Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/3133312e3130302e3230302e302f32322d3234203d3e20323731363833.roa
File: 3133312e3130302e3230302e302f32322d3234203d3e20323731363833.roa (raw, json)
Hash identifier: ySVkMs4aA5MidBRgBKpOFbv0M80074JIn7NJsrvNpFg=
Subject key identifier: 45:85:0D:B8:BA:C4:32:61:0B:65:FB:67:29:4C:E1:10:2E:85:92:43
Certificate issuer: /CN=CEC257CDA1BB401235BD0114C1FA2BA6A966D311
Certificate serial: 07F8CB1B5A0938869940F84E37FAAEF6210A162E
Authority key identifier: CE:C2:57:CD:A1:BB:40:12:35:BD:01:14:C1:FA:2B:A6:A9:66:D3:11
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/3133312e3130302e3230302e302f32322d3234203d3e20323731363833.roa
Signing time: Wed 05 Mar 2025 16:53:27 +0000
ROA not before: Wed 05 Mar 2025 16:48:27 +0000
ROA not after: Wed 04 Mar 2026 16:53:27 +0000
asID: 271683
IP address blocks: 131.100.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.crl
rsync://rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:24:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:f8:cb:1b:5a:09:38:86:99:40:f8:4e:37:fa:ae:f6:21:0a:16:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC257CDA1BB401235BD0114C1FA2BA6A966D311
Validity
Not Before: Mar 5 16:48:27 2025 GMT
Not After : Mar 4 16:53:27 2026 GMT
Subject: CN=45850DB8BAC432610B65FB67294CE1102E859243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fe:0f:f1:db:22:70:95:da:d0:3e:8f:44:fc:
bf:97:e0:46:a3:eb:50:f8:13:25:7d:85:21:69:b1:
f4:dd:8c:ab:20:57:c1:86:5d:b3:2a:49:3e:db:67:
2f:d6:94:76:70:a7:09:78:5c:10:94:58:35:77:a2:
7e:bf:2d:99:ed:9c:c0:e8:1a:2d:47:b4:2c:bc:4f:
51:9a:7b:31:cb:b3:a7:33:9b:41:e1:d5:ac:6a:f0:
60:b2:e0:b7:84:5b:94:2c:16:b2:ff:00:dd:6a:b4:
52:23:9e:f9:87:d8:ba:0e:47:dd:df:12:75:90:9d:
72:63:e0:b5:da:bc:2d:17:f3:ff:32:e6:8a:d8:94:
fb:8c:a8:94:b1:50:b7:1b:5c:97:21:9f:3c:c6:c6:
19:24:90:27:a7:4a:be:93:b0:bd:1c:bd:ef:e3:b8:
4e:fd:fc:4b:52:61:75:f2:65:13:77:38:ec:c1:3a:
0b:ea:be:d6:fc:bc:2a:eb:3d:2f:e9:44:ec:86:90:
10:88:81:2d:0e:fc:e6:f5:59:8d:ee:dc:7b:1c:1a:
fd:c9:44:c4:15:76:90:6a:da:a1:ac:0d:4f:b6:d6:
57:10:6a:25:89:d7:56:07:b7:e9:2d:11:5b:9b:f7:
e9:77:5a:6b:c1:24:67:d2:fb:44:02:d0:12:bc:8e:
ef:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:85:0D:B8:BA:C4:32:61:0B:65:FB:67:29:4C:E1:10:2E:85:92:43
X509v3 Authority Key Identifier:
keyid:CE:C2:57:CD:A1:BB:40:12:35:BD:01:14:C1:FA:2B:A6:A9:66:D3:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CEC257CDA1BB401235BD0114C1FA2BA6A966D311.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9TxbWNx4X9cPz3tECayCXXwDCL3rEXYAfe4FgS1vJkj5/0/3133312e3130302e3230302e302f32322d3234203d3e20323731363833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.100.200.0/22
Signature Algorithm: sha256WithRSAEncryption
54:a9:2e:fb:37:a5:39:01:05:90:a5:ad:dc:68:74:21:5c:8d:
ce:00:82:9b:af:44:0e:3e:9e:1d:e9:52:a1:db:ef:a6:27:9e:
ae:ca:fa:09:2c:8a:16:9e:6a:68:c4:5c:3f:56:be:0c:ab:6e:
3c:55:23:24:e3:b1:9b:47:07:73:35:a7:81:a1:14:23:c7:41:
a4:51:bd:9b:6c:e0:75:51:f4:99:69:6e:cf:36:b0:fa:ee:5f:
e8:2b:78:8a:a1:9c:82:ae:76:70:cc:08:14:d9:ab:72:da:c1:
dc:a5:52:3e:35:96:62:8e:fa:0d:72:60:93:23:68:b9:8d:cb:
73:25:52:08:21:ea:a5:ab:a2:3b:1f:d2:80:fc:5d:63:d9:b2:
79:8e:b1:f2:d2:b9:cb:47:8a:54:dd:55:d8:a9:03:a5:89:87:
a0:de:49:b9:75:b8:f8:2a:17:4d:00:c5:43:ca:ba:f9:2e:81:
8f:7d:ed:73:80:87:14:05:5c:3a:9c:a7:42:ec:38:50:43:57:
03:37:67:e9:0b:16:ad:10:00:b5:c3:06:ac:01:98:cd:f2:60:
0a:e2:52:64:00:16:b7:1a:33:6e:11:12:66:4e:2e:d1:b6:8b:
4f:25:ce:fb:66:44:a7:db:16:fd:8d:5a:f3:8d:66:a6:8f:bf:
3c:bf:80:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:09:08 2025 by rpki-client