Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/323830313a38303a323030303a3a2f34302d3438203d3e203238363436.roa
File: 323830313a38303a323030303a3a2f34302d3438203d3e203238363436.roa (raw, json)
Hash identifier: 02/U8v4f7pCQEHDI7u8JVh1OIAhStzAKvuVvjqur24g=
Subject key identifier: 79:D8:87:07:13:9C:8B:A0:A3:6C:98:DF:73:C0:26:3C:71:25:98:22
Certificate issuer: /CN=8D41CABF9128C1CBAC4BB641E77B86D13098BC6D
Certificate serial: 58DC5952EA7CA45FD0C5113368A2663E4DA635CF
Authority key identifier: 8D:41:CA:BF:91:28:C1:CB:AC:4B:B6:41:E7:7B:86:D1:30:98:BC:6D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/323830313a38303a323030303a3a2f34302d3438203d3e203238363436.roa
Signing time: Thu 06 Mar 2025 11:33:11 +0000
ROA not before: Thu 06 Mar 2025 11:28:11 +0000
ROA not after: Thu 05 Mar 2026 11:33:11 +0000
asID: 28646
IP address blocks: 2801:80:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:dc:59:52:ea:7c:a4:5f:d0:c5:11:33:68:a2:66:3e:4d:a6:35:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D41CABF9128C1CBAC4BB641E77B86D13098BC6D
Validity
Not Before: Mar 6 11:28:11 2025 GMT
Not After : Mar 5 11:33:11 2026 GMT
Subject: CN=79D88707139C8BA0A36C98DF73C0263C71259822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:df:88:96:11:cc:42:b8:19:d5:eb:da:14:53:
ea:43:12:40:56:af:f5:1e:ff:18:5c:23:74:85:38:
d6:5a:a7:51:4a:01:e9:a5:cf:c4:a2:0b:aa:40:e2:
b7:3f:6c:70:77:a4:5b:1a:16:88:8f:98:ce:2e:2a:
49:5b:f0:83:8c:77:94:80:e8:e4:4c:9d:56:01:87:
20:2e:0b:dc:bb:a4:23:b0:5d:00:a2:c5:90:7e:79:
43:56:62:79:39:96:35:61:63:23:a2:dc:26:e3:07:
c8:d0:16:48:9f:25:f4:3a:56:3e:05:31:4b:95:71:
4e:08:4d:df:27:ea:36:18:af:19:17:64:4c:98:1a:
46:78:cd:fb:6a:8c:d7:0c:0a:f0:d4:ae:fe:99:30:
8f:7e:5f:bd:0d:d6:ad:a1:44:df:4e:ff:5d:2a:2e:
ab:10:d7:1c:93:f2:11:c2:aa:b0:c1:cd:16:cd:f0:
69:8d:c9:a7:80:3d:9a:62:e4:ef:db:dd:67:4f:7f:
27:c3:78:3c:cd:b3:ef:25:91:00:5c:c9:59:a3:59:
bc:46:9f:57:ae:3d:a0:e4:64:6b:98:27:de:ea:82:
56:18:ec:45:a5:6d:46:34:a2:86:dc:02:8c:06:93:
4a:2e:3b:c4:cf:3f:68:63:f6:9e:1d:b7:3a:d0:1d:
44:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D8:87:07:13:9C:8B:A0:A3:6C:98:DF:73:C0:26:3C:71:25:98:22
X509v3 Authority Key Identifier:
keyid:8D:41:CA:BF:91:28:C1:CB:AC:4B:B6:41:E7:7B:86:D1:30:98:BC:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8D41CABF9128C1CBAC4BB641E77B86D13098BC6D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/91dsGTsxWCxPEGTQQuajNSa48R4vDE4MgVw5vBabgELx/1/323830313a38303a323030303a3a2f34302d3438203d3e203238363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:80:2000::/40
Signature Algorithm: sha256WithRSAEncryption
a2:03:7a:0a:d6:b8:3e:b4:a0:77:3a:07:a6:dd:55:15:a5:a2:
64:ce:ed:65:d0:e8:85:af:bc:65:68:28:03:46:30:22:a5:3e:
d7:cb:73:ef:0a:14:63:0e:cd:3b:7a:d8:19:d8:a5:13:c2:e6:
d4:a7:46:9d:8b:c7:e4:ed:1b:a7:76:a9:55:a8:4c:bd:63:78:
c3:29:d1:0c:78:79:6e:7a:d5:94:e6:81:4b:93:2f:fc:be:fa:
e1:c8:ef:ce:15:f3:bb:46:11:80:0a:81:6a:75:86:f9:3f:3a:
43:7b:05:59:8e:71:1d:1a:59:a5:75:42:4f:0b:f3:7f:fb:8e:
b4:81:09:28:af:3b:ac:1f:a7:cd:69:ab:b0:4a:ce:f0:f2:e6:
68:1e:81:01:0f:8f:fd:96:ff:91:19:18:ce:bd:72:6a:38:77:
68:c0:cf:b4:94:2e:ec:62:8c:e7:0d:ac:91:f1:d9:ce:fa:5d:
2a:be:b0:af:b3:ac:66:dd:18:7f:b3:80:7f:db:b8:3b:f6:2c:
0d:91:aa:7a:69:16:c6:d1:f7:ce:20:c9:27:6e:48:60:d5:0a:
43:31:5a:a4:3e:ab:d0:87:de:90:9d:46:e3:56:23:b2:5b:5e:
46:3b:b3:33:b0:db:47:7a:7c:7b:36:6f:46:2d:8a:ac:b5:43:
45:3d:f4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:44:50 2025 by rpki-client