Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a323562633a3a2f33322d3438203d3e20323634323939.roa
File: 323830343a323562633a3a2f33322d3438203d3e20323634323939.roa (raw, json)
Hash identifier: EWZzxrgl0LjYJicOi7pHU7KoWeymqUP11XdAspD2bfA=
Subject key identifier: 9E:45:C3:4B:19:C6:E1:5C:ED:78:40:0F:F5:6D:23:26:E9:3B:EE:6F
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 7DA5EEB54B9F9971D157925D8923761F7A83D21A
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a323562633a3a2f33322d3438203d3e20323634323939.roa
Signing time: Mon 25 Nov 2024 17:03:59 +0000
ROA not before: Mon 25 Nov 2024 16:58:59 +0000
ROA not after: Mon 24 Nov 2025 17:03:59 +0000
asID: 264299
IP address blocks: 2804:25bc::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:a5:ee:b5:4b:9f:99:71:d1:57:92:5d:89:23:76:1f:7a:83:d2:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:58:59 2024 GMT
Not After : Nov 24 17:03:59 2025 GMT
Subject: CN=9E45C34B19C6E15CED78400FF56D2326E93BEE6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:82:79:d0:db:dc:39:ba:c5:da:90:26:3f:5c:
67:93:68:19:5d:d5:eb:79:df:84:b3:b2:25:1d:94:
84:c1:24:eb:5c:19:ea:12:0d:0e:ce:f0:1c:92:88:
ce:cb:e8:58:8f:bb:6e:78:c6:3c:c3:ba:80:f9:fc:
7c:13:6f:ae:26:c4:eb:52:5d:c1:86:08:c7:ff:e4:
99:c1:7a:89:60:91:af:00:a6:ec:9e:42:a7:c8:aa:
2a:c3:06:85:57:1e:ae:32:11:27:4a:44:e5:71:11:
c9:7b:53:68:a7:32:de:d8:74:f7:55:6e:f1:68:bd:
70:1f:ca:91:dc:f4:b1:6a:cb:c9:3c:46:b6:6c:36:
3a:8d:47:18:54:2d:83:a7:da:b7:7e:c3:2d:32:de:
91:4a:05:4c:12:30:1a:52:41:6e:e6:2e:32:20:27:
f5:68:3b:f1:3b:c9:a6:2f:66:ad:00:e0:d2:66:61:
09:39:49:dc:7e:87:be:4c:04:86:79:b9:9f:cf:6a:
6b:9e:dc:4e:e7:e3:3f:eb:c1:29:c2:4e:5b:27:c9:
34:b9:22:9b:86:24:79:b7:b9:df:22:b8:84:ec:56:
e9:61:7c:f8:e5:7b:72:19:03:a3:47:bd:89:d0:7e:
5a:5d:a6:8f:63:20:38:27:59:86:71:5a:34:c2:df:
6d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:45:C3:4B:19:C6:E1:5C:ED:78:40:0F:F5:6D:23:26:E9:3B:EE:6F
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a323562633a3a2f33322d3438203d3e20323634323939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:25bc::/32
Signature Algorithm: sha256WithRSAEncryption
b0:d4:59:25:52:c2:d1:ad:0b:83:56:7b:e1:3d:3f:ac:2c:a3:
5a:b8:20:5d:01:d1:ad:5a:a8:9f:3d:2f:d0:f5:71:45:5f:cd:
9f:09:e7:ac:9d:07:7b:cf:3c:d7:2b:43:54:14:eb:88:22:ef:
12:a1:54:dc:cf:83:e9:4b:03:fe:83:84:33:7e:be:40:ed:97:
15:21:51:2b:65:71:8a:3c:56:1e:58:f1:71:28:b8:76:67:3e:
f7:3c:4f:04:18:e8:76:27:02:ec:31:5e:19:a0:41:e2:0d:ea:
c3:25:3d:bb:94:b2:cf:f8:e5:e2:94:91:62:1b:fc:ae:92:e6:
7a:89:95:92:f1:7d:46:c9:9c:f1:ad:87:ab:9d:4f:bf:59:a6:
ec:42:09:d9:ac:36:db:18:1a:ea:a7:50:5d:a2:99:61:87:ed:
7c:f9:02:e0:6f:44:6e:01:d0:10:86:c6:3c:c3:36:6e:2e:af:
f3:a4:53:5f:f8:3e:c1:be:d7:fd:80:88:f4:48:19:4e:5e:e3:
87:75:15:c1:0a:fc:a5:af:85:68:53:e2:4f:d2:81:21:47:e2:
cc:d4:26:e6:b0:bc:4e:47:06:ef:9d:48:c3:6f:02:54:e3:71:
96:db:5f:b8:1b:38:1d:80:5d:b9:89:d2:e0:b6:57:6a:be:4d:
f7:52:df:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:31:16 2025 by rpki-client