Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/3137372e36362e33322e302f32312d3234203d3e203532393939.roa
File: 3137372e36362e33322e302f32312d3234203d3e203532393939.roa (raw, json)
Hash identifier: EkyUQtUq8ZwCnFXCndOL37rwpzQMGbrVReyyMnswO8g=
Subject key identifier: B5:DA:DA:42:11:E9:A0:0C:98:9B:D7:B1:F8:8A:96:75:AC:A3:BA:92
Certificate issuer: /CN=CD474EAA2CD8D52421F339174CBFE8D756A44685
Certificate serial: 5DECB2D1079276A6E46FD3BF16E2944F0351B87D
Authority key identifier: CD:47:4E:AA:2C:D8:D5:24:21:F3:39:17:4C:BF:E8:D7:56:A4:46:85
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD474EAA2CD8D52421F339174CBFE8D756A44685.cer
Subject info access: rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/3137372e36362e33322e302f32312d3234203d3e203532393939.roa
Signing time: Thu 27 Mar 2025 16:06:25 +0000
ROA not before: Thu 27 Mar 2025 16:01:25 +0000
ROA not after: Thu 26 Mar 2026 16:06:25 +0000
asID: 52999
IP address blocks: 177.66.32.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:ec:b2:d1:07:92:76:a6:e4:6f:d3:bf:16:e2:94:4f:03:51:b8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD474EAA2CD8D52421F339174CBFE8D756A44685
Validity
Not Before: Mar 27 16:01:25 2025 GMT
Not After : Mar 26 16:06:25 2026 GMT
Subject: CN=B5DADA4211E9A00C989BD7B1F88A9675ACA3BA92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:65:e5:7d:24:f7:17:1e:11:bb:7e:58:07:
1c:53:1f:61:b3:3f:8a:e1:6e:fb:1b:2b:0c:6d:75:
c9:92:c1:36:12:7a:3c:e7:35:f2:28:21:db:7c:2e:
e3:61:b3:c3:5b:0e:82:1a:00:fb:3a:c0:ca:4a:16:
d4:e8:29:27:1b:a5:f0:de:4f:b1:51:60:27:52:ad:
ea:be:12:30:92:4b:7e:da:ca:a1:f7:61:c7:fb:2c:
c4:2e:a1:b7:a4:7a:dc:f5:ae:8e:39:2e:d0:70:3a:
c5:77:6f:d7:39:9d:43:88:65:54:ef:96:dc:b9:74:
17:c9:5a:02:f7:6f:94:6f:ca:38:a2:1a:bc:f9:b4:
bd:bd:24:8c:d4:9d:dd:a8:e0:87:14:a8:0a:1c:f0:
ba:f2:b7:08:2c:10:30:6f:a6:74:b4:a5:21:00:38:
f0:44:52:58:a2:ff:35:eb:d2:ec:7e:41:37:f1:0a:
ea:54:8a:c0:76:95:f8:17:59:53:10:b5:2c:c3:84:
f1:3d:00:26:20:85:2a:62:6d:94:81:f9:97:03:3a:
cd:54:4e:ea:40:af:ae:36:e9:f7:15:d2:52:c0:d9:
4e:b5:4d:3b:7b:61:6b:6b:0a:38:1a:c5:b6:f5:98:
71:9f:71:93:02:53:bb:07:01:45:ed:92:bc:c3:06:
00:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DA:DA:42:11:E9:A0:0C:98:9B:D7:B1:F8:8A:96:75:AC:A3:BA:92
X509v3 Authority Key Identifier:
keyid:CD:47:4E:AA:2C:D8:D5:24:21:F3:39:17:4C:BF:E8:D7:56:A4:46:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/CD474EAA2CD8D52421F339174CBFE8D756A44685.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD474EAA2CD8D52421F339174CBFE8D756A44685.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/3137372e36362e33322e302f32312d3234203d3e203532393939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.66.32.0/21
Signature Algorithm: sha256WithRSAEncryption
58:14:dd:2d:5d:07:33:70:ec:4c:31:56:2a:03:e9:54:57:1a:
99:0a:2d:36:ee:c2:7a:bb:4e:73:2d:cb:ef:4b:d7:90:17:f1:
b2:d7:91:da:d9:44:65:24:e1:72:e9:8d:e0:f7:d2:5a:76:00:
25:c6:2e:21:e6:46:5f:7a:b7:3b:e5:4b:4f:99:d3:d8:f8:6b:
ce:53:31:72:0e:f6:2a:b9:fb:d7:5b:6f:11:32:a8:31:32:e7:
92:12:db:4e:47:61:1c:cd:c9:a1:39:6a:9d:70:44:df:ca:6b:
06:9b:57:c9:5f:2b:6a:7d:99:5b:9e:e5:63:38:17:75:0e:a9:
cf:2c:08:95:5a:8b:0c:76:75:75:e6:c6:45:4a:80:0e:4f:15:
b0:81:52:eb:23:f8:46:96:c6:0e:c7:85:b7:db:dc:b4:ac:8c:
3b:bb:de:05:bb:8c:5a:22:4e:39:38:8d:ec:c5:1a:20:e0:66:
7c:cd:9b:16:4e:7f:94:ff:fa:73:e4:ee:58:d3:24:6f:9d:91:
e9:c4:ad:36:82:cd:9b:c0:5c:46:a0:85:62:79:e7:98:cf:77:
1d:1f:7e:ad:18:ba:24:47:9e:de:93:7a:95:24:45:d8:c6:34:
bf:67:b9:08:d5:f1:5d:03:22:60:a9:16:a0:bf:d4:62:e8:67:
84:17:ee:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:13:18 2025 by rpki-client