Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a313038303a3a2f33322d3438203d3e203238323837.roa
File: 323830343a313038303a3a2f33322d3438203d3e203238323837.roa (raw, json)
Hash identifier: cPp4xiTBoTTqA7glFtfwMWeJzqVIGrS0YaGFVNgs0gw=
Subject key identifier: 9F:0A:4B:5B:87:09:67:38:59:18:20:08:94:1A:2A:A5:CA:24:B5:99
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 087E40876F220442F062B4118AD6DA76A5319BF9
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a313038303a3a2f33322d3438203d3e203238323837.roa
Signing time: Mon 25 Nov 2024 17:04:08 +0000
ROA not before: Mon 25 Nov 2024 16:59:08 +0000
ROA not after: Mon 24 Nov 2025 17:04:08 +0000
asID: 28287
IP address blocks: 2804:1080::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:7e:40:87:6f:22:04:42:f0:62:b4:11:8a:d6:da:76:a5:31:9b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:08 2024 GMT
Not After : Nov 24 17:04:08 2025 GMT
Subject: CN=9F0A4B5B8709673859182008941A2AA5CA24B599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:0e:b0:82:31:56:ed:f0:80:fc:82:73:56:
5c:67:7d:7a:39:ec:10:1f:06:20:ba:6d:72:00:17:
4f:de:ff:04:75:be:af:68:6e:d3:25:f8:7c:27:16:
04:db:ee:ff:66:a9:55:c4:c9:bc:0b:55:70:8d:3b:
28:26:20:8c:16:e7:94:62:07:56:4d:73:1b:eb:f0:
0e:66:fb:f8:9e:f4:24:54:94:f5:2a:c7:e0:02:78:
29:cf:e1:3c:00:9b:4b:d6:96:4d:79:97:9b:c0:42:
54:5c:0f:7a:75:50:42:2f:72:c6:85:1e:53:25:80:
f8:a7:0a:1b:2c:c1:37:81:6d:e2:40:c1:78:4f:fb:
b9:4a:35:33:c3:02:d8:31:c2:0a:01:65:b7:10:7d:
44:18:df:9e:18:0b:49:a4:65:15:79:25:ee:cc:78:
9d:25:2c:54:31:42:a3:ff:fc:34:87:27:b7:df:e4:
aa:77:d2:47:82:97:15:bc:ed:a1:9d:4f:7d:c9:00:
4d:70:33:44:5f:31:24:bd:ee:7c:84:ba:69:fc:1a:
8e:85:ee:99:ae:d1:30:06:2a:c5:41:97:48:92:85:
57:33:eb:13:37:77:67:80:43:1c:e2:d0:f4:b1:bc:
1d:c0:a3:6b:bc:3c:c0:74:b9:97:89:ac:a0:38:e1:
d9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0A:4B:5B:87:09:67:38:59:18:20:08:94:1A:2A:A5:CA:24:B5:99
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a313038303a3a2f33322d3438203d3e203238323837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1080::/32
Signature Algorithm: sha256WithRSAEncryption
a5:bb:a9:7b:95:f7:ff:cd:48:69:d2:67:f8:ed:8c:44:60:50:
15:66:e4:1f:51:78:06:02:fb:c2:4c:01:b1:3b:68:17:7d:8c:
9b:83:0a:a7:6d:6e:ee:6f:3b:ee:2a:a7:7c:25:36:4a:ef:7c:
3c:dc:a7:95:35:11:be:0d:83:bd:6e:48:59:8b:7e:6d:c5:97:
