Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3233392e3232302e302f32322d3234203d3e203238323031.roa
File: 3137302e3233392e3232302e302f32322d3234203d3e203238323031.roa (raw, json)
Hash identifier: 1oRIFkEualyThMQ0yxkR+u+hWd9gyfN4bEeBkGOinQA=
Subject key identifier: 1C:EF:22:D7:32:18:69:5E:94:9F:46:1B:91:DB:4D:51:D8:1F:98:52
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 53FF97BC4CE50D46C7D19BAD77341E92C477ADD8
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3233392e3232302e302f32322d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 13:33:16 +0000
ROA not before: Wed 12 Mar 2025 13:28:16 +0000
ROA not after: Wed 11 Mar 2026 13:33:16 +0000
asID: 28201
IP address blocks: 170.239.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:ff:97:bc:4c:e5:0d:46:c7:d1:9b:ad:77:34:1e:92:c4:77:ad:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 13:28:16 2025 GMT
Not After : Mar 11 13:33:16 2026 GMT
Subject: CN=1CEF22D73218695E949F461B91DB4D51D81F9852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:64:68:3e:d8:7f:78:8c:dd:4b:6f:db:14:
1c:80:b8:d0:9b:f5:85:45:69:d2:10:22:09:4f:df:
e2:f0:dc:a3:05:00:9d:ee:dd:dc:01:f9:15:e3:c0:
7a:a6:e2:7f:ef:d0:58:a8:78:4f:3a:59:fc:d8:e5:
f8:bb:ca:0c:35:4a:b2:98:66:c0:21:fd:ca:e6:e6:
29:19:d2:3b:98:6c:e9:a1:3b:11:48:ac:9d:a5:7b:
dd:f7:6f:a1:4f:35:37:4a:73:72:af:32:57:a6:a1:
ef:4c:ac:a3:d2:83:c8:2f:33:24:93:23:cc:bc:fe:
9b:7b:31:0c:79:db:b8:5b:f9:bb:f5:9f:e3:e0:5d:
bb:1e:5e:dd:a4:d4:e4:03:94:86:71:fd:64:7b:12:
68:ef:e2:ed:bb:e9:85:88:65:80:0d:3a:d5:56:c6:
8e:4b:56:df:2c:5c:c3:0e:51:f6:44:17:7f:8f:06:
56:19:73:78:fa:18:fc:eb:5c:28:24:40:68:08:ad:
65:83:5e:d9:a2:e2:b5:e8:08:ff:d5:13:e1:96:67:
d6:01:4d:5e:0c:23:55:ac:7b:0c:33:f1:91:bf:7f:
e7:47:e9:86:d5:6f:95:b5:99:d9:62:a5:f6:e1:2a:
99:4f:a8:c2:ba:79:1c:00:81:3c:75:d2:b9:bd:74:
e4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EF:22:D7:32:18:69:5E:94:9F:46:1B:91:DB:4D:51:D8:1F:98:52
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3233392e3232302e302f32322d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.239.220.0/22
Signature Algorithm: sha256WithRSAEncryption
74:bb:b0:72:7c:1e:b1:8c:c9:bc:e8:09:78:fb:b8:86:1a:c6:
af:5b:d6:a0:69:0b:99:77:53:7f:4d:49:b7:70:73:89:32:02:
1d:67:67:22:c0:f0:8f:32:22:71:35:f4:3a:10:e5:60:9d:3d:
48:97:3f:ed:2c:46:d5:5a:1a:7b:82:ca:0e:f2:b5:55:e8:f5:
31:de:0d:74:32:85:c1:cd:48:e5:ba:1f:d0:1d:5c:98:0d:0e:
35:ce:43:95:89:63:21:12:fe:dd:5f:a1:31:6f:02:20:56:e6:
72:c2:cb:44:24:44:e7:39:9b:ec:a1:78:05:99:9f:0a:73:1d:
f1:9d:fc:ae:a7:a9:96:22:18:4a:4e:5f:43:ad:a6:2f:40:e9:
f3:d2:5a:24:9d:02:ae:f1:be:77:00:37:5e:1a:c2:75:94:44:
ec:2b:6b:65:1e:18:bb:be:e3:13:74:09:f0:0e:87:80:ae:48:
b5:4d:79:02:c3:c5:a0:67:a0:b2:fa:a5:94:8b:38:11:56:f9:
58:68:da:5e:19:57:af:b2:78:c8:66:52:98:a7:3a:a7:ab:bb:
76:c6:8e:f9:3e:da:e9:7d:c4:48:67:7e:43:64:91:2e:74:83:
21:92:3d:86:7c:15:83:64:dc:34:31:b7:8b:c8:c0:7b:43:dd:
6c:f5:c4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:12:10 2025 by rpki-client