Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133312e3235352e32302e302f32322d3232203d3e203238323130.roa
File: 3133312e3235352e32302e302f32322d3232203d3e203238323130.roa (raw, json)
Hash identifier: mspOSi8KOcLwxkc5lY5zBfMe5XRMP+mZagu/AmQ7pvM=
Subject key identifier: E0:3C:B9:AE:D9:1E:DF:C6:8F:38:F6:76:E2:39:F0:72:48:65:A7:FF
Certificate issuer: /CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Certificate serial: 2845E891FEF17A883F54EAEBDAA06CFD8A6CA1D8
Authority key identifier: A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133312e3235352e32302e302f32322d3232203d3e203238323130.roa
Signing time: Thu 06 Mar 2025 04:42:13 +0000
ROA not before: Thu 06 Mar 2025 04:37:13 +0000
ROA not after: Thu 05 Mar 2026 04:42:13 +0000
asID: 28210
IP address blocks: 131.255.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:45:e8:91:fe:f1:7a:88:3f:54:ea:eb:da:a0:6c:fd:8a:6c:a1:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Validity
Not Before: Mar 6 04:37:13 2025 GMT
Not After : Mar 5 04:42:13 2026 GMT
Subject: CN=E03CB9AED91EDFC68F38F676E239F0724865A7FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:5a:b8:5b:ce:6d:c7:08:e6:4e:b0:48:a5:
7d:02:4c:6c:fe:47:4f:7c:ab:03:7f:81:07:21:e2:
5e:59:29:04:bc:ca:96:3f:f1:0f:61:de:b0:37:8c:
fb:a7:4f:6b:39:11:9d:f9:9c:a5:c0:94:a1:cd:e7:
ae:37:65:8d:bc:c0:95:46:c6:7d:47:2c:a5:9c:1f:
50:46:27:01:65:19:b7:de:e6:0c:bb:6d:0c:c0:e0:
3c:dc:53:0b:dc:53:f2:72:d7:7b:dc:ef:5b:36:65:
5f:00:bc:c8:d0:11:11:6d:f5:d8:af:f9:21:28:61:
27:4b:a3:27:b0:a0:01:f8:ef:e1:0e:de:f0:ea:ab:
c0:79:09:c2:17:76:d1:ef:6f:23:7d:5b:f4:00:e4:
85:e6:51:c9:05:d4:da:86:20:c6:36:5a:00:d1:e2:
b8:64:3d:12:ca:14:5c:02:db:3c:0a:e5:d5:af:df:
36:cd:f7:a1:0c:4d:93:e5:8d:88:b1:4e:b2:0d:1e:
36:ba:ce:e7:bb:96:8d:9d:78:02:c6:77:7c:7d:61:
c5:f8:ce:b6:7e:1f:64:28:4e:a3:fb:d8:97:fd:21:
24:04:a7:54:93:6e:c0:b9:40:0d:3f:ea:73:2f:93:
57:b0:bf:db:25:50:5f:62:bf:7a:bd:7c:1b:f1:65:
57:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:3C:B9:AE:D9:1E:DF:C6:8F:38:F6:76:E2:39:F0:72:48:65:A7:FF
X509v3 Authority Key Identifier:
keyid:A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133312e3235352e32302e302f32322d3232203d3e203238323130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.255.20.0/22
Signature Algorithm: sha256WithRSAEncryption
68:83:69:65:11:56:61:30:b6:7a:74:3b:5b:f8:97:3a:aa:6e:
09:e2:07:7e:96:39:2f:8d:85:f1:78:bb:42:dc:6e:af:04:36:
7b:aa:bd:9d:dd:dd:05:f4:44:c3:d7:09:0e:72:10:22:f2:ad:
03:27:43:aa:82:b7:c6:df:23:f4:c3:23:66:c9:00:60:ef:3b:
96:ba:42:1a:09:c9:5f:21:69:20:0f:3a:a0:55:68:8b:9d:ce:
04:49:92:b6:fa:95:2d:a7:4d:00:68:f7:e8:14:d0:b0:9f:f6:
ab:68:76:e3:88:6b:be:3c:61:81:db:ec:1a:ad:07:67:69:7f:
4b:6e:16:57:d0:00:3e:e4:63:7f:a4:69:81:87:fc:95:3e:c0:
dc:f2:a6:85:22:4e:e9:a2:0e:c0:92:76:c3:ee:fd:21:24:99:
a8:54:45:57:7f:69:e0:76:99:5c:f5:47:72:cc:65:9a:05:1d:
30:07:03:b7:bd:5e:93:f8:de:c9:c6:4f:37:ab:15:cb:2d:3d:
b1:17:fd:83:d0:14:db:cf:47:7e:4a:41:e0:c0:f0:5f:07:b1:
06:5a:83:3e:a9:ec:04:86:ca:2d:71:a7:46:b2:4e:76:f4:e6:
29:72:93:a4:56:d4:9b:d3:9f:21:fb:0a:5f:4b:8c:9a:75:7e:
2c:0f:89:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:47:54 2025 by rpki-client