Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3136382e3139362e32302e302f32322d3232203d3e20323633363635.roa
File: 3136382e3139362e32302e302f32322d3232203d3e20323633363635.roa (raw, json)
Hash identifier: iobRzxwjd6WUYpWnw6foT131U+Unuj5Td45ibcQ/E14=
Subject key identifier: D1:3A:F8:24:E1:BD:62:91:5A:0F:A0:D4:E0:11:00:F8:89:1F:49:F0
Certificate issuer: /CN=DDF75D11A85F5023747B20E973994EC53D23A68E
Certificate serial: 68806FEA7337FFBCE457BB2949E58F91270F829D
Authority key identifier: DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3136382e3139362e32302e302f32322d3232203d3e20323633363635.roa
Signing time: Thu 07 Nov 2024 20:54:50 +0000
ROA not before: Thu 07 Nov 2024 20:49:50 +0000
ROA not after: Thu 06 Nov 2025 20:54:50 +0000
asID: 263665
IP address blocks: 168.196.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:80:6f:ea:73:37:ff:bc:e4:57:bb:29:49:e5:8f:91:27:0f:82:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DDF75D11A85F5023747B20E973994EC53D23A68E
Validity
Not Before: Nov 7 20:49:50 2024 GMT
Not After : Nov 6 20:54:50 2025 GMT
Subject: CN=D13AF824E1BD62915A0FA0D4E01100F8891F49F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6d:f5:7e:90:a1:0e:1e:91:8f:29:92:b0:05:
70:21:05:16:24:77:b1:4a:c3:46:6a:05:9d:45:af:
84:65:0a:d9:87:60:ab:d8:fe:64:9e:7a:8c:2f:cd:
32:74:61:7c:e5:40:f7:c7:2a:55:da:58:b9:43:18:
5a:9a:80:5f:65:c9:57:e7:ff:52:9d:85:f3:72:90:
41:ba:dc:07:54:7d:f6:b4:fd:56:00:47:3e:64:97:
25:18:aa:82:92:23:4c:fc:79:0f:72:5c:60:26:6e:
e6:97:4a:e4:0d:f6:99:de:4a:4f:a6:0e:e1:7c:82:
69:7d:42:1b:10:10:82:a3:70:4d:c6:e6:94:4d:01:
9a:21:ea:cf:21:8f:98:b8:70:3f:ac:e0:b4:cb:48:
cd:e0:97:f9:b2:b3:63:f7:81:b1:43:0f:88:b7:87:
4c:dc:44:33:cb:c9:5c:6f:c7:f2:44:1d:b4:78:6f:
74:d7:54:f2:21:5d:2e:94:d5:c1:0a:62:48:3c:f1:
e6:2d:2c:e8:b1:34:61:a7:ae:2c:1a:ea:7b:da:96:
e9:11:cd:ae:e3:f3:30:03:fb:22:72:f2:14:71:8c:
67:3b:ac:f0:51:41:fb:15:44:b8:1b:c8:f3:3a:70:
54:07:ac:c7:7f:4e:38:db:c4:53:07:a8:64:c2:77:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:3A:F8:24:E1:BD:62:91:5A:0F:A0:D4:E0:11:00:F8:89:1F:49:F0
X509v3 Authority Key Identifier:
keyid:DD:F7:5D:11:A8:5F:50:23:74:7B:20:E9:73:99:4E:C5:3D:23:A6:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/DDF75D11A85F5023747B20E973994EC53D23A68E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DDF75D11A85F5023747B20E973994EC53D23A68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9M7ZQLUzyNKv3ySE3FCNJCKumwKNCtczSTYpF7H8Mgrf/0/3136382e3139362e32302e302f32322d3232203d3e20323633363635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.196.20.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:fc:e7:23:9a:92:78:46:6b:5c:81:26:c9:2a:22:cc:a7:ae:
c7:d0:55:dd:42:14:c6:df:21:10:62:de:4d:fc:6f:33:c8:21:
02:54:33:28:38:83:a0:2b:35:0a:31:de:08:3c:57:d9:2a:9a:
32:ed:c8:03:46:bc:cc:70:ca:bb:eb:a9:d9:37:21:1b:6d:c1:
46:8f:79:7b:ad:8b:0a:42:36:d1:7f:9e:73:62:a0:96:e5:67:
ab:ae:7f:86:5a:f6:63:36:ff:af:d7:a1:63:a6:f4:57:0e:eb:
f6:b2:b7:41:32:5e:d2:cf:10:84:0f:91:25:6d:b6:13:5e:ca:
9f:40:d9:91:e8:d5:9a:45:43:7a:e4:2c:e0:3e:cb:aa:fd:45:
03:6e:21:7e:28:12:c8:fe:21:3a:05:64:93:56:ea:83:37:b9:
5d:bb:2f:cd:7f:2c:76:56:fa:b8:c9:15:83:ef:2d:a7:45:cc:
6a:50:02:e1:02:71:48:e1:32:5e:71:77:b9:4a:2b:dd:59:e5:
bd:39:39:67:29:50:ac:f1:7b:92:6d:a8:fd:f0:45:4a:0d:7e:
06:df:4d:81:12:57:6a:08:1b:be:6e:a1:25:52:f1:fa:65:bc:
97:2b:9f:37:53:34:d3:98:f9:fe:d7:13:e8:b4:c4:ee:39:6c:
e5:9d:04:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:43:18 2025 by rpki-client