Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3137372e38352e34382e302f32312d3231203d3e203238323130.roa
File: 3137372e38352e34382e302f32312d3231203d3e203238323130.roa (raw, json)
Hash identifier: rMCFGHYe7yso1CtOWk3DczOVbdCjVFevNr95jNIOvJQ=
Subject key identifier: 7E:02:A4:50:FC:FF:EE:0C:BE:78:4E:22:80:A0:2E:27:84:28:C1:76
Certificate issuer: /CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Certificate serial: 592382B15BD1AD0E7D94552799506339BA73440F
Authority key identifier: A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3137372e38352e34382e302f32312d3231203d3e203238323130.roa
Signing time: Thu 06 Mar 2025 04:42:09 +0000
ROA not before: Thu 06 Mar 2025 04:37:09 +0000
ROA not after: Thu 05 Mar 2026 04:42:09 +0000
asID: 28210
IP address blocks: 177.85.48.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:23:82:b1:5b:d1:ad:0e:7d:94:55:27:99:50:63:39:ba:73:44:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA
Validity
Not Before: Mar 6 04:37:09 2025 GMT
Not After : Mar 5 04:42:09 2026 GMT
Subject: CN=7E02A450FCFFEE0CBE784E2280A02E278428C176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:2c:c0:9e:bd:5b:39:3e:c7:54:09:b6:6f:
07:af:5e:8e:95:a0:a5:f0:d4:5f:36:7d:c9:cc:5e:
67:5c:95:3a:05:ba:02:49:e5:a3:82:7c:75:f6:bb:
77:01:5e:c4:bc:56:de:e1:fc:7c:60:99:f1:af:f1:
cd:1b:db:d4:c8:5a:06:16:45:5d:45:be:57:57:6c:
c5:13:0d:70:34:0a:d2:93:97:e4:92:b1:18:07:2f:
bd:cb:42:2c:a4:c1:f9:60:fe:d5:15:32:09:c1:0b:
44:5d:93:cc:ac:c0:27:4a:d4:de:4f:7c:ca:0e:ac:
45:d8:41:52:1a:6b:80:5d:12:6c:6b:a0:65:b4:25:
5b:35:98:f5:fe:bc:cc:d4:90:04:f6:71:9c:cd:98:
85:48:c8:74:43:1d:63:91:40:2d:9c:89:10:17:a3:
15:08:7b:96:82:4e:5e:c5:06:d7:72:0b:09:0f:2d:
f9:fe:62:ba:f8:d0:d4:43:d7:0c:59:df:d8:c7:a2:
1a:62:10:cf:fa:32:ff:ae:0a:4d:10:00:d5:7e:3c:
ca:d7:32:7d:eb:c9:c1:47:19:44:78:41:2e:f5:61:
46:ca:48:23:6a:91:37:fb:6e:82:53:58:ca:c4:aa:
30:3f:aa:8e:7c:f5:d3:23:a8:dd:c5:af:f0:41:44:
93:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:02:A4:50:FC:FF:EE:0C:BE:78:4E:22:80:A0:2E:27:84:28:C1:76
X509v3 Authority Key Identifier:
keyid:A6:1C:AB:65:BA:DA:D7:5F:F4:9C:F8:CE:54:AE:75:73:71:D1:C4:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A61CAB65BADAD75FF49CF8CE54AE757371D1C4AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9QfxRrthEWwm1w7YSfYE9Wd641V1naXdkuKkAtC8qgaV/1/3137372e38352e34382e302f32312d3231203d3e203238323130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.85.48.0/21
Signature Algorithm: sha256WithRSAEncryption
68:c2:ca:5f:da:f2:fd:1b:93:3a:32:75:83:1a:70:16:54:f2:
59:78:23:3d:87:77:47:82:ce:63:87:14:f3:f2:bd:71:a6:0d:
89:a1:90:af:67:d1:4e:2d:f8:85:63:d2:8e:17:6d:0d:b1:1a:
49:a8:71:c9:53:d8:6a:bc:b4:80:39:ba:87:dc:fd:2c:e9:c2:
e4:2c:db:88:f0:e4:82:1e:42:4e:5e:de:67:d3:9e:ab:3c:0e:
4e:db:7a:8d:f6:af:7c:28:59:ce:50:94:1c:f0:e8:d3:8e:85:
46:09:7f:c0:92:1e:a7:6e:86:03:24:c7:9e:8f:69:cd:f4:94:
e3:27:3f:cb:30:d2:5d:35:7d:11:a4:62:c6:45:3b:ca:66:53:
27:0d:a5:ce:06:fe:3c:b3:ea:f4:05:95:4d:e9:be:3c:0e:db:
b3:69:22:a5:95:7b:ee:a0:1a:bd:52:f0:93:43:c0:59:15:1d:
12:93:88:b3:8e:41:cc:78:e6:52:fe:4a:ff:b0:00:e9:78:dd:
ea:ba:99:cf:b8:5f:ae:4b:21:1d:95:e5:54:7b:0f:1b:f6:14:
99:cc:71:fd:cb:4b:de:8e:2f:04:30:aa:30:d7:58:30:81:63:
17:f2:02:3a:52:01:5a:12:f3:20:89:4a:a1:e6:e2:7b:65:1d:
23:14:c1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:44:24 2025 by rpki-client