Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a35383a3a2f33322d3438203d3e20323632363539.roa
File: 323830343a35383a3a2f33322d3438203d3e20323632363539.roa (raw, json)
Hash identifier: eDgXgYxnuxXoFMgrUSrLXU2xPbsrkivBiBdYP0em2BY=
Subject key identifier: E3:A7:CA:7E:CC:24:AE:9C:D1:DE:EF:E9:48:E1:15:87:08:28:A0:0A
Certificate issuer: /CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Certificate serial: 4F8024444AC0710F3BBD73EB787ABA9363DE1147
Authority key identifier: BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a35383a3a2f33322d3438203d3e20323632363539.roa
Signing time: Mon 25 Nov 2024 17:04:01 +0000
ROA not before: Mon 25 Nov 2024 16:59:01 +0000
ROA not after: Mon 24 Nov 2025 17:04:01 +0000
asID: 262659
IP address blocks: 2804:58::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:80:24:44:4a:c0:71:0f:3b:bd:73:eb:78:7a:ba:93:63:de:11:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA413927001E29F4D18A0C0FCE1C467924EA1B6B
Validity
Not Before: Nov 25 16:59:01 2024 GMT
Not After : Nov 24 17:04:01 2025 GMT
Subject: CN=E3A7CA7ECC24AE9CD1DEEFE948E115870828A00A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:1b:94:7a:29:08:85:8c:26:e3:70:c4:76:
8e:3e:8d:1e:37:38:45:52:9d:ef:57:08:5d:16:0a:
95:33:c0:9e:e1:12:03:54:86:a7:80:eb:b2:c5:db:
17:4c:90:f7:9e:4a:12:2d:b9:0f:d4:bb:64:0a:e1:
6e:75:a5:01:40:d3:10:e9:e2:c1:cd:41:f8:42:0c:
cb:30:ed:45:1a:42:72:65:49:7c:96:47:22:1d:d7:
5f:47:42:3c:71:8a:17:81:ef:a5:21:64:df:eb:61:
40:a8:da:a8:b9:45:5e:8b:1f:b1:49:67:9a:b5:62:
c0:37:de:ae:08:44:ad:30:18:80:1a:a5:44:b0:ed:
01:61:0d:15:ca:61:da:16:aa:7e:64:8c:d4:89:e9:
41:c9:31:df:fe:98:ba:c6:48:25:54:2b:d6:03:8a:
4d:f5:9c:e3:85:85:d4:fa:88:c8:53:82:c5:c1:be:
77:53:42:30:40:54:5a:f6:35:6a:99:ff:2e:7b:f3:
c0:0e:cc:b6:99:45:20:db:6f:68:d5:c8:b8:03:d8:
08:7a:22:08:f1:2b:43:2d:27:a6:e8:6f:e4:41:d3:
da:55:71:84:ab:15:43:3f:ae:00:54:80:19:6f:4a:
a9:55:ca:90:4a:c9:28:89:00:1b:ad:dc:70:34:37:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A7:CA:7E:CC:24:AE:9C:D1:DE:EF:E9:48:E1:15:87:08:28:A0:0A
X509v3 Authority Key Identifier:
keyid:BA:41:39:27:00:1E:29:F4:D1:8A:0C:0F:CE:1C:46:79:24:EA:1B:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BA413927001E29F4D18A0C0FCE1C467924EA1B6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8r98vZ1NAzKJKQmHJMAjipoMmYL6gZb5R3ghXGDmcFGN/3/323830343a35383a3a2f33322d3438203d3e20323632363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:58::/32
Signature Algorithm: sha256WithRSAEncryption
a1:e3:51:23:c3:95:d5:6f:e3:ab:65:bc:29:b5:08:06:83:50:
b1:7d:f3:05:a9:c3:aa:0a:4d:5b:e3:47:e1:29:c8:54:31:f5:
70:d9:d9:c4:00:57:f4:b8:4d:f9:8b:4d:fc:e4:88:ac:e4:62:
44:64:1c:71:9c:fa:6b:de:82:11:06:2d:36:1d:3d:7f:08:61:
92:e7:8e:2d:fb:1b:59:a9:a4:d3:d9:13:c8:74:14:f8:37:8b:
51:58:f6:8c:98:7d:54:fe:32:ae:1f:02:e9:eb:6f:2a:8f:a5:
ff:05:a6:bf:ca:eb:6d:1e:45:15:f4:ff:f0:26:64:b8:06:58:
f8:4f:48:1c:39:0a:f1:80:1e:76:39:d0:98:21:9b:dd:61:9f:
16:af:fa:04:c7:48:7e:98:64:e4:9d:46:2f:d6:4c:48:8e:cc:
15:96:ee:7f:b1:1e:1b:19:2a:e8:c6:3c:72:d9:2a:d5:fe:d5:
a9:6d:69:b8:ec:0b:37:ba:78:97:90:e5:64:0b:a1:df:11:51:
be:c3:be:03:5a:ed:81:f6:01:4e:28:bf:eb:7c:3f:57:aa:01:
08:33:3a:9d:b2:51:dd:1e:05:5a:64:73:82:a0:3a:15:7d:8a:
44:c4:66:59:5a:6c:b1:22:dc:1d:af:76:6c:71:eb:0b:36:f9:
aa:50:da:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:02:12 2025 by rpki-client