Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31382e302f32332d3233203d3e20323633393930.roa
File: 3134332e302e31382e302f32332d3233203d3e20323633393930.roa (raw, json)
Hash identifier: DKzk0Ed8IScfb6oPWVWhDymMn/0pk/GARkPktJC71W0=
Subject key identifier: 30:32:A6:7A:B6:DA:B1:EB:4E:23:16:B1:89:53:20:40:B0:43:42:B3
Certificate issuer: /CN=663B71B179F251E89D3BDF35B60E74315CF449F9
Certificate serial: 36E544E550E2AD962DBD3A63D085D821CE499F95
Authority key identifier: 66:3B:71:B1:79:F2:51:E8:9D:3B:DF:35:B6:0E:74:31:5C:F4:49:F9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/663B71B179F251E89D3BDF35B60E74315CF449F9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31382e302f32332d3233203d3e20323633393930.roa
Signing time: Sat 13 Apr 2024 16:13:13 +0000
ROA not before: Sat 13 Apr 2024 16:08:13 +0000
ROA not after: Sat 12 Apr 2025 16:13:13 +0000
asID: 263990
IP address blocks: 143.0.18.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:e5:44:e5:50:e2:ad:96:2d:bd:3a:63:d0:85:d8:21:ce:49:9f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=663B71B179F251E89D3BDF35B60E74315CF449F9
Validity
Not Before: Apr 13 16:08:13 2024 GMT
Not After : Apr 12 16:13:13 2025 GMT
Subject: CN=3032A67AB6DAB1EB4E2316B189532040B04342B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:5b:22:79:00:fa:9a:bd:8a:e3:54:bf:ce:
09:a8:51:0e:77:5c:23:5c:c3:f9:72:78:ab:f0:08:
cf:0f:ec:01:3f:c1:10:26:f9:19:63:c1:9b:ed:30:
cb:70:f0:71:d8:51:d6:49:c8:67:6e:8d:40:83:bc:
92:ce:11:59:3c:a4:c1:07:6b:7b:39:e0:f4:59:c7:
1c:5a:78:81:1b:da:fc:7f:6a:85:68:4e:01:94:9b:
25:07:d8:18:98:1d:db:59:17:60:78:42:ab:a9:7d:
fa:39:8c:55:2e:b4:9a:29:79:3c:1d:f4:d7:2a:07:
d6:b5:6c:21:d0:a3:5b:8a:0d:ec:90:67:eb:06:5e:
e8:0b:e8:08:9b:0f:af:dc:0e:78:d5:8f:7c:b0:e6:
ec:cd:eb:04:b2:92:41:46:a6:4f:71:55:5f:99:ba:
d2:32:8e:52:ec:d3:1d:d0:d6:85:b5:ef:24:21:73:
24:4f:99:36:df:7e:3a:36:1a:21:b9:16:e4:71:b7:
a7:53:3f:f0:02:65:bb:ae:73:59:87:39:8a:dd:77:
b5:ef:d0:69:6c:73:f9:7b:82:70:ea:5e:ac:db:87:
f2:e2:36:bd:9a:eb:05:9d:a9:de:4f:97:74:2b:97:
3c:ad:8a:6e:50:3f:5d:38:f7:77:e3:06:aa:15:f3:
f8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:32:A6:7A:B6:DA:B1:EB:4E:23:16:B1:89:53:20:40:B0:43:42:B3
X509v3 Authority Key Identifier:
keyid:66:3B:71:B1:79:F2:51:E8:9D:3B:DF:35:B6:0E:74:31:5C:F4:49:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/663B71B179F251E89D3BDF35B60E74315CF449F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/663B71B179F251E89D3BDF35B60E74315CF449F9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9kzpmRFnWUbt1crj8dovAQfaoMowHfReoDNpkvPVLtwi/0/3134332e302e31382e302f32332d3233203d3e20323633393930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.0.18.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:fe:24:3b:fb:39:0e:59:5d:90:4e:43:7d:6c:3d:e6:bb:1f:
ea:8a:3f:c3:1d:32:53:76:6b:c8:df:38:52:e0:2c:cc:8a:e2:
11:ba:7d:ac:2e:32:5d:d2:b5:fe:8a:cb:73:bb:d8:5f:12:7d:
73:4b:41:ce:4c:65:7a:9b:e2:fa:3c:4d:0a:f4:f0:a6:9c:85:
79:1d:29:22:14:27:10:a5:47:de:74:c8:c8:7a:a0:da:ca:f7:
b1:5e:a1:6b:ba:7d:b0:e6:9c:38:8c:d1:70:b6:e1:59:d3:e7:
05:01:40:18:99:c7:95:0d:9c:9b:3e:17:5c:77:34:53:88:34:
ba:fc:c0:62:07:f9:29:61:9f:3d:68:2f:51:51:ad:ca:76:0f:
08:af:58:a1:9b:3d:cf:c8:00:0c:36:5a:38:50:79:80:a1:40:
8d:2b:0d:60:71:ec:52:5c:a5:03:a9:5f:86:12:a2:77:e5:66:
29:b6:20:eb:8f:a2:80:11:b0:23:1f:ef:4c:c3:db:33:eb:f4:
e2:57:12:ea:dd:7a:2c:4d:ce:15:6f:80:82:5f:82:f1:c4:cb:
fc:0a:ef:c7:1e:90:59:e5:7c:67:16:32:23:70:07:d0:9c:03:
42:8a:b6:91:d8:f0:82:5d:e1:82:22:ad:f4:e0:42:e1:82:10:
2f:57:61:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:43:52 2025 by rpki-client