Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3139312e372e32382e302f32322d3234203d3e203532393430.roa
File: 3139312e372e32382e302f32322d3234203d3e203532393430.roa (raw, json)
Hash identifier: s3ltVMoHYI177ALNDAMxIBcqzKO1e308AqnjTrUTCr8=
Subject key identifier: AE:64:62:00:16:6E:93:08:7E:38:F6:0E:45:8A:5D:55:A7:BD:F6:D2
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 587DD92F812A1C31DEF352F38ADE91B49828B24D
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3139312e372e32382e302f32322d3234203d3e203532393430.roa
Signing time: Mon 25 Nov 2024 17:04:16 +0000
ROA not before: Mon 25 Nov 2024 16:59:16 +0000
ROA not after: Mon 24 Nov 2025 17:04:16 +0000
asID: 52940
IP address blocks: 191.7.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:7d:d9:2f:81:2a:1c:31:de:f3:52:f3:8a:de:91:b4:98:28:b2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:16 2024 GMT
Not After : Nov 24 17:04:16 2025 GMT
Subject: CN=AE646200166E93087E38F60E458A5D55A7BDF6D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:48:ab:75:95:7e:3e:6e:1d:6c:16:e5:81:9e:
4a:23:5d:bd:49:41:7f:7e:a5:d9:ad:f2:97:f7:f2:
23:3e:4f:5a:80:68:8e:e6:84:90:01:d3:86:e8:e9:
09:cf:df:3f:62:5a:56:b4:6a:ed:0f:08:d3:37:21:
c3:f9:f3:ea:9f:be:8c:db:f5:86:12:7b:22:57:8a:
9c:5c:3d:be:c2:e3:e5:41:78:ec:ed:fa:7a:50:ca:
6e:88:b9:29:83:36:8f:7f:35:5b:30:3c:b2:97:45:
f6:ae:34:a7:a8:e8:62:54:5b:3e:a8:8e:9c:7f:68:
f0:e6:5e:ac:8a:ac:c0:8d:b2:03:e2:a9:80:1f:4b:
c2:53:73:de:e2:a7:10:e8:5c:98:49:50:fa:62:e8:
6f:c8:41:af:8e:66:c9:7a:c8:a6:76:fc:f0:5e:e4:
02:bf:bd:fa:81:83:f8:ed:2f:d1:12:fa:8c:0d:4e:
4d:e2:3d:c2:ca:2f:a9:b7:16:96:e2:e1:46:c7:3b:
5c:f1:44:e9:5c:e3:a1:52:8e:4f:b4:14:df:06:02:
cc:c1:e2:35:f2:6a:e8:83:b8:8b:33:e5:33:cd:df:
64:bf:68:3b:5e:6b:18:f5:3f:7d:92:7e:21:70:e4:
15:09:23:1d:a0:24:df:30:e8:57:8c:9c:32:a9:50:
47:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:64:62:00:16:6E:93:08:7E:38:F6:0E:45:8A:5D:55:A7:BD:F6:D2
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/3139312e372e32382e302f32322d3234203d3e203532393430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.7.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:1b:5c:39:c7:10:65:2f:7d:e8:55:61:f9:f6:e0:09:6d:ad:
72:a7:48:9d:7f:79:d0:73:8c:8d:f2:50:80:67:cd:d5:0e:70:
4f:fa:24:66:6c:5c:5f:1a:58:fb:6f:e3:8d:89:85:55:78:cf:
8d:51:f6:13:8f:d7:fa:89:aa:20:56:f2:24:15:63:56:c3:96:
e8:89:41:6d:0d:31:58:5b:73:95:60:81:0a:94:e1:01:4b:fa:
96:1b:ae:4c:b1:4b:47:95:f9:63:bd:c3:88:0e:3b:b8:0f:d3:
fb:af:f6:75:98:76:6d:0a:d4:bd:9c:ad:4c:bf:46:e6:29:7a:
eb:b0:c5:9c:8f:91:92:05:f6:20:25:15:60:45:bc:32:d7:14:
31:99:39:27:b7:56:56:b6:2c:bf:e0:ec:e3:37:92:4e:88:19:
b2:5d:6b:40:ea:3a:9e:1e:ae:b2:d2:d8:bb:3d:57:69:82:0b:
8a:9d:6b:71:32:3e:53:2e:b4:b9:b6:0e:d0:61:bd:7e:78:13:
9b:1d:b8:ab:e2:d8:a9:bc:07:11:8e:74:f5:16:49:19:79:fb:
f6:38:c5:b5:8c:d2:1a:45:eb:5f:42:19:e5:c3:4c:f3:e7:b6:
fd:1d:20:19:a4:1e:e4:fa:05:b2:7e:e9:9b:d6:eb:5c:63:b7:
e9:33:98:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:29:30 2025 by rpki-client