Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133312e3136312e342e302f32322d3234203d3e203238323031.roa
File: 3133312e3136312e342e302f32322d3234203d3e203238323031.roa (raw, json)
Hash identifier: 7sTCSRA6tJFJTUnqJhXDlwtDwYlqdbCvQqXPKEhS+48=
Subject key identifier: 9E:04:7C:E5:48:30:17:BD:F2:CC:B9:5A:DD:27:79:F4:93:77:87:E6
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 104E431EB42ABBD3E1B758951289EA14993099CC
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133312e3136312e342e302f32322d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 12:33:15 +0000
ROA not before: Wed 12 Mar 2025 12:28:15 +0000
ROA not after: Wed 11 Mar 2026 12:33:15 +0000
asID: 28201
IP address blocks: 131.161.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:4e:43:1e:b4:2a:bb:d3:e1:b7:58:95:12:89:ea:14:99:30:99:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 12:28:15 2025 GMT
Not After : Mar 11 12:33:15 2026 GMT
Subject: CN=9E047CE5483017BDF2CCB95ADD2779F4937787E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:e3:0e:4f:58:e5:4d:20:1e:93:7e:52:5a:
36:b5:b3:5b:eb:86:cb:15:73:18:16:b0:e1:22:44:
9d:68:6d:35:c9:39:7b:2b:3c:6b:34:64:14:69:cd:
1d:69:f9:de:57:73:c3:0f:34:89:3d:7d:6c:c3:d3:
37:6d:e1:b4:03:81:8b:38:f4:14:e4:26:67:83:17:
d2:b9:ae:3d:c8:8c:9a:04:df:63:8c:a7:4e:3f:64:
94:9f:82:60:40:3b:09:6e:52:0c:31:62:f4:12:b7:
4a:55:5d:35:62:e7:3f:fd:bb:57:a8:85:1e:a8:a5:
ee:cf:d5:b4:8f:11:af:7e:3a:89:a6:85:78:e7:f8:
7d:7f:bf:d3:62:24:c5:21:5c:fd:4b:a7:ff:24:09:
0c:2a:03:2a:17:c1:87:56:8d:c2:a7:fd:4d:8c:df:
51:45:98:06:85:49:f4:98:fe:58:27:04:de:8f:5b:
13:f1:86:81:18:5d:2b:3e:d1:93:e8:e9:16:3d:b0:
79:3c:1c:d3:e7:83:e0:63:a2:ae:95:af:0b:21:08:
da:60:93:4b:1d:7c:0d:4c:bf:fc:a1:f4:fe:fc:e6:
4f:1a:26:c1:23:b8:9d:c0:79:73:44:21:44:67:47:
c0:7e:32:6c:93:62:b2:0c:85:d9:40:f5:62:5d:b5:
2a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:04:7C:E5:48:30:17:BD:F2:CC:B9:5A:DD:27:79:F4:93:77:87:E6
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133312e3136312e342e302f32322d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.161.4.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:23:a9:3b:6b:f9:51:2e:d6:b8:f5:f6:3f:0e:df:26:b7:4b:
6d:ff:09:f5:5a:6e:93:ad:6a:a2:9e:f9:09:9a:e6:d1:41:13:
4b:2d:cf:8b:04:65:de:b3:89:74:8e:cb:be:e3:e2:23:c4:7a:
db:e5:ba:1d:8a:2e:01:27:cd:80:30:ef:ad:3a:13:fd:40:7c:
b1:cd:64:75:d9:93:2b:60:90:ef:dd:37:49:df:3b:81:fa:a9:
e6:97:aa:40:04:7d:8a:98:8c:42:8e:b5:b7:c5:32:3c:73:e8:
6c:2b:cc:dc:bc:22:25:10:fc:8c:e2:36:57:00:35:0d:03:10:
d7:93:9c:b9:e7:09:bb:97:76:b0:3d:8a:06:91:6c:96:2c:18:
a0:b1:7d:52:9b:32:bb:09:91:8e:90:04:9b:85:ad:1d:d9:99:
49:75:86:c4:2b:ff:8e:86:61:76:d7:7c:60:f9:ee:52:92:93:
e4:44:90:68:77:d4:6b:c3:16:72:5a:19:07:19:5a:83:71:b1:
06:15:95:47:d2:c4:ee:ee:c5:d9:57:e7:10:40:66:72:3b:5e:
07:eb:e3:24:19:a4:b2:74:83:2e:ca:ad:8b:d6:0c:24:c6:99:
12:92:6a:fb:40:41:b7:eb:0e:26:86:cf:75:e2:2c:bc:6a:37:
1e:4a:a4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 13:21:01 2025 by rpki-client