Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31372e302f32342d3234203d3e20323633393930.roa
File: 3134332e302e31372e302f32342d3234203d3e20323633393930.roa (raw, json)
Hash identifier: 8Y5yXIoQ/1PMg5Q4h8WjUdNYNzaO4WB8eVY1EUpg76Q=
Subject key identifier: ED:97:DF:DF:CB:A1:B2:9E:3B:D2:90:E5:8E:A0:29:7D:22:22:F3:10
Certificate issuer: /CN=663B71B179F251E89D3BDF35B60E74315CF449F9
Certificate serial: 6EBDC59F4EEF4751ED314B185B31689F668C06CD
Authority key identifier: 66:3B:71:B1:79:F2:51:E8:9D:3B:DF:35:B6:0E:74:31:5C:F4:49:F9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/663B71B179F251E89D3BDF35B60E74315CF449F9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31372e302f32342d3234203d3e20323633393930.roa
Signing time: Sat 13 Apr 2024 16:13:18 +0000
ROA not before: Sat 13 Apr 2024 16:08:18 +0000
ROA not after: Sat 12 Apr 2025 16:13:18 +0000
asID: 263990
IP address blocks: 143.0.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:bd:c5:9f:4e:ef:47:51:ed:31:4b:18:5b:31:68:9f:66:8c:06:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=663B71B179F251E89D3BDF35B60E74315CF449F9
Validity
Not Before: Apr 13 16:08:18 2024 GMT
Not After : Apr 12 16:13:18 2025 GMT
Subject: CN=ED97DFDFCBA1B29E3BD290E58EA0297D2222F310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:44:34:68:6f:85:d7:40:1e:e0:f5:fb:be:5e:
86:bf:67:95:f6:51:7b:f3:90:ac:5e:34:b9:b5:e3:
49:38:d9:1e:0e:4c:75:b2:35:3d:4e:c3:5d:92:3b:
64:eb:23:db:e0:45:7e:25:5f:fb:07:59:4d:4f:12:
5a:16:f0:90:8e:da:15:85:48:a3:40:74:68:c4:a7:
e0:a5:15:4c:f3:60:38:05:e1:b0:37:73:d2:a5:35:
95:f0:99:e2:22:26:6a:36:ee:ba:63:18:f8:62:8c:
a7:8b:c4:e2:ba:15:b1:b6:ec:31:8a:fe:8b:d7:e1:
ea:fd:57:07:d5:2a:d9:81:cd:4c:ef:be:a4:80:78:
7f:ca:41:15:a7:6c:60:8a:85:0e:be:2f:22:4d:30:
d7:78:88:77:52:d4:76:97:4e:50:fa:9b:a2:97:34:
ec:e1:01:fa:13:c5:8d:40:3d:0a:71:92:90:e5:1e:
7d:36:14:83:11:bd:c1:ac:84:e7:72:ed:5c:3f:6c:
d8:d3:dd:85:fc:c3:34:3c:e8:99:6f:02:92:c9:b5:
d8:10:42:05:c6:41:4a:ac:66:c3:5b:f0:49:6a:fd:
80:dd:c3:a5:f1:0d:92:6f:1c:47:2b:fe:da:31:73:
57:cd:df:72:60:32:85:ec:e7:7e:ff:35:8c:61:39:
6d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:97:DF:DF:CB:A1:B2:9E:3B:D2:90:E5:8E:A0:29:7D:22:22:F3:10
X509v3 Authority Key Identifier:
keyid:66:3B:71:B1:79:F2:51:E8:9D:3B:DF:35:B6:0E:74:31:5C:F4:49:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/663B71B179F251E89D3BDF35B60E74315CF449F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/663B71B179F251E89D3BDF35B60E74315CF449F9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31372e302f32342d3234203d3e20323633393930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.0.17.0/24
Signature Algorithm: sha256WithRSAEncryption
be:3c:f7:eb:2c:d9:09:13:5a:7e:c7:18:27:f0:75:1d:6b:e2:
a2:b1:29:2e:f3:f9:47:b8:23:e2:55:fe:fc:9b:f0:25:4d:5b:
37:49:53:d9:c3:e2:93:1f:13:0e:a5:8a:8a:6f:15:5e:32:a3:
30:36:ab:69:0b:f3:08:9c:1f:d1:a1:8b:c9:97:f4:d5:88:71:
98:0b:05:1f:d6:c3:98:c5:a3:fa:0e:13:85:03:93:49:08:64:
dc:97:22:cd:05:36:9a:98:fa:d8:46:4a:89:fd:03:27:65:35:
f3:98:ec:2c:eb:d2:61:18:fe:5d:f6:c9:34:2f:f2:02:fd:e2:
08:f4:b8:3f:56:1d:82:76:51:2b:ff:50:1a:46:d1:e9:3b:fc:
8e:41:b0:ed:65:38:a6:f2:5a:f5:ab:9a:6d:4a:e2:59:64:e0:
c8:df:fa:58:a0:eb:9c:3d:e9:3c:47:04:29:9e:97:d8:7c:77:
0a:b1:fa:ca:62:c3:08:51:05:7b:47:01:74:86:61:66:03:d9:
46:bc:64:16:43:e2:77:e3:9d:36:6f:03:96:da:7e:de:e0:0b:
63:ec:1e:6c:e1:c1:f5:e8:f7:0b:3e:59:51:14:e9:ea:f5:2b:
33:d6:a7:45:b0:22:b4:6e:4f:e6:46:ae:46:f6:e6:26:12:5f:
d4:87:ac:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:43:52 2025 by rpki-client