Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a346265633a3a2f33322d3438203d3e203238363639.roa
File: 323830343a346265633a3a2f33322d3438203d3e203238363639.roa (raw, json)
Hash identifier: O+bcqma7+VtRS4VbSg4SqDf2H6aU20yYH01WJ1xzttk=
Subject key identifier: 62:18:C4:14:85:5D:FA:85:21:BF:B8:48:76:C6:F3:1E:63:78:78:9C
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 20DA699912B9FA6973D2F241F4E8A94D4CF0CDA9
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a346265633a3a2f33322d3438203d3e203238363639.roa
Signing time: Mon 25 Nov 2024 17:03:39 +0000
ROA not before: Mon 25 Nov 2024 16:58:39 +0000
ROA not after: Mon 24 Nov 2025 17:03:39 +0000
asID: 28669
IP address blocks: 2804:4bec::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:da:69:99:12:b9:fa:69:73:d2:f2:41:f4:e8:a9:4d:4c:f0:cd:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:58:39 2024 GMT
Not After : Nov 24 17:03:39 2025 GMT
Subject: CN=6218C414855DFA8521BFB84876C6F31E6378789C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4a:56:5a:1e:17:f8:fb:d3:ce:eb:a3:21:36:
08:b5:73:73:ac:01:66:8c:7c:83:a4:80:24:ed:12:
6a:06:49:8a:fd:d8:00:f8:29:3d:7a:63:1a:6e:73:
be:3b:9a:95:c1:24:fb:73:10:93:fe:c2:89:e6:60:
9d:0e:71:96:65:9d:61:48:75:a5:c6:7d:82:70:25:
e0:45:7c:6c:76:61:43:bc:44:a8:7b:92:44:33:23:
1e:71:e8:31:10:e6:c3:1f:1d:7d:28:5c:75:59:db:
c9:b4:bc:98:9f:f2:4a:90:20:7c:b5:3c:1c:2d:03:
14:ce:aa:61:49:af:9e:8b:c1:f5:13:74:6e:71:4b:
33:00:91:35:bf:04:a7:e8:79:91:36:f8:c2:df:36:
5e:ac:61:73:a0:ef:36:fb:40:3f:a7:3b:e3:f4:29:
d7:ab:f1:7f:10:51:18:1c:83:7c:b4:1a:44:f7:6a:
de:c1:66:8e:ed:76:2a:1d:99:5d:1d:19:9c:63:05:
57:0e:5b:27:07:01:70:fc:fc:4a:40:4f:07:10:48:
aa:d4:59:5f:19:5b:ac:c1:87:7c:09:65:ec:5a:53:
76:83:41:e9:1a:61:76:01:f6:90:65:fc:ad:ac:bc:
e4:f2:21:c5:67:50:40:c9:af:f7:b4:89:dd:39:1f:
95:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:18:C4:14:85:5D:FA:85:21:BF:B8:48:76:C6:F3:1E:63:78:78:9C
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a346265633a3a2f33322d3438203d3e203238363639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:4bec::/32
Signature Algorithm: sha256WithRSAEncryption
ab:10:fe:70:f7:c3:d0:14:ed:a9:c4:f9:fe:01:c9:50:87:84:
79:e5:52:6e:e9:5f:f1:cd:85:27:b8:d8:4d:37:6e:d2:f3:d1:
4e:d0:b1:2c:8d:76:4d:e3:4b:15:b1:4d:f5:2d:1f:81:df:ca:
c7:4e:13:11:8a:18:4c:1b:2a:46:f4:25:ee:64:4e:ba:49:5d:
33:56:65:03:1e:0f:17:75:09:cf:16:0c:1e:f6:99:a8:21:0b:
88:57:d9:9f:67:13:1e:d4:93:80:46:84:65:e0:1a:4e:f0:91:
98:ae:be:51:78:1a:f1:27:57:9f:79:57:3d:07:84:ed:80:d4:
53:18:f1:7c:74:81:f3:fc:7f:4f:8a:f4:9d:c4:7c:12:0b:16:
62:e2:29:a5:f8:87:09:e3:ee:01:e9:c6:25:3a:d1:13:4f:d7:
ce:ef:a9:e6:c8:4f:e3:db:a8:ab:10:64:b2:b5:a6:25:cd:a9:
a6:f0:b7:0f:e2:97:76:f7:4e:95:29:08:6f:98:ad:ce:00:5a:
b2:ae:2c:34:5d:04:2d:17:b5:ca:93:79:00:eb:9f:8b:57:24:
dd:b9:fa:24:3f:43:47:1e:02:f2:83:96:54:c3:db:60:d7:20:
46:6d:64:37:21:11:24:d0:4e:f8:7a:25:4f:7e:62:b2:0f:e6:
28:f7:7a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 16:43:24 2025 by rpki-client