Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/3138362e3234392e32302e302f32332d3233203d3e20323633303232.roa
File: 3138362e3234392e32302e302f32332d3233203d3e20323633303232.roa (raw, json)
Hash identifier: bmC09WGeYdDECssoZBHMb30dnaKneoeEZK+KTVFyCK0=
Subject key identifier: 32:AA:5C:F4:CA:29:79:B7:0D:7E:15:99:86:D0:86:AC:86:7B:FA:70
Certificate issuer: /CN=BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B
Certificate serial: 6438B599AFC5E71C57162E781B2540EC59A06B21
Authority key identifier: BD:8D:13:72:FD:1D:2A:32:BF:9E:9A:0F:16:C2:F6:0D:FF:92:AD:6B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/3138362e3234392e32302e302f32332d3233203d3e20323633303232.roa
Signing time: Tue 08 Apr 2025 20:10:53 +0000
ROA not before: Tue 08 Apr 2025 20:05:53 +0000
ROA not after: Tue 07 Apr 2026 20:10:53 +0000
asID: 263022
IP address blocks: 186.249.20.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.crl
rsync://rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Tue 15 Apr 2025 06:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:38:b5:99:af:c5:e7:1c:57:16:2e:78:1b:25:40:ec:59:a0:6b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B
Validity
Not Before: Apr 8 20:05:53 2025 GMT
Not After : Apr 7 20:10:53 2026 GMT
Subject: CN=32AA5CF4CA2979B70D7E159986D086AC867BFA70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:90:c5:44:8b:7f:fc:b5:7e:dc:53:97:36:9d:
43:6e:0e:9b:45:2a:86:7a:f6:a1:1a:cc:71:c9:9b:
5f:d1:1a:c0:c5:d9:49:43:8d:0e:99:a7:93:c3:9a:
de:9a:54:8c:c7:08:38:74:36:0d:28:70:34:65:7e:
8c:b8:13:05:07:f2:b9:7d:34:52:db:d4:b9:53:5d:
98:35:09:58:1e:1e:f5:b1:b5:6a:b9:93:f9:d6:f6:
f4:a3:f9:a6:7e:1e:bc:e5:3e:69:eb:0c:65:3e:80:
3f:62:7d:5a:2f:ec:62:de:2e:53:54:63:3b:eb:e4:
61:dc:12:d2:02:de:9a:e8:4a:a5:41:e2:d0:39:7c:
e6:e1:65:e5:00:41:1e:7f:94:6e:c6:dd:c9:66:7c:
05:ca:23:6e:ea:d5:75:3d:c7:40:19:d1:38:f7:47:
3c:94:6a:b9:2e:a5:56:9d:40:2a:46:9b:a0:0e:16:
1d:a7:d3:92:82:28:12:03:3a:0f:ca:f7:70:6e:65:
2e:38:d3:be:a2:d0:40:68:68:dc:7f:4a:1a:67:eb:
0f:7e:3c:45:8c:08:62:ba:36:62:1f:56:1f:04:ba:
62:52:cc:fb:c2:bb:1a:a6:79:41:10:f8:f7:a6:6f:
84:90:39:da:c7:85:eb:95:34:8d:98:4c:fa:73:3d:
f6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:AA:5C:F4:CA:29:79:B7:0D:7E:15:99:86:D0:86:AC:86:7B:FA:70
X509v3 Authority Key Identifier:
keyid:BD:8D:13:72:FD:1D:2A:32:BF:9E:9A:0F:16:C2:F6:0D:FF:92:AD:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD8D1372FD1D2A32BF9E9A0F16C2F60DFF92AD6B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9pt3rKyejMed5xh8P8uxUCosy5iiQrcVFzZFxXT5BqBC/0/3138362e3234392e32302e302f32332d3233203d3e20323633303232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.249.20.0/23
Signature Algorithm: sha256WithRSAEncryption
38:2c:b2:6b:d1:f9:93:05:29:36:96:98:e4:50:b1:da:f2:66:
d5:ea:b0:a3:3f:be:9e:0e:01:3e:ed:53:ab:7d:27:c7:ee:87:
28:23:ac:46:87:fe:f2:8d:6f:89:71:12:90:97:5c:f1:59:e9:
39:36:95:40:88:ff:87:4d:91:c7:91:1a:9f:88:ad:13:d3:72:
52:87:3d:58:3a:ec:28:5b:e5:ed:61:cd:76:7e:e5:17:00:6c:
e8:2f:51:a1:9c:a2:0f:79:88:aa:5b:52:53:93:04:62:87:ea:
0a:c5:42:d1:bd:9a:ec:01:b5:c3:f2:cb:cf:6e:66:d3:f7:9d:
d2:e6:f8:c5:fb:1d:72:1f:80:a3:f5:72:de:93:51:c0:02:1f:
ad:a5:71:a0:65:cd:76:a0:5d:d9:e2:a9:70:32:f1:c8:5d:3d:
38:34:18:ff:2c:df:c5:96:19:c6:fb:10:c3:a1:9e:18:66:a4:
59:fd:71:95:4c:4b:c5:f1:a6:23:a8:5e:b3:81:0c:aa:ba:57:
8f:d5:02:c6:c4:f2:1f:81:74:77:f4:8d:ea:82:a2:06:7a:e2:
01:7b:4e:39:5b:bb:b8:33:c9:9a:ee:1e:b5:22:b9:47:db:39:
c5:1f:6d:3f:d9:f9:21:f7:28:a0:cb:9a:f6:ff:07:12:b4:5e:
3d:03:56:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:11:08 2025 by rpki-client