Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/3230312e37372e38302e302f32322d3234203d3e203238363436.roa
File: 3230312e37372e38302e302f32322d3234203d3e203238363436.roa (raw, json)
Hash identifier: tdc8/CFNmQ7UpzhDb6WTxw1chgx/28v68kHIXIlLIlg=
Subject key identifier: D4:9C:68:AC:84:D9:8F:83:94:B3:0B:15:B3:EE:36:B9:BC:96:BB:F3
Certificate issuer: /CN=8D41CABF9128C1CBAC4BB641E77B86D13098BC6D
Certificate serial: 40B08C7C893E727FABEF0C7F5BA7314BFE662CEF
Authority key identifier: 8D:41:CA:BF:91:28:C1:CB:AC:4B:B6:41:E7:7B:86:D1:30:98:BC:6D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/3230312e37372e38302e302f32322d3234203d3e203238363436.roa
Signing time: Thu 06 Mar 2025 11:33:11 +0000
ROA not before: Thu 06 Mar 2025 11:28:11 +0000
ROA not after: Thu 05 Mar 2026 11:33:11 +0000
asID: 28646
IP address blocks: 201.77.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.crl
rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 12:20:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:b0:8c:7c:89:3e:72:7f:ab:ef:0c:7f:5b:a7:31:4b:fe:66:2c:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D41CABF9128C1CBAC4BB641E77B86D13098BC6D
Validity
Not Before: Mar 6 11:28:11 2025 GMT
Not After : Mar 5 11:33:11 2026 GMT
Subject: CN=D49C68AC84D98F8394B30B15B3EE36B9BC96BBF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:36:ca:28:cb:de:53:32:db:b4:5a:d6:72:a5:
b9:27:c5:b0:01:4f:22:38:7f:ff:79:8b:7b:a8:4c:
2d:31:4e:25:f6:5b:41:f2:0d:a1:e5:7a:de:a1:e1:
7d:85:70:80:2c:e8:01:e8:92:af:27:59:c5:bc:e3:
48:05:f8:07:33:8c:bb:1e:55:8c:49:23:9b:54:1a:
5c:81:ae:21:e3:c9:16:47:52:b1:66:eb:ec:d6:41:
67:b2:16:1c:19:73:25:1f:83:30:5c:85:5c:dd:4c:
b5:e9:ec:54:c8:6f:e2:f4:ce:20:26:8e:d0:fd:37:
0f:98:c0:e0:bf:84:17:e4:1a:bd:51:dc:47:6d:0e:
b7:00:2c:9a:40:a6:00:24:02:1e:1a:8e:60:de:f8:
a8:d8:b4:3f:3a:f0:9d:0f:93:27:95:08:26:8f:44:
96:e1:0f:79:4a:a7:9d:9b:0b:f3:a7:ea:6f:09:cf:
54:70:85:11:6a:f0:d1:16:cb:6f:94:af:23:ee:0c:
e5:06:6f:33:c0:f6:df:8d:d1:d6:c3:f4:fc:88:86:
de:b1:57:00:63:8f:02:fd:23:b7:5a:44:71:81:36:
62:fb:ce:0d:c4:ec:c6:7f:85:29:5d:2f:d4:7a:2a:
f6:63:04:4c:98:fc:4e:a4:04:f5:16:74:64:2c:dc:
d1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9C:68:AC:84:D9:8F:83:94:B3:0B:15:B3:EE:36:B9:BC:96:BB:F3
X509v3 Authority Key Identifier:
keyid:8D:41:CA:BF:91:28:C1:CB:AC:4B:B6:41:E7:7B:86:D1:30:98:BC:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/3230312e37372e38302e302f32322d3234203d3e203238363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.77.80.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:de:dd:d5:58:40:fe:99:01:ca:81:4e:64:db:50:ec:40:8c:
a5:c4:58:18:6d:f3:f5:d9:79:5d:23:bf:ee:0a:cf:9a:bd:39:
09:6d:59:22:79:7e:78:04:dd:89:fa:ae:83:de:29:46:85:43:
41:a9:66:18:59:b0:cd:7f:99:c0:28:c2:95:50:74:b7:83:4d:
9f:c1:f5:3b:38:c0:24:47:3d:b0:16:83:d2:61:30:5e:ee:c6:
b8:54:84:52:ec:0f:35:7e:30:fd:d3:f6:31:86:cf:4d:de:af:
2e:fd:c4:a5:1c:0d:60:71:a0:e9:86:6f:14:1a:da:6f:94:d2:
24:0f:1e:76:cc:d7:d3:fa:03:df:50:3c:5b:9e:98:b6:40:94:
0d:cc:4a:36:0e:4c:db:e0:98:11:d9:fe:a3:d4:e6:e8:88:f5:
eb:c4:44:76:e7:96:74:03:4b:fe:2d:85:ef:f1:6a:84:45:46:
a4:9a:c6:0c:9b:ae:6f:e9:01:e8:68:29:c0:cd:0c:67:cf:03:
97:79:e6:dd:a8:78:28:8e:2a:99:ff:d1:dc:fd:32:e3:d3:b4:
ef:39:29:fe:7a:18:e2:54:bf:d3:4c:4a:dc:1b:4a:27:67:5c:
51:0e:e8:ec:40:f2:93:75:20:75:c5:b9:c4:0f:26:9c:9d:81:
90:f7:cf:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:21:45 2025 by rpki-client