Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e312e34382e302f32302d3234203d3e203238323031.roa
File: 3138372e312e34382e302f32302d3234203d3e203238323031.roa (raw, json)
Hash identifier: MaPmhQcra+CQlwlloxBNCTtmGtILewHB84vJFNb1GdI=
Subject key identifier: 08:03:08:47:A0:47:0D:58:CF:2C:0B:8C:F6:EA:FB:EC:79:B5:D1:4C
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 6F3B151A9D3B8EE122B3D927FB3A89FF989F8BDB
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e312e34382e302f32302d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 13:33:17 +0000
ROA not before: Wed 12 Mar 2025 13:28:17 +0000
ROA not after: Wed 11 Mar 2026 13:33:17 +0000
asID: 28201
IP address blocks: 187.1.48.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 21:37:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:3b:15:1a:9d:3b:8e:e1:22:b3:d9:27:fb:3a:89:ff:98:9f:8b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 13:28:17 2025 GMT
Not After : Mar 11 13:33:17 2026 GMT
Subject: CN=08030847A0470D58CF2C0B8CF6EAFBEC79B5D14C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9b:4b:76:a8:28:5c:2c:af:bc:c1:2e:41:f4:
16:dd:f0:db:21:d7:ed:77:d8:84:e8:8a:be:07:b9:
8d:bd:10:de:e4:56:de:c0:93:bb:87:e6:93:a6:37:
2a:df:77:bc:7f:a5:80:01:37:4d:fe:59:fc:8e:5b:
3e:bb:0c:c2:70:df:72:c9:75:42:f0:28:24:dd:b9:
bd:aa:90:71:21:ec:09:b1:49:fa:4e:b2:a9:d2:59:
4f:44:9d:6c:2f:40:dd:32:c7:57:37:b5:57:74:71:
e7:a6:b8:0c:c8:95:6a:75:ab:7d:ae:11:01:c2:42:
24:1d:41:69:f6:8d:52:f8:8f:76:e3:9d:3e:c9:4a:
26:f3:98:37:e5:7f:f2:2a:6c:65:e7:ca:76:7e:91:
c6:a9:db:7e:83:ac:4d:4d:d5:f9:9a:a8:e2:6e:8c:
31:d9:53:b4:95:78:eb:87:a1:3d:8d:12:70:88:06:
a0:d0:c4:45:fa:a4:76:88:fa:d9:e6:13:d4:41:1b:
4b:dd:27:76:9b:80:d7:52:17:33:81:10:f9:0b:b0:
58:30:ff:96:0a:b7:e5:f6:f0:af:4d:30:10:66:5d:
0c:65:e7:f9:5c:20:cd:cf:32:13:d6:bc:da:83:68:
4e:4e:e7:3d:82:67:1a:c3:12:32:d8:97:ff:d9:db:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:03:08:47:A0:47:0D:58:CF:2C:0B:8C:F6:EA:FB:EC:79:B5:D1:4C
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e312e34382e302f32302d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.1.48.0/20
Signature Algorithm: sha256WithRSAEncryption
32:fd:ba:ad:5d:0c:cb:be:f0:26:c5:6a:68:ae:c5:91:8f:ca:
10:f2:c8:36:c1:d4:0b:be:ce:35:43:b3:8d:98:ee:37:59:70:
68:71:ef:1a:9e:f7:7b:71:bb:5f:21:4e:f8:f9:6e:5e:15:5e:
78:1f:76:e0:23:a3:ff:87:2a:87:d9:24:ec:af:5d:1b:20:2d:
da:cb:51:78:99:a5:37:e2:d6:88:68:29:5a:9e:99:5b:6c:37:
57:e3:e9:7a:db:b4:9d:d2:b4:c1:84:ac:6b:9d:a6:c9:0f:c5:
bb:4f:40:a9:3e:e2:01:7b:74:8c:15:8c:62:5c:31:af:9e:c4:
98:4b:0f:50:87:e6:73:3f:68:1e:86:ff:b4:ab:79:b2:5a:41:
b7:ac:a7:80:5b:0b:4d:0b:2e:e4:88:26:0f:16:82:56:0a:d3:
ba:ce:34:84:7a:e7:98:32:2e:a1:08:4b:15:7e:4b:25:f3:ac:
63:e7:38:2c:e9:34:87:66:6a:fd:f9:d6:fd:dc:f8:40:c3:e7:
be:23:65:c3:0f:33:99:1c:fc:4b:fb:c2:97:03:fa:a3:07:71:
df:9a:43:0d:f5:c1:37:09:ba:8c:09:bb:4e:51:d0:ff:d0:29:
ba:7c:50:38:b3:cc:d3:65:ff:d7:af:f6:56:74:74:1c:ff:dc:
c7:b8:1b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:40:05 2025 by rpki-client