Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9Hjtg9dvDU7SHRiKtou7s8s9ybCVNNi3JtCxWCGzAYzn/1/34352e3136382e3230322e302f32332d3233203d3e20323638313434.roa
File: 34352e3136382e3230322e302f32332d3233203d3e20323638313434.roa (raw, json)
Hash identifier: ZMdvUOuhY3T1EKVa/N1rjeKpCHfEOBl49CHrehseCGQ=
Subject key identifier: AB:1F:A8:38:32:22:AA:94:7E:EC:69:82:B2:3F:20:EF:91:71:DB:1E
Certificate issuer: /CN=FF895C82F573BE0E4DF3849A121D8783AC6AE22C
Certificate serial: 5221C590F246CDDCDDA0ADCDF10CC336B9B46643
Authority key identifier: FF:89:5C:82:F5:73:BE:0E:4D:F3:84:9A:12:1D:87:83:AC:6A:E2:2C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FF895C82F573BE0E4DF3849A121D8783AC6AE22C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9Hjtg9dvDU7SHRiKtou7s8s9ybCVNNi3JtCxWCGzAYzn/1/34352e3136382e3230322e302f32332d3233203d3e20323638313434.roa
Signing time: Mon 13 Jan 2025 12:54:56 +0000
ROA not before: Mon 13 Jan 2025 12:49:56 +0000
ROA not after: Mon 12 Jan 2026 12:54:56 +0000
asID: 268144
IP address blocks: 45.168.202.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:21:c5:90:f2:46:cd:dc:dd:a0:ad:cd:f1:0c:c3:36:b9:b4:66:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF895C82F573BE0E4DF3849A121D8783AC6AE22C
Validity
Not Before: Jan 13 12:49:56 2025 GMT
Not After : Jan 12 12:54:56 2026 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3f:1d:b0:cf:ff:ec:5e:93:79:08:11:31:ee:
cf:d6:3f:f5:f2:57:eb:98:50:c8:8f:3e:de:9a:40:
bc:0f:66:79:b9:81:30:1c:5c:62:f7:10:35:df:06:
79:8b:e6:b2:ad:3f:95:a6:3d:5b:63:c7:d6:48:61:
a1:a2:e5:39:f6:4f:67:14:19:92:f3:e5:88:45:6f:
b0:a5:9b:c4:10:8f:30:c7:0b:38:65:1c:ab:95:ad:
36:c3:65:2e:62:53:52:b7:63:a2:eb:5d:84:a8:2c:
38:02:ca:7e:71:3e:81:c7:4f:3d:23:7c:84:34:34:
92:8a:0e:fe:eb:17:9d:a5:39:22:4f:9f:b2:8e:b0:
8f:7c:e9:08:dc:36:cd:da:b4:eb:c3:2e:5d:e3:f7:
24:2c:74:34:4b:4b:fd:b4:0a:cd:a3:11:9d:80:75:
15:51:f0:38:f5:7d:2b:b6:42:c2:73:d1:ef:1f:c9:
6b:1e:ca:54:51:e5:19:2d:b2:a5:e2:cf:e6:3e:0f:
7c:21:61:52:00:25:96:3f:67:62:ef:fc:4c:5a:c8:
1e:55:2b:a1:b8:d0:10:55:48:ed:1e:ea:96:fb:e6:
b0:81:69:b0:4a:50:1a:c4:6e:05:1c:83:3d:9a:aa:
f4:d0:d0:4b:de:73:01:bd:18:41:71:cc:e7:cc:24:
6a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1F:A8:38:32:22:AA:94:7E:EC:69:82:B2:3F:20:EF:91:71:DB:1E
X509v3 Authority Key Identifier:
keyid:FF:89:5C:82:F5:73:BE:0E:4D:F3:84:9A:12:1D:87:83:AC:6A:E2:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9Hjtg9dvDU7SHRiKtou7s8s9ybCVNNi3JtCxWCGzAYzn/1/FF895C82F573BE0E4DF3849A121D8783AC6AE22C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FF895C82F573BE0E4DF3849A121D8783AC6AE22C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9Hjtg9dvDU7SHRiKtou7s8s9ybCVNNi3JtCxWCGzAYzn/1/34352e3136382e3230322e302f32332d3233203d3e20323638313434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.202.0/23
Signature Algorithm: sha256WithRSAEncryption
90:d4:c1:63:20:8c:e7:43:be:52:e1:20:dd:52:54:c5:a7:15:
b7:52:0b:4c:b2:98:c0:50:d7:e2:1c:19:01:33:b1:50:5e:90:
a4:b8:68:d5:31:86:c6:3f:96:6f:26:75:4f:c7:52:44:49:d8:
1e:a3:d3:17:fc:8b:e0:72:11:24:b2:49:10:37:ec:a7:65:8f:
13:ab:55:32:d6:da:44:80:ec:fb:29:4d:69:d9:7c:82:d1:65:
ac:16:68:6a:3a:14:ab:a8:9a:c3:30:92:23:31:ea:23:6f:d9:
a6:8a:fd:f6:40:9f:ef:80:fc:44:fa:3d:72:15:97:be:21:59:
34:26:e4:24:e6:32:d6:82:65:3f:6e:31:96:fc:a2:55:3e:a2:
9d:a0:9a:fd:ca:65:6f:2b:ab:5c:5e:66:58:12:84:df:75:fe:
70:a3:83:11:cc:b5:93:21:a2:f6:5b:95:82:98:33:07:58:3d:
e3:37:0b:98:b2:16:2b:da:83:15:9c:c6:9f:0f:d4:c0:53:b8:
a4:fd:4c:62:79:6d:5d:f7:a9:ce:86:44:7d:79:22:b8:9d:a3:
bc:a0:d2:c5:4b:d1:46:c2:b0:16:46:7d:e7:d3:9b:46:76:6a:
7e:21:9b:c9:fd:b9:27:9b:d8:16:b6:cc:cf:d0:67:ac:8b:51:
d3:df:6b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:46:18 2025 by rpki-client