f0:bd:1b:0c:d4:f6:f0:b2:42:5c:47:15:a6:fe:c4:5b:f2:99:
43:31:06:ae:ba:cb:36:2d:ec:f4:1e:34:e3:20:66:fb:21:f7:
d4:03:60:e1:e2:64:07:37:fe:9b:4e:01:48:e1:3e:fe:36:7b:
34:8f:e7:72:52:47:f2:16:4c:97:b3:d0:c4:a1:71:a0:ec:60:
ba:08:8d:e7:51:39:e7:37:7f:9b:8c:86:df:7f:72:a4:f5:10:
82:a5:7a:05:10:f1:ad:55:b2:2c:d6:c3:3f:8f:ea:0c:5f:65:
b9:db:c9:97:64:f1:5c:0b:34:4a:14:0c:4a:83:6e:86:17:30:
b0:1d:25:82:cf:83:90:bb:0d:61:db:bb:e2:75:c5:c2:c8:8f:
6d:18:bc:aa:9e:99:24:ad:6b:13:a3:cb:10:65:dd:49:ab:6a:
eb:0e:09:82:95:1f:c0:ad:db:e5:be:9c:76:85:05:a4:35:2d:
8b:05:bf:a7
-----BEGIN CERTIFICATE-----
MIIFRDCCBCygAwIBAgIUCH5Ah28iBELwYrQRitbadqUxm/kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkE0MTM5MjcwMDFFMjlGNEQxOEEwQzBGQ0UxQzQ2Nzky
NEVBMUI2QjAeFw0yNDExMjUxNjU5MDhaFw0yNTExMjQxNzA0MDhaMDMxMTAvBgNV
BAMTKDlGMEE0QjVCODcwOTY3Mzg1OTE4MjAwODk0MUEyQUE1Q0EyNEI1OTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC95A6wgjFW7fCA/IJzVlxnfXo5
7BAfBiC6bXIAF0/e/wR1vq9obtMl+HwnFgTb7v9mqVXEybwLVXCNOygmIIwW55Ri
B1ZNcxvr8A5m+/ie9CRUlPUqx+ACeCnP4TwAm0vWlk15l5vAQlRcD3p1UEIvcsaF
HlMlgPinChsswTeBbeJAwXhP+7lKNTPDAtgxwgoBZbcQfUQY354YC0mkZRV5Je7M
eJ0lLFQxQqP//DSHJ7ff5Kp30keClxW87aGdT33JAE1wM0RfMSS97nyEumn8Go6F
7pmu0TAGKsVBl0iShVcz6xM3d2eAQxzi0PSxvB3Ao2u8PMB0uZeJrKA44dl5AgMB
AAGjggJOMIICSjAdBgNVHQ4EFgQUnwpLW4cJZzhZGCAIlBoqpcoktZkwHwYDVR0j
BBgwFoAUukE5JwAeKfTRigwPzhxGeSTqG2swDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOHI5OHZaMU5BektKS1FtSEpNQWppcG9NbVlMNmdaYjVSM2doWEdEbWNG
R04vMy9CQTQxMzkyNzAwMUUyOUY0RDE4QTBDMEZDRTFDNDY3OTI0RUExQjZCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0JBNDEzOTI3MDAxRTI5RjRE
MThBMEMwRkNFMUM0Njc5MjRFQTFCNkIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhyOTh2WjFOQXpLSktRbUhKTUFqaXBvTW1ZTDZnWmI1UjNnaFhHRG1jRkdOLzMv
MzIzODMwMzQzYTMxMzAzODMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzODMy
MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB
/wQRMA8wDQQCAAIwBwMFACgEEIAwDQYJKoZIhvcNAQELBQADggEBAKW7qXuV9//N
SGnSZ/jtjERgUBVm5B9ReAYC+8JMAbE7aBd9jJuDCqdtbu5vO+4qp3wlNkrvfDzc
p5U1Eb4Ng71uSFmLfm3Fl/C9GwzU9vCyQlxHFab+xFvymUMxBq66yzYt7PQeNOMg
Zvsh99QDYOHiZAc3/ptOAUjhPv42ezSP53JSR/IWTJez0MShcaDsYLoIjedROec3
f5uMht9/cqT1EIKlegUQ8a1VsizWwz+P6gxfZbnbyZdk8VwLNEoUDEqDboYXMLAd
JYLPg5C7DWHbu+J1xcLIj20YvKqemSStaxOjyxBl3UmrausOCYKVH8Ct2+W+nHaF
BaQ1LYsFv6c=
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:23:38 2025 by rpki-client