Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3235342e3136302e302f32322d3234203d3e203238323031.roa
File: 3137302e3235342e3136302e302f32322d3234203d3e203238323031.roa (raw, json)
Hash identifier: GDKY3dBna5LbDVDHugOfqAyyKe0o86lvvz1Bhdsxehg=
Subject key identifier: 03:85:8F:41:78:30:1B:3B:77:9F:4F:69:09:38:7A:A7:12:B9:9A:1B
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 6585862D6B83AE1719038EE990D7135A42C2E013
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3235342e3136302e302f32322d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 13:33:17 +0000
ROA not before: Wed 12 Mar 2025 13:28:17 +0000
ROA not after: Wed 11 Mar 2026 13:33:17 +0000
asID: 28201
IP address blocks: 170.254.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:85:86:2d:6b:83:ae:17:19:03:8e:e9:90:d7:13:5a:42:c2:e0:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 13:28:17 2025 GMT
Not After : Mar 11 13:33:17 2026 GMT
Subject: CN=03858F4178301B3B779F4F6909387AA712B99A1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5d:3c:c9:d9:50:7d:9e:70:71:59:17:9c:23:
6d:70:8b:45:5b:4c:00:89:28:a4:3b:31:1c:33:ca:
53:f8:82:ce:9b:11:e2:9e:c8:cd:3a:d6:6d:cf:a6:
ee:e1:9b:40:75:01:61:40:06:af:ab:35:22:84:3e:
04:24:d6:7b:55:5a:92:ee:58:f1:a9:28:a3:eb:cc:
b6:35:08:17:8b:7c:60:c3:ba:f0:91:88:c1:24:57:
73:ac:09:83:7f:16:ae:75:96:85:ba:6d:c0:68:e4:
dd:6a:28:21:40:8c:74:b4:77:1d:d0:36:56:ad:cd:
79:c2:41:f7:70:5c:04:86:d0:a8:17:9f:32:2f:b5:
d9:12:f0:ba:2c:35:f3:92:ed:3a:93:ff:bf:dd:9c:
d3:e3:1e:3a:31:1d:a0:28:11:03:d1:73:d2:e8:2c:
88:36:0b:a2:78:01:40:18:86:69:a9:7a:e7:9d:4a:
c3:d0:ed:2e:ee:b7:8c:fc:0c:44:bc:5a:cc:46:fe:
aa:72:49:1c:ce:8c:a2:54:56:3a:f5:f2:b6:1a:93:
55:d6:bb:98:3f:2a:12:f9:92:92:10:9d:18:aa:71:
11:70:6e:4a:cb:44:34:f7:1c:4b:22:e7:16:6c:e7:
6f:c3:80:f5:c8:f4:df:43:69:9b:45:df:7b:48:e2:
21:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:85:8F:41:78:30:1B:3B:77:9F:4F:69:09:38:7A:A7:12:B9:9A:1B
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3137302e3235342e3136302e302f32322d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:98:9e:a7:31:e6:97:56:3f:f1:c6:d8:fd:01:d7:77:c7:2d:
a7:c2:dc:e7:ba:1c:bf:32:76:4b:27:ce:87:e4:3f:1f:70:34:
f4:a9:9c:6b:cc:90:7f:6c:d6:7f:5d:cf:69:9f:0a:c6:d5:81:
04:60:ac:6f:92:4d:44:c6:79:af:8e:34:a3:f7:17:a2:90:87:
0a:23:c6:2c:c2:ce:93:3e:61:fd:23:d6:0f:ee:b0:0c:90:5a:
8d:7a:5f:b0:40:fb:b3:b1:21:82:ef:7d:ef:b1:d4:02:0e:1d:
a2:1f:e2:14:fd:ee:b6:a9:8d:62:82:fb:07:c7:af:47:99:2f:
7c:2b:8f:25:41:23:77:8d:49:47:c6:dd:da:62:86:4d:5d:e1:
9c:ec:c4:30:21:4a:aa:7a:9a:22:f9:04:73:28:96:34:b2:7f:
1b:5a:5e:1a:2d:ba:bf:1c:9b:aa:57:3c:2b:de:04:36:8c:7b:
81:57:d2:7e:29:e5:8e:f9:2c:69:64:df:ae:8c:4d:2c:2d:0e:
0f:27:6a:d2:65:da:c6:96:d6:cc:e4:9a:61:8a:d2:c6:b7:48:
02:0d:9c:39:22:97:ac:ad:d6:9a:a4:e7:08:ca:0e:62:fa:7c:
c7:13:b8:57:6e:c1:8a:06:fa:7f:87:2a:38:c3:30:10:89:cd:
ee:ec:10:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:41:13 2025 by rpki-client