Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/323830343a333664303a3a2f33322d3332203d3e20323636333734.roa
File: 323830343a333664303a3a2f33322d3332203d3e20323636333734.roa (raw, json)
Hash identifier: 5lvhdKKVxPcZ3/nd628FoXyR2ITdSGX90BwjYAK8rAQ=
Subject key identifier: 1D:5C:F6:9F:89:F9:79:5F:85:61:98:8A:9B:1E:2E:31:B9:14:20:F6
Certificate issuer: /CN=0F9708322570D07CA4BE75EF484B6831664FE864
Certificate serial: 109E73589C3F7227B1B066A923EA71D4B5B31324
Authority key identifier: 0F:97:08:32:25:70:D0:7C:A4:BE:75:EF:48:4B:68:31:66:4F:E8:64
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0F9708322570D07CA4BE75EF484B6831664FE864.cer
Subject info access: rsync://rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/323830343a333664303a3a2f33322d3332203d3e20323636333734.roa
Signing time: Wed 05 Mar 2025 21:49:43 +0000
ROA not before: Wed 05 Mar 2025 21:44:43 +0000
ROA not after: Wed 04 Mar 2026 21:49:43 +0000
asID: 266374
IP address blocks: 2804:36d0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/0F9708322570D07CA4BE75EF484B6831664FE864.crl
rsync://rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/0F9708322570D07CA4BE75EF484B6831664FE864.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0F9708322570D07CA4BE75EF484B6831664FE864.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 12 Apr 2025 03:20:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:9e:73:58:9c:3f:72:27:b1:b0:66:a9:23:ea:71:d4:b5:b3:13:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F9708322570D07CA4BE75EF484B6831664FE864
Validity
Not Before: Mar 5 21:44:43 2025 GMT
Not After : Mar 4 21:49:43 2026 GMT
Subject: CN=1D5CF69F89F9795F8561988A9B1E2E31B91420F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c5:ad:c9:ef:33:2b:52:82:2e:18:03:ad:ad:
10:a4:8c:9c:f3:13:16:4b:80:93:d6:82:c1:c4:1c:
bc:c3:40:25:87:d0:96:73:53:f5:5e:48:1e:e1:9e:
3f:ad:91:6a:3d:f7:87:81:07:63:49:de:11:8b:3a:
46:8e:76:b8:43:d8:38:7e:87:b2:a0:e2:09:5d:8a:
52:b2:8a:d8:ce:7a:b9:4c:8b:bb:4f:0f:9c:c2:46:
e2:59:36:a7:28:f3:4d:8a:75:2f:bc:76:d6:35:85:
8c:24:cc:8a:2b:0f:13:64:14:51:9e:f4:c3:e5:1f:
e6:ec:c5:df:d0:d6:0f:4e:cd:ed:f7:d5:6f:8f:67:
ca:7e:0d:af:2d:51:a8:b1:ff:8f:33:cf:fe:fc:72:
61:46:f3:1d:8d:0d:19:bd:c4:7d:96:22:40:33:a0:
16:a6:e3:d6:2a:e3:e1:9b:0c:40:bc:73:b4:bc:a0:
dc:0a:19:e4:0a:d7:77:87:12:01:42:1b:e6:f9:22:
64:fb:b1:5b:35:c4:69:a5:20:9f:56:6d:47:23:1a:
c3:4c:d4:45:25:9a:f0:a9:ba:bc:f8:f7:53:e7:a9:
1f:78:9c:6f:c8:e3:c2:cd:a2:e3:e8:68:ae:a5:61:
13:7b:d4:f7:98:0c:3a:dd:bf:23:9e:78:1a:87:9b:
36:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5C:F6:9F:89:F9:79:5F:85:61:98:8A:9B:1E:2E:31:B9:14:20:F6
X509v3 Authority Key Identifier:
keyid:0F:97:08:32:25:70:D0:7C:A4:BE:75:EF:48:4B:68:31:66:4F:E8:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/0F9708322570D07CA4BE75EF484B6831664FE864.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0F9708322570D07CA4BE75EF484B6831664FE864.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/A5qNovLNMMSNQckTiyzSHiRUh9GeaQC2zzq1duKqFdSS/1/323830343a333664303a3a2f33322d3332203d3e20323636333734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:36d0::/32
Signature Algorithm: sha256WithRSAEncryption
31:25:08:b6:ad:f5:f4:f8:6e:c5:aa:96:34:35:d2:47:c7:df:
f8:2e:ce:c7:48:8f:0d:c1:2d:bc:f2:9c:42:dc:d5:e0:1f:15:
1b:9b:d3:cd:b6:6e:c7:b7:c1:6c:2e:f4:b6:19:bd:58:be:db:
48:75:5a:9e:24:1b:3d:e8:f7:ca:36:18:3d:21:be:7e:e5:e0:
fe:ea:ba:3b:03:f6:cd:9e:11:34:95:c8:72:62:f5:d2:2e:4a:
95:1e:41:9b:62:b3:65:78:e3:a7:f3:0b:f7:89:ea:86:ef:f6:
80:46:0e:d9:3b:e5:55:99:fe:2f:3f:a2:cc:02:c6:13:85:97:
05:17:3c:0b:f6:29:1f:93:8d:03:ef:08:d4:ea:3e:19:84:81:
10:03:82:43:04:dd:22:bb:64:a6:75:fb:15:48:5b:25:98:0a:
c6:24:05:98:4b:b6:b3:c4:31:cc:7d:b8:19:3f:01:93:16:68:
8c:77:b6:38:77:09:46:7f:16:5b:93:eb:e3:0d:21:34:f0:fd:
f8:6d:c2:d1:c3:9b:51:51:e8:21:5a:d5:87:1a:15:44:0d:b6:
e0:51:e8:e3:00:ab:4a:ea:0b:1f:f5:29:da:05:31:6c:bb:c4:
20:72:45:68:70:e6:a3:8e:71:93:18:0f:51:1c:69:d8:18:2d:
27:52:a9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:55:19 2025 by rpki-client