Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/34352e3136362e3230322e302f32342d3234203d3e20323638303333.roa
File: 34352e3136362e3230322e302f32342d3234203d3e20323638303333.roa (raw, json)
Hash identifier: TkdTdQL/VElW23PYML3zzg/4hyAhdhXGt6rP/HxSE1M=
Subject key identifier: 29:77:60:75:D5:7F:4B:B9:4E:AE:46:C2:8A:41:22:EA:A2:06:09:FD
Certificate issuer: /CN=CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38
Certificate serial: 4235C8E4F439A8CC607147D389065EE733F4B793
Authority key identifier: CE:6B:71:A4:B0:42:85:BB:0E:FE:A1:1B:40:BA:75:9B:C5:FD:1C:38
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/34352e3136362e3230322e302f32342d3234203d3e20323638303333.roa
Signing time: Thu 10 Apr 2025 12:16:52 +0000
ROA not before: Thu 10 Apr 2025 12:11:52 +0000
ROA not after: Thu 09 Apr 2026 12:16:52 +0000
asID: 268033
IP address blocks: 45.166.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.crl
rsync://rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 20:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:35:c8:e4:f4:39:a8:cc:60:71:47:d3:89:06:5e:e7:33:f4:b7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38
Validity
Not Before: Apr 10 12:11:52 2025 GMT
Not After : Apr 9 12:16:52 2026 GMT
Subject: CN=29776075D57F4BB94EAE46C28A4122EAA20609FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:25:ad:8c:82:87:7c:de:c9:54:4f:41:fd:3a:
76:65:45:f3:6f:7f:c2:8d:bf:02:b6:3a:a5:42:1c:
76:a9:62:cc:e2:86:cf:e9:0e:7b:b6:9f:69:7c:03:
a3:6d:d8:05:e2:71:50:7e:c1:11:e9:06:6a:1f:58:
73:6b:7e:83:24:a7:79:a4:b6:23:7e:99:6d:49:dd:
7d:bf:4b:47:38:31:e8:8c:b6:6c:d0:0c:43:c3:13:
a8:2a:07:08:01:6a:91:0a:40:ac:88:aa:d0:58:57:
b0:a5:63:75:8c:82:32:23:93:da:f3:be:c8:5d:1b:
e1:98:70:2f:0e:98:cf:2a:f4:3b:6b:5e:60:bd:14:
e1:06:d2:fb:cb:2d:05:b0:30:1b:ac:4c:cb:e7:12:
e1:d5:8f:b8:54:02:df:57:6f:46:26:6b:e5:43:9e:
d8:79:bb:02:6b:1f:c6:0c:a7:e2:ec:70:e2:d8:fb:
af:cc:78:02:aa:09:4c:7e:57:42:09:c0:80:eb:c6:
de:0b:52:d3:7c:04:01:f0:50:1c:f8:39:66:a8:c8:
bd:82:ae:31:05:91:c5:0d:5c:a4:a3:97:ac:fd:3f:
cd:6e:66:22:8b:be:3a:f4:20:0a:f6:31:93:c9:f4:
0d:d0:09:c6:9d:b0:5e:2f:60:33:75:5b:f3:03:9b:
78:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:77:60:75:D5:7F:4B:B9:4E:AE:46:C2:8A:41:22:EA:A2:06:09:FD
X509v3 Authority Key Identifier:
keyid:CE:6B:71:A4:B0:42:85:BB:0E:FE:A1:1B:40:BA:75:9B:C5:FD:1C:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE6B71A4B04285BB0EFEA11B40BA759BC5FD1C38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AF4qNkXUkn4GnmKUdnHfJWgEHutgcgwAdXANf59Pq6j2/0/34352e3136362e3230322e302f32342d3234203d3e20323638303333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.166.202.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c8:a3:96:e3:16:dd:49:69:91:73:d2:7b:ec:39:c6:fa:a7:
ae:dc:95:6f:1d:49:d2:5d:c0:8f:7d:4a:95:f7:85:3a:f3:09:
57:00:41:0a:aa:73:89:8c:73:d1:8d:5d:f5:ed:34:24:e5:b5:
ef:7e:72:86:f8:26:56:0d:1a:af:e9:b8:98:5c:45:b3:f6:65:
52:34:34:57:ec:5a:70:e6:a0:df:bc:c9:d5:3e:15:25:96:aa:
a2:f6:57:37:3b:41:7e:89:62:89:01:e3:cb