Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e37362e3132382e302f32302d3234203d3e203238363637.roa
File: 3138392e37362e3132382e302f32302d3234203d3e203238363637.roa (raw, json)
Hash identifier: yFwFVdqhxY7PYETjGbfHvUQYbJ8ZXAQ9Ykfq/CAhKSE=
Subject key identifier: 45:FE:54:5E:FC:6E:A3:79:B7:E7:F8:C0:E1:65:50:9C:DE:B5:20:DE
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 2FF5E35F3D02D189737512FF58081B47BB0EC039
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e37362e3132382e302f32302d3234203d3e203238363637.roa
Signing time: Mon 25 Nov 2024 17:03:43 +0000
ROA not before: Mon 25 Nov 2024 16:58:43 +0000
ROA not after: Mon 24 Nov 2025 17:03:43 +0000
asID: 28667
IP address blocks: 189.76.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:f5:e3:5f:3d:02:d1:89:73:75:12:ff:58:08:1b:47:bb:0e:c0:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:58:43 2024 GMT
Not After : Nov 24 17:03:43 2025 GMT
Subject: CN=45FE545EFC6EA379B7E7F8C0E165509CDEB520DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2e:a7:ea:9f:6e:cc:f2:0a:45:44:d2:bd:3e:
6b:be:73:1a:08:33:0c:d0:20:ca:f0:cd:2d:2c:28:
0b:47:62:7f:21:6f:bc:b9:a8:db:ee:50:67:7c:93:
69:4f:b0:36:0c:ff:4f:4e:38:32:56:94:4e:25:b3:
81:0d:b3:64:29:52:53:1d:8d:03:0f:da:91:63:fd:
ca:06:78:27:30:3f:97:84:97:1b:cc:85:c8:d8:b0:
30:91:66:d3:1e:84:ed:33:3c:8e:99:94:a6:6d:a8:
15:52:d6:14:83:19:12:34:d6:35:e4:d9:a3:65:72:
4c:d5:fc:bc:58:85:6a:4c:af:b0:39:ad:00:20:27:
9a:be:e5:18:ec:3c:2b:3c:93:60:6b:50:7e:a5:73:
a9:e8:b2:fc:3c:e1:0d:95:81:39:ea:52:e1:e1:d4:
22:2b:b8:61:e2:fa:09:8e:41:27:07:3e:c4:f4:da:
b6:a2:0d:ab:f0:af:dc:26:37:44:6c:f3:04:2e:d9:
95:90:f1:ce:1a:f1:02:68:88:8f:35:47:24:ce:c9:
fc:74:b9:e3:98:4c:6b:b8:9f:25:8e:74:91:98:4a:
ba:01:bc:a1:3f:7e:3d:30:78:71:bc:c7:fa:e4:79:
c9:94:75:0c:ab:a2:4d:c6:c8:a9:21:0b:5a:06:ae:
49:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FE:54:5E:FC:6E:A3:79:B7:E7:F8:C0:E1:65:50:9C:DE:B5:20:DE
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3138392e37362e3132382e302f32302d3234203d3e203238363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.76.128.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:63:b6:81:f0:59:c0:86:a1:8a:0a:93:f8:65:25:bd:1d:1d:
19:7f:d2:25:b8:aa:dc:27:b2:da:aa:b1:e1:15:c1:84:18:59:
6c:d1:ac:fe:59:2e:fb:8c:02:c0:99:31:70:83:97:c6:d6:cb:
c5:ac:3a:eb:37:af:d4:d1:4a:8b:42:f3:0d:7c:90:79:4e:3c:
