Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9ph7zDYZG8nrArfKRconYqiLK4qSS9vQ39fV2o6RPkQe/1/323830343a3363383a3a2f33322d3438203d3e20323632393038.roa
File: 323830343a3363383a3a2f33322d3438203d3e20323632393038.roa (raw, json)
Hash identifier: ngyx/A2CmvYwzpcTt0anV+zTEpS9LrOqRp64yoUCHl0=
Subject key identifier: F2:02:41:77:51:D7:CD:E3:BC:10:81:A1:10:1B:15:96:73:DD:21:7A
Certificate issuer: /CN=586B4257D2355E33CF9FAB48A3574677286D3B92
Certificate serial: 1DF68FBDAE97266766F632BDC37DAA46B160B10A
Authority key identifier: 58:6B:42:57:D2:35:5E:33:CF:9F:AB:48:A3:57:46:77:28:6D:3B:92
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/586B4257D2355E33CF9FAB48A3574677286D3B92.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9ph7zDYZG8nrArfKRconYqiLK4qSS9vQ39fV2o6RPkQe/1/323830343a3363383a3a2f33322d3438203d3e20323632393038.roa
Signing time: Thu 04 Apr 2024 17:10:14 +0000
ROA not before: Thu 04 Apr 2024 17:05:14 +0000
ROA not after: Thu 03 Apr 2025 17:10:14 +0000
asID: 262908
IP address blocks: 2804:3c8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:f6:8f:bd:ae:97:26:67:66:f6:32:bd:c3:7d:aa:46:b1:60:b1:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586B4257D2355E33CF9FAB48A3574677286D3B92
Validity
Not Before: Apr 4 17:05:14 2024 GMT
Not After : Apr 3 17:10:14 2025 GMT
Subject: CN=F202417751D7CDE3BC1081A1101B159673DD217A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8f:3f:db:c0:bc:84:a4:67:e0:46:b5:66:e4:
9a:c3:3c:6c:4c:c4:b5:04:17:7b:71:69:98:66:af:
a6:b4:9c:3f:e0:a9:7e:53:0e:72:4c:eb:fe:ec:5e:
be:7c:92:27:d6:b5:34:fb:3b:cd:b9:5d:6c:b1:7c:
22:12:fc:7e:70:48:2d:ee:a5:ff:3e:ff:aa:b4:41:
53:68:73:0f:dd:6c:ca:a5:88:ed:bb:1e:cb:45:a2:
11:fa:ee:81:d4:38:b5:5e:92:99:a5:86:db:72:26:
17:92:44:74:78:f7:41:5d:ba:84:44:c3:a9:40:43:
3c:38:26:f4:15:60:45:4c:b3:dc:02:ea:ce:a1:57:
f1:72:7d:45:44:3c:2e:cb:1c:da:48:8c:7b:2b:fa:
53:7f:40:91:41:b2:7f:f1:cc:af:32:6c:de:fb:dd:
23:8a:fc:ad:a2:b1:46:13:da:4c:08:37:8d:11:85:
f6:ee:1f:65:96:a4:27:d4:68:f6:2a:30:26:1c:fe:
b0:d1:8d:49:ea:34:7d:23:04:1c:9b:04:28:03:2e:
66:48:d2:ed:d9:e1:4e:5d:cd:28:7a:e2:fa:e6:1d:
e6:df:e5:c0:e5:88:de:de:cb:49:67:90:1b:47:b9:
34:8b:d4:30:c6:73:a7:07:19:b6:3a:04:c9:f1:5f:
53:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:02:41:77:51:D7:CD:E3:BC:10:81:A1:10:1B:15:96:73:DD:21:7A
X509v3 Authority Key Identifier:
keyid:58:6B:42:57:D2:35:5E:33:CF:9F:AB:48:A3:57:46:77:28:6D:3B:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9ph7zDYZG8nrArfKRconYqiLK4qSS9vQ39fV2o6RPkQe/1/586B4257D2355E33CF9FAB48A3574677286D3B92.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/586B4257D2355E33CF9FAB48A3574677286D3B92.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9ph7zDYZG8nrArfKRconYqiLK4qSS9vQ39fV2o6RPkQe/1/323830343a3363383a3a2f33322d3438203d3e20323632393038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3c8::/32
Signature Algorithm: sha256WithRSAEncryption
83:b7:04:99:b4:c8:ed:2f:bb:39:bf:52:4a:c9:8b:5e:60:d5:
10:b2:3e:f7:01:00:b5:e8:85:e8:a5:18:c4:b6:1b:ff:a2:cd:
62:2d:b2:ca:01:77:5a:2f:53:6b:03:22:d1:0e:8d:50:d8:e0:
79:44:d8:96:cf:23:5e:86:4f:db:34:e6:9c:4c:d3:12:9f:ef:
28:ab:cc:c9:9a:40:9c:15:d7:1b:00:fd:84:a6:5e:ff:e4:73:
86:91:a4:89:43:00:62:c1:52:4c:85:6e:e4:03:1a:70:68:e9:
af:4c:8c:4d:fc:94:e9:11:a2:51:63:02:60:e4:57:0a:bb:22:
cb:e4:5e:7d:15:2f:7a:d6:9c:1a:0c:1d:32:53:c1:6b:01:6b:
97:a2:11:e2:f5:65:cf:97:6d:aa:cb:b5:ae:a8:5e:4b:6d:e6:
f6:3d:84:7b:f7:5f:88:8d:46:a4:82:84:1b:50:fe:87:1d:9d:
33:72:d5:33:20:26:a9:be:85:1f:be:7e:94:8b:76:ee:1a:7d:
2b:d4:fe:80:24:be:a6:66:3a:47:3c:c3:da:de:1b:1e:59:81:
72:ce:80:73:c5:6f:dc:1c:cc:8a:29:20:01:ab:04:a6:b0:69:
b0:d6:4a:0a:a6:c3:f3:a3:e5:de:6d:5d:14:ad:7e:05:0c:b1:
e7:13:23:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:15:05 2025 by rpki-client