Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/A1MCPyAycBNffv939xzqVAByTuo7RBjFxtH2n1vxq2vE/1/323830343a316332303a3a2f33322d3332203d3e203631363339.roa
File: 323830343a316332303a3a2f33322d3332203d3e203631363339.roa (raw, json)
Hash identifier: V4eN4ORMPe8DLG2kCZ/OjRXgnSWUcj85mSg9lpRCFxM=
Subject key identifier: ED:5B:2F:E1:A2:B3:C6:95:3D:A8:1D:F1:68:8B:1F:25:AB:EF:1D:A6
Certificate issuer: /CN=0D8DD1F1992D55A10FEA85FAE3F95ECEF87DE42B
Certificate serial: 3C07267E6EB9A7D0661C2546E870590EBE5C9C2F
Authority key identifier: 0D:8D:D1:F1:99:2D:55:A1:0F:EA:85:FA:E3:F9:5E:CE:F8:7D:E4:2B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0D8DD1F1992D55A10FEA85FAE3F95ECEF87DE42B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/A1MCPyAycBNffv939xzqVAByTuo7RBjFxtH2n1vxq2vE/1/323830343a316332303a3a2f33322d3332203d3e203631363339.roa
Signing time: Wed 05 Mar 2025 19:00:20 +0000
ROA not before: Wed 05 Mar 2025 18:55:20 +0000
ROA not after: Wed 04 Mar 2026 19:00:20 +0000
asID: 61639
IP address blocks: 2804:1c20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:07:26:7e:6e:b9:a7:d0:66:1c:25:46:e8:70:59:0e:be:5c:9c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D8DD1F1992D55A10FEA85FAE3F95ECEF87DE42B
Validity
Not Before: Mar 5 18:55:20 2025 GMT
Not After : Mar 4 19:00:20 2026 GMT
Subject: CN=ED5B2FE1A2B3C6953DA81DF1688B1F25ABEF1DA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e2:eb:ca:07:e0:13:b8:0d:6f:bf:5c:bf:16:
b5:10:d6:fc:d8:87:5c:3c:8e:63:aa:e0:b5:2b:f9:
f8:61:c0:8f:23:bb:18:fe:2e:52:3a:85:50:d1:d0:
da:6c:8c:ea:4d:21:99:88:ea:31:ef:42:9e:1b:26:
aa:b7:69:c3:19:dc:13:8f:1a:42:bf:73:9f:f9:6f:
5a:b4:d9:92:1e:e9:aa:31:e1:b8:95:41:a1:29:0c:
81:21:80:1f:27:13:37:9a:f4:30:e2:1f:1a:b7:30:
51:4e:69:32:60:72:8d:52:87:83:56:81:0a:8f:07:
18:da:5e:ab:e4:75:ce:7d:85:6b:f1:1c:1e:dd:c0:
32:93:c8:2d:12:84:95:85:12:fa:17:bd:e4:2c:36:
06:ba:1b:2b:c8:86:65:fb:3e:8f:79:e5:df:e0:15:
57:81:16:1c:8d:58:03:f3:e6:0e:bb:93:17:79:d5:
3d:fe:71:12:ef:09:91:bf:24:91:cd:33:c2:a9:30:
19:9d:d6:2e:6e:78:a3:e0:f5:50:a2:fa:58:6b:ff:
69:e0:d4:2b:4f:ac:d5:24:69:b5:4f:1e:52:6b:c3:
73:62:62:0d:3e:70:57:a2:4e:f4:dd:e1:83:52:92:
66:4b:fb:79:60:35:08:38:09:0c:f9:92:03:01:ac:
86:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5B:2F:E1:A2:B3:C6:95:3D:A8:1D:F1:68:8B:1F:25:AB:EF:1D:A6
X509v3 Authority Key Identifier:
keyid:0D:8D:D1:F1:99:2D:55:A1:0F:EA:85:FA:E3:F9:5E:CE:F8:7D:E4:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/A1MCPyAycBNffv939xzqVAByTuo7RBjFxtH2n1vxq2vE/1/0D8DD1F1992D55A10FEA85FAE3F95ECEF87DE42B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0D8DD1F1992D55A10FEA85FAE3F95ECEF87DE42B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/A1MCPyAycBNffv939xzqVAByTuo7RBjFxtH2n1vxq2vE/1/323830343a316332303a3a2f33322d3332203d3e203631363339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1c20::/32
Signature Algorithm: sha256WithRSAEncryption
0d:b0:57:c7:23:54:0a:4f:80:41:76:35:98:aa:2d:e4:c0:53:
76:a7:84:58:b6:d3:fd:3d:ef:1f:78:4e:e7:1e:69:d2:ad:de:
6c:81:82:f5:05:31:91:e9:e6:82:20:c8:8d:17:f0:91:88:53:
66:3d:f1:34:0f:f0:c9:12:6f:a5:2f:e2:20:a3:ec:68:c1:82:
d8:33:2c:c0:c3:67:bb:1c:da:01:c2:56:e9:99:56:d4:e5:56:
a0:b4:70:3f:f1:a9:2e:3b:fb:9f:52:83:20:6d:64:46:56:43:
98:53:a5:14:7b:f8:d3:17:74:19:b4:90:49:00:49:ef:a4:35:
b2:2f:5b:79:1d:b5:92:33:90:da:ec:7e:d4:18:88:ce:17:b5:
b5:36:74:ae:72:93:0c:26:0a:7d:dd:96:4f:99:01:6b:8f:9f:
2e:d6:aa:be:f1:97:48:c5:c6:01:16:ba:36:2e:e3:98:bc:c0:
ed:db:07:c8:e9:43:85:54:5e:ef:4a:fc:43:0a:cd:6f:88:b1:
47:0b:42:91:9d:2b:e6:7b:2f:98:da:1c:d7:a0:8c:3b:80:73:
5a:0a:ea:ed:0a:90:c2:be:af:f5:ec:96:2b:69:ca:2b:9c:8a:
5e:a6:3a:a3:b9:4a:68:b9:d3:81:63:37:9b:60:0d:8b:85:4e:
36:7a:18:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:37:11 2025 by rpki-client