fc:a8:24:da:ae:3a:d6:3c:c5:17:52:23:99:4a:88:45:4c:b3:
2d:6a:84:57:ca:b2:f0:3e:52:90:2c:99:e8:d6:a5:52:7f:dd:
55:89:4e:14:d7:71:18:53:ad:5f:df:fc:37:79:98:29:a4:14:
23:aa:b3:20:b1:1f:76:91:20:38:ab:2b:56:1b:ad:eb:cf:b3:
d5:90:d8:34:5e:16:5b:a1:4a:a8:0f:5a:4c:b5:4c:2c:8a:d8:
83:dd:55:f8:38:04:2b:89:fe:5f:03:67:bf:61:b0:db:12:1e:
5e:3d:a5:c3:fe:7f:17:17:d8:37:1a:6d:37:74:7b:44:23:82:
ae:6b:01:19:29:fd:25:c9:6f:94:08:fe:64:30:8f:af:0a:e6:
ed:9d:78:82:66:85:00:6d:dd:04:49:19:8d:9e:62:14:17:b9:
54:95:e8:02:62:c9:31:45:2c:ce:71:ff:a3:96:75:47:2b:d5:
f6:20:95:66
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUL/XjXz0C0YlzdRL/WAgbR7sOwDkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkE0MTM5MjcwMDFFMjlGNEQxOEEwQzBGQ0UxQzQ2Nzky
NEVBMUI2QjAeFw0yNDExMjUxNjU4NDNaFw0yNTExMjQxNzAzNDNaMDMxMTAvBgNV
BAMTKDQ1RkU1NDVFRkM2RUEzNzlCN0U3RjhDMEUxNjU1MDlDREVCNTIwREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPLqfqn27M8gpFRNK9Pmu+cxoI
MwzQIMrwzS0sKAtHYn8hb7y5qNvuUGd8k2lPsDYM/09OODJWlE4ls4ENs2QpUlMd
jQMP2pFj/coGeCcwP5eElxvMhcjYsDCRZtMehO0zPI6ZlKZtqBVS1hSDGRI01jXk
2aNlckzV/LxYhWpMr7A5rQAgJ5q+5RjsPCs8k2BrUH6lc6nosvw84Q2VgTnqUuHh
1CIruGHi+gmOQScHPsT02raiDavwr9wmN0Rs8wQu2ZWQ8c4a8QJoiI81RyTOyfx0
ueOYTGu4nyWOdJGYSroBvKE/fj0weHG8x/rkecmUdQyrok3GyKkhC1oGrkknAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQURf5UXvxuo3m35/jA4WVQnN61IN4wHwYDVR0j
BBgwFoAUukE5JwAeKfTRigwPzhxGeSTqG2swDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOHI5OHZaMU5BektKS1FtSEpNQWppcG9NbVlMNmdaYjVSM2doWEdEbWNG
R04vMy9CQTQxMzkyNzAwMUUyOUY0RDE4QTBDMEZDRTFDNDY3OTI0RUExQjZCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBNDEzOTI3MDAxRTI5RjRE
MThBMEMwRkNFMUM0Njc5MjRFQTFCNkIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhyOTh2WjFOQXpLSktRbUhKTUFqaXBvTW1ZTDZnWmI1UjNnaFhHRG1jRkdOLzMv
MzEzODM5MmUzNzM2MmUzMTMyMzgyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzMjM4
MzYzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQEvUyAMA0GCSqGSIb3DQEBCwUAA4IBAQCOY7aB8FnA
hqGKCpP4ZSW9HR0Zf9IluKrcJ7LaqrHhFcGEGFls0az+WS77jALAmTFwg5fG1svF
rDrrN6/U0UqLQvMNfJB5Tjz8qCTarjrWPMUXUiOZSohFTLMtaoRXyrLwPlKQLJno
1qVSf91ViU4U13EYU61f3/w3eZgppBQjqrMgsR92kSA4qytWG63rz7PVkNg0XhZb
oUqoD1pMtUwsitiD3VX4OAQrif5fA2e/YbDbEh5ePaXD/n8XF9g3Gm03dHtEI4Ku
awEZKf0lyW+UCP5kMI+vCubtnXiCZoUAbd0ESRmNnmIUF7lUlegCYskxRSzOcf+j
lnVHK9X2IJVm
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:11:22 2025 by rpki-client