Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/323830343a35633a3a2f33322d3438203d3e203238323031.roa
File: 323830343a35633a3a2f33322d3438203d3e203238323031.roa (raw, json)
Hash identifier: BmqqFnvGK4bBTyOqH+3fMg1f9d9NnRNkJNMgd+ceEC8=
Subject key identifier: 4A:98:F8:A5:AE:C9:A7:22:04:E3:B1:AA:37:36:4D:C5:FC:DB:40:72
Certificate issuer: /CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Certificate serial: 625B4739BF816D698C1DE692CAA4CC9CA8BC5A44
Authority key identifier: AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/323830343a35633a3a2f33322d3438203d3e203238323031.roa
Signing time: Wed 12 Mar 2025 12:33:14 +0000
ROA not before: Wed 12 Mar 2025 12:28:14 +0000
ROA not after: Wed 11 Mar 2026 12:33:14 +0000
asID: 28201
IP address blocks: 2804:5c::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:5b:47:39:bf:81:6d:69:8c:1d:e6:92:ca:a4:cc:9c:a8:bc:5a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC1FE9387640A777B73D94211D4C8FFA5C669304
Validity
Not Before: Mar 12 12:28:14 2025 GMT
Not After : Mar 11 12:33:14 2026 GMT
Subject: CN=4A98F8A5AEC9A72204E3B1AA37364DC5FCDB4072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:06:e3:45:a2:c4:46:36:63:ab:18:3c:99:
17:c4:5b:16:15:87:6d:39:31:72:90:29:fa:3a:af:
bc:30:72:8b:30:b5:63:b9:8b:8b:70:29:3b:fb:0e:
91:3e:87:4c:95:e1:37:74:7d:58:63:e1:78:8f:2e:
e6:fb:a8:63:ab:7f:a7:8e:96:b0:83:72:ca:62:51:
ba:5a:f7:ef:77:18:a2:d5:d4:83:8e:6c:89:4b:b8:
cc:a8:ef:4c:23:39:50:f3:07:52:7e:5f:48:27:14:
0d:45:d1:86:1e:80:11:39:41:89:e1:0a:8b:c5:55:
b7:30:0b:52:d6:79:89:d6:12:a0:4d:04:ac:0c:cd:
d6:57:11:8a:16:77:8a:f3:6d:2a:80:e8:54:ce:d7:
5a:e9:be:3b:9e:20:6b:7f:8a:aa:1c:b5:59:cb:62:
cd:72:7c:22:7c:cd:24:ba:bd:33:c0:0f:49:92:a0:
eb:af:c4:ed:6c:53:3b:12:76:a0:b4:b1:84:5a:e9:
95:09:bd:48:01:b9:3e:6d:2a:84:f7:78:ea:0b:b6:
b4:57:ec:65:03:01:7f:3a:0d:e0:37:45:9e:8e:9e:
93:24:75:76:96:4e:54:de:f6:81:c2:fb:5e:e5:93:
95:a9:79:38:36:ac:6d:7b:b2:a8:c9:4b:41:2a:92:
c6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:98:F8:A5:AE:C9:A7:22:04:E3:B1:AA:37:36:4D:C5:FC:DB:40:72
X509v3 Authority Key Identifier:
keyid:AC:1F:E9:38:76:40:A7:77:B7:3D:94:21:1D:4C:8F:FA:5C:66:93:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/AC1FE9387640A777B73D94211D4C8FFA5C669304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AC1FE9387640A777B73D94211D4C8FFA5C669304.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9tgHFrYqotknrzGNHA22qPXArbT22UspTGcZriDN6fgU/0/323830343a35633a3a2f33322d3438203d3e203238323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:5c::/32
Signature Algorithm: sha256WithRSAEncryption
1f:fa:83:86:f8:57:64:ad:e3:df:f8:9b:02:52:5d:46:82:4e:
dc:80:32:30:6f:85:2c:13:82:92:41:4d:cc:0b:ba:58:6c:71:
89:10:8a:1f:e6:f0:5c:17:03:8b:5c:be:59:6d:2d:e5:7a:d7:
58:ef:b0:b9:9b:ac:70:6f:85:38:da:35:78:c7:0d:32:55:82:
33:8f:9d:b1:9d:f3:ac:61:1a:92:61:fe:5b:ce:cb:e6:b6:4a:
66:14:ea:be:4e:4f:11:c4:c8:70:ad:23:9b:c9:c9:9a:04:08:
bf:d8:41:5b:4d:82:de:ee:50:50:47:e1:a2:7d:86:23:d9:05:
b0:53:32:d3:2f:15:bd:f5:f2:f0:38:61:c7:69:91:99:66:eb:
7a:e0:1e:e6:c4:bc:77:d9:aa:c3:12:fc:ca:57:22:8a:0a:8f:
0b:cb:64:4b:98:98:6a:54:fc:17:82:e7:fc:b2:81:d0:58:72:
4f:2e:91:75:8a:f0:3c:9e:dd:d6:68:85:6d:98:9a:d4:3d:21:
a4:2d:6b:fc:88:b0:7a:5d:f1:31:20:48:2f:9c:33:3d:a7:f0:
25:cb:7d:b1:78:55:e4:7a:11:4a:83:81:23:cf:ab:a9:f6:4d:
47:87:bf:aa:90:0b:4a:3a:a3:48:7f:e0:51:70:5f:2d:f9:07:
6b:11:7e:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:00:58 2025 by rpki-client