Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/323830343a3530383a3a2f33322d3438203d3e203532393939.roa
File: 323830343a3530383a3a2f33322d3438203d3e203532393939.roa (raw, json)
Hash identifier: L2+XaIEkygw5y/1KsdDixOZ1BeoOiNJomxlX0Q3Na9k=
Subject key identifier: 8D:F8:2A:13:B4:20:F4:D4:92:41:54:62:12:97:34:94:02:67:3A:22
Certificate issuer: /CN=CD474EAA2CD8D52421F339174CBFE8D756A44685
Certificate serial: 640402A6F89DBDE7B23F4C0F5620AE6666700A2F
Authority key identifier: CD:47:4E:AA:2C:D8:D5:24:21:F3:39:17:4C:BF:E8:D7:56:A4:46:85
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD474EAA2CD8D52421F339174CBFE8D756A44685.cer
Subject info access: rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/323830343a3530383a3a2f33322d3438203d3e203532393939.roa
Signing time: Thu 27 Mar 2025 16:06:23 +0000
ROA not before: Thu 27 Mar 2025 16:01:23 +0000
ROA not after: Thu 26 Mar 2026 16:06:23 +0000
asID: 52999
IP address blocks: 2804:508::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:04:02:a6:f8:9d:bd:e7:b2:3f:4c:0f:56:20:ae:66:66:70:0a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD474EAA2CD8D52421F339174CBFE8D756A44685
Validity
Not Before: Mar 27 16:01:23 2025 GMT
Not After : Mar 26 16:06:23 2026 GMT
Subject: CN=8DF82A13B420F4D4924154621297349402673A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e2:31:1a:50:0e:95:6e:69:ce:b0:44:39:39:
d7:8f:eb:50:11:e5:16:92:63:89:aa:86:04:79:ec:
49:95:9d:83:8a:86:ff:83:3a:de:88:b1:31:01:2f:
87:a5:c1:3a:e7:28:33:13:23:4c:aa:26:d7:52:d8:
f5:d4:07:ef:e2:c5:62:d5:d8:9e:cc:5f:ad:6a:6b:
19:e2:6a:0c:c9:06:34:cc:3b:b7:58:6c:92:ba:73:
a5:6a:37:1c:d5:44:56:cd:d0:97:3f:d9:89:87:c2:
fc:02:57:1e:f1:dc:52:a5:14:e8:60:aa:3d:7d:90:
5e:dd:51:6b:6c:98:98:96:4e:1c:29:03:5f:1a:98:
a7:18:fd:e6:f4:1b:79:b4:c2:d7:81:18:42:b3:1d:
be:2f:2a:64:65:cb:06:52:bc:3b:ca:d8:ad:46:54:
af:b1:59:dc:31:d0:50:b1:0d:41:a7:0e:db:cb:8b:
b7:33:1e:d0:ce:d2:9d:c3:84:73:7b:51:58:ef:7a:
08:50:32:e2:e0:c4:02:73:78:d8:ff:f3:2f:03:d1:
9b:76:b6:66:14:ed:ea:2d:4d:c6:d2:41:f9:d0:ae:
61:64:d4:3e:8f:01:4c:1f:6f:37:76:34:63:e9:65:
ea:3d:f6:98:ed:d8:d4:90:e5:75:0f:de:c1:43:c0:
37:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F8:2A:13:B4:20:F4:D4:92:41:54:62:12:97:34:94:02:67:3A:22
X509v3 Authority Key Identifier:
keyid:CD:47:4E:AA:2C:D8:D5:24:21:F3:39:17:4C:BF:E8:D7:56:A4:46:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/CD474EAA2CD8D52421F339174CBFE8D756A44685.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD474EAA2CD8D52421F339174CBFE8D756A44685.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/97ro2hQwEnv6nUtyjSGsAGQotJG2bTAjPUny8FJwJScq/0/323830343a3530383a3a2f33322d3438203d3e203532393939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:508::/32
Signature Algorithm: sha256WithRSAEncryption
53:db:d2:4e:ba:f7:02:20:9e:d1:23:83:e7:6f:4a:a4:1b:86:
0d:08:d1:88:3b:47:49:83:68:ff:0c:2c:12:45:23:7f:f6:64:
26:a4:76:53:90:77:71:73:3c:07:65:ff:d5:e7:39:f3:57:80:
70:2e:10:a0:7d:87:90:ac:22:e1:aa:a4:b9:f9:61:58:65:a0:
63:7c:80:9b:ef:6a:e2:db:ba:01:ac:71:c5:42:10:0a:a3:90:
60:02:31:4f:af:24:89:16:99:8d:82:da:0b:46:a5:6d:23:e9:
9d:88:23:d3:e0:76:5e:08:fe:06:a4:46:bc:5f:a3:b3:f9:2a:
54:40:8c:53:a1:91:ee:01:d0:73:ee:7c:a6:84:e6:31:03:45:
11:cb:62:9d:14:c9:8d:38:ce:dc:01:5b:67:07:00:38:f8:70:
a4:41:d5:41:6c:df:95:7c:f3:21:7b:24:ab:df:a5:b1:43:28:
b5:1c:ce:27:24:3c:95:56:17:35:2c:7c:52:2b:bc:63:3e:a1:
60:76:4d:e9:21:05:2e:e9:5b:3c:66:a4:16:0e:67:ab:9c:f7:
46:b3:34:09:78:11:64:a7:fb:8e:e7:a3:50:a4:65:f6:f7:7c:
3f:ef:a8:46:0d:38:1d:43:36:f5:4e:39:ca:e3:23:19:37:6f:
f2:ba:97:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:09:38 2025 by rpki-client