Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133382e3131372e3230342e302f32322d3234203d3e203238323031.roa
File: 3133382e3131372e3230342e302f32322d3234203d3e203238323031.roa (raw, json)
Hash identifier: Wh1J6dYl7HkJDjtmX87qxVG+VG0eCd/cvpIOCshV3oI=
Subject key identifier: D2:07:F7:5E:98:70:26:54:40:FC:E9:35:62:72:53:06:3C:96:06:32
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 6C03AB12502CDE95980172D04681346A5F3B77AB
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133382e3131372e3230342e302f32322d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 13:33:16 +0000
ROA not before: Wed 12 Mar 2025 13:28:16 +0000
ROA not after: Wed 11 Mar 2026 13:33:16 +0000
asID: 28201
IP address blocks: 138.117.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:03:ab:12:50:2c:de:95:98:01:72:d0:46:81:34:6a:5f:3b:77:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 13:28:16 2025 GMT
Not After : Mar 11 13:33:16 2026 GMT
Subject: CN=D207F75E9870265440FCE935627253063C960632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a0:df:37:e0:41:4c:8c:f0:56:c5:95:c5:dc:
26:45:87:94:be:22:45:a1:44:ec:0d:42:79:34:84:
03:8c:f3:b7:69:2e:51:9f:89:73:4d:df:c3:ae:10:
58:f3:6b:61:28:a3:b4:d3:8c:ae:9d:b2:ed:34:16:
36:ca:93:27:2d:9d:7f:6b:11:3e:da:6b:fa:fe:7e:
bb:dc:e8:b9:0c:f8:bd:56:1d:90:33:82:ed:de:2a:
5e:e7:0c:87:63:13:74:47:2d:ed:08:71:73:88:8b:
b3:40:72:78:f8:b1:4d:bb:75:fd:2c:33:b5:fa:71:
db:f9:9d:12:5c:3a:ba:9c:60:16:02:64:9e:f2:ea:
62:97:81:e3:2e:e8:f4:16:5a:d7:a3:9c:a3:f3:01:
88:83:70:f7:a8:90:7f:d4:4e:27:2d:e5:36:39:7d:
ec:13:ec:b0:15:c0:f4:64:72:ff:46:18:b6:a5:57:
a4:4c:45:e5:a2:3b:6f:0f:5e:92:b6:2d:f4:aa:47:
63:a3:5e:46:cc:b6:13:62:72:57:84:df:98:54:6a:
c5:d2:04:f1:a7:86:a3:bb:68:59:a0:b0:88:b9:d7:
9a:fa:4e:37:bc:98:c9:75:e4:82:56:43:5a:26:68:
a8:83:3a:86:9d:32:14:a4:78:4f:ef:20:26:f7:dc:
08:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:07:F7:5E:98:70:26:54:40:FC:E9:35:62:72:53:06:3C:96:06:32
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3133382e3131372e3230342e302f32322d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:72:51:c5:a6:1b:d2:82:62:9e:af:a4:31:23:4e:bb:73:ce:
12:e5:dd:9a:10:eb:c8:da:29:53:93:f7:24:ff:7c:75:1e:6e:
88:2c:56:f8:cc:e1:8e:a4:70:56:c5:1b:dd:31:c2:37:b3:ca:
25:ba:23:0b:55:bd:83:9b:20:dd:fc:4b:16:68:be:48:18:04:
b2:50:bf:38:c8:62:9c:09:38:fb:0d:cd:a8:24:97:38:1c:3c:
9f:c8:1c:76:2f:4c:f9:16:1c:62:c1:21:d7:d0:cd:c5:27:84:
67:0d:84:0c:67:f9:75:ec:dd:fc:70:90:2e:27:4f:e9:c9:7f:
76:24:4f:e7:13:b6:87:31:d0:e6:77:97:7c:6d:e8:52:c7:9d:
7d:ca:cc:b2:89:d9:9c:b8:bc:2a:81:fe:05:00:c0:16:16:47:
30:24:94:4c:36:25:ea:60:3d:1d:21:e2:5d:5c:b3:77:19:c3:
17:59:89:14:84:55:33:71:f9:e1:ba:cf:b9:49:22:88:42:6d:
dd:b0:f1:26:d9:e1:ca:90:6e:40:29:bb:5e:c2:a6:50:cf:b2:
7f:43:65:6f:e2:d8:63:6a:40:c9:e8:12:ff:5b:b3:0f:8d:53:
fd:ef:3c:52:99:c3:e7:49:2e:45:95:f0:99:7e:35:29:0d:e9:
4c:4b:57:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:41:27 2025 by rpki-client