Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133382e3230342e3133362e302f32322d3232203d3e203238323130.roa
File: 3133382e3230342e3133362e302f32322d3232203d3e203238323130.roa (raw, json)
Hash identifier: CQOALHVOKXlQG3cdi1Lld9juSX8qI4Su7nR6THh3K1g=
Subject key identifier: D2:35:E4:0C:74:C6:6D:82:1F:B9:1B:94:E8:9B:BA:03:71:AD:11:10
Certificate issuer: /CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Certificate serial: 475D80C95A10C8BDD46DEE317FC334A9ECDF65B4
Authority key identifier: A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133382e3230342e3133362e302f32322d3232203d3e203238323130.roa
Signing time: Thu 06 Mar 2025 04:42:12 +0000
ROA not before: Thu 06 Mar 2025 04:37:12 +0000
ROA not after: Thu 05 Mar 2026 04:42:12 +0000
asID: 28210
IP address blocks: 138.204.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:5d:80:c9:5a:10:c8:bd:d4:6d:ee:31:7f:c3:34:a9:ec:df:65:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Validity
Not Before: Mar 6 04:37:12 2025 GMT
Not After : Mar 5 04:42:12 2026 GMT
Subject: CN=D235E40C74C66D821FB91B94E89BBA0371AD1110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:74:7f:f4:11:17:76:5e:b1:df:27:55:63:91:
98:73:7d:70:bc:a9:a8:d7:7f:a4:df:a2:61:02:7e:
7b:8a:e9:92:7e:84:61:fb:ab:22:35:c8:b8:4f:b4:
91:93:f4:65:d4:f5:0e:96:8e:a7:75:ef:08:f2:16:
77:4c:30:da:86:a0:dc:60:3a:77:0d:87:66:45:53:
b8:bc:d9:da:16:86:83:3e:3a:7c:ed:87:1f:cc:d9:
6c:e6:15:51:1d:81:4d:48:75:99:54:c4:4f:3a:41:
c8:41:30:e5:b3:1f:a3:bb:81:c9:a7:cd:ec:2e:9d:
ff:17:a5:a6:57:82:09:2c:f6:86:4b:51:c3:da:22:
9c:d9:2c:35:f7:36:7c:50:c7:93:2b:6f:82:48:40:
c9:14:c0:6f:e9:01:69:b3:f8:a0:4a:2c:ca:95:26:
9c:38:a6:d0:ee:e5:d1:69:74:c3:61:83:5e:d4:d9:
9a:79:e1:43:3c:c1:8d:a3:91:1f:77:76:3b:3e:72:
a3:41:b5:21:19:5d:5b:07:94:c8:2b:35:dd:65:bf:
d9:e4:39:e8:42:42:22:f7:c5:b3:a0:63:13:5b:c8:
8a:04:40:4a:a3:bc:c4:ce:d4:9a:1c:80:a2:86:06:
a8:60:ae:07:5c:39:87:58:6a:b7:00:8c:31:11:71:
8e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:35:E4:0C:74:C6:6D:82:1F:B9:1B:94:E8:9B:BA:03:71:AD:11:10
X509v3 Authority Key Identifier:
keyid:A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3133382e3230342e3133362e302f32322d3232203d3e203238323130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.136.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:78:b0:d4:b2:90:67:a6:79:dc:6f:1f:b0:8d:cf:c8:f0:6e:
5b:4f:12:0c:6a:35:9a:38:07:10:fe:8e:93:4d:48:50:99:07:
c4:63:d1:bf:40:3b:dd:7f:21:24:b7:5c:2c:b6:7e:12:60:0d:
47:17:00:40:ad:16:74:23:84:1a:70:91:4a:2f:9a:2a:d9:e3:
6e:86:17:38:02:de:27:cc:0c:24:bf:32:1a:bb:59:1b:5f:11:
72:de:f7:c6:5b:6a:26:48:aa:5d:84:1f:ce:bd:75:fb:9f:92:
50:4d:c3:80:4a:0d:4c:b6:81:58:84:65:89:87:18:90:b0:ab:
a5:5b:62:8c:5d:76:b3:58:12:e6:fd:07:71:3a:ca:03:ed:62:
db:ae:b6:70:d8:6a:c5:ef:04:bc:1a:d3:d8:e9:49:12:9c:d8:
6a:eb:10:24:8b:9f:6a:13:c0:f0:d2:74:2e:89:86:30:e2:1f:
74:7d:cf:2a:1b:76:18:08:8f:51:eb:65:fa:12:28:23:b9:1e:
5c:d1:94:82:e3:6f:75:84:11:14:56:9c:7b:2a:fa:c7:f8:ab:
c4:c5:39:13:17:31:71:2d:2b:f1:9f:dd:ea:3a:2a:26:61:af:
75:39:4e:29:98:cd:30:81:39:94:5c:d4:a3:67:e8:a0:4f:83:
c2:bd:45:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:47:51 2025 by rpki-client