Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e31372e3234302e302f32302d3234203d3e203238323031.roa
File: 3138372e31372e3234302e302f32302d3234203d3e203238323031.roa (raw, json)
Hash identifier: oNyjRuFbMG3AAEF2ypH9MnkAEu643mLPQljmUcy6z7k=
Subject key identifier: 3B:64:99:D1:56:6E:A2:27:3C:31:E4:70:F2:AA:5F:3C:5E:41:8F:8F
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 224F563756575A88465512EDA1A2934CAEB88EE6
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e31372e3234302e302f32302d3234203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 12:33:15 +0000
ROA not before: Wed 12 Mar 2025 12:28:15 +0000
ROA not after: Wed 11 Mar 2026 12:33:15 +0000
asID: 28201
IP address blocks: 187.17.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:4f:56:37:56:57:5a:88:46:55:12:ed:a1:a2:93:4c:ae:b8:8e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 12:28:15 2025 GMT
Not After : Mar 11 12:33:15 2026 GMT
Subject: CN=3B6499D1566EA2273C31E470F2AA5F3C5E418F8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:52:c4:2f:a3:67:c3:e9:a4:66:25:72:0f:6f:
d4:5e:75:47:21:50:79:6c:c4:53:9c:29:07:f5:b2:
85:88:52:38:ed:d0:fe:5f:d0:54:d9:b7:0e:cc:0a:
03:ea:6a:ca:86:e7:fc:da:eb:17:9f:f3:7f:0e:e5:
c0:2d:9d:83:5b:1f:1e:9f:95:9b:71:ed:48:00:08:
7f:fe:d1:6d:aa:30:e5:be:fe:31:f6:af:de:61:ba:
c1:5a:09:4e:37:b7:21:b2:a1:06:95:2c:dd:1e:54:
13:61:eb:ae:83:28:19:97:b1:6a:5a:95:21:6b:9b:
df:23:0c:2f:de:06:7e:8d:e8:fa:a0:0e:c4:54:38:
cb:a5:30:34:7e:fe:d4:6b:1d:76:8b:a2:3b:21:ec:
8f:9a:d8:e7:c2:a5:fd:10:35:59:1e:24:5c:fe:68:
20:a6:af:e9:1e:c0:de:ce:64:a6:f0:ef:f1:6f:a2:
be:6b:7b:9b:28:1e:43:fd:d9:b7:cc:93:c9:2a:06:
e9:82:94:57:4b:3e:02:f0:02:31:57:1f:af:b3:5a:
8e:25:b8:78:da:24:d9:95:0a:a4:68:a7:8a:7b:57:
1c:6b:13:07:8e:8a:b2:72:05:f3:c2:ad:9b:4f:f6:
54:86:c4:35:03:c3:6d:a6:fc:3a:f0:e8:b6:59:60:
af:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:64:99:D1:56:6E:A2:27:3C:31:E4:70:F2:AA:5F:3C:5E:41:8F:8F
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/3138372e31372e3234302e302f32302d3234203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.17.240.0/20
Signature Algorithm: sha256WithRSAEncryption
29:7e:48:a1:ed:4d:51:cc:a0:42:a9:c8:28:5f:3c:4e:02:90:
2f:9d:20:26:88:20:23:3c:1c:46:05:96:c0:22:fe:f9:4b:95:
b1:d7:48:71:88:c1:f7:8d:19:f3:e1:dc:8d:b5:de:28:cc:3c:
66:0f:78:72:26:20:6f:aa:b4:de:ec:dd:8e:9a:e6:b7:d4:3c:
84:82:5b:dc:b9:e6:43:1f:d3:4f:df:2c:49:53:2d:c7:bc:5f:
d3:64:42:ac:e1:87:c2:aa:08:c1:dc:27:7f:29:cf:44:08:50:
71:a6:d6:9a:75:c8:a6:5c:32:bc:57:ff:52:a5:1c:4c:11:68:
8a:3d:8a:c5:9e:4a:65:bb:c4:b7:f0:28:e7:0d:40:b3:e7:e7:
a2:b9:97:19:94:f1:d0:7d:76:c7:2b:36:54:f1:81:3d:80:66:
9e:29:a8:d7:fb:70:3a:06:2d:41:b5:25:49:26:ee:45:a4:29:
d4:8b:e7:80:3c:75:76:81:62:aa:b0:89:14:e6:1f:b4:3c:87:
e8:f8:14:a8:fb:63:1b:04:8b:98:93:e8:64:a9:ed:53:b0:6a:
79:db:5d:30:a4:5a:ca:d6:fb:f2:8f:02:2c:7f:71:83:3a:ab:
dc:23:4b:78:14:46:5f:03:22:79:a4:cf:74:c5:1f:1f:bf:88:
cf:36:24:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:21:03 2025 by rpki-client