9:df:60:64:a3:3a:f4:53:
d8:ba:44:8f:d3:42:6c:87:d0:58:78:ca:90:99:15:b7:fd:30:
cd:eb:13:1d:df:62:bc:15:e9:50:43:ad:27:3f:8e:34:a2:ac:
51:5c:6c:b8:f9:fc:7e:21:fb:79:88:73:77:17:ad:a2:f3:71:
80:63:20:9a:28:77:75:f3:92:1c:8a:ad:ec:5d:b2:cd:71:a2:
22:d5:41:67:28:b8:c3:ce:42:2f:a8:8a:d2:e1:f9:29:80:38:
8b:c0:d0:c1:ed:3a:5c:2d:75:e3:04:96:d2:99:05:67:be:d0:
ad:3e:17:56:b9:9b:89:36:8c:80:e2:3d:07:f2:9d:c5:c3:e0:
76:33:b9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:22:57 2025 by rpki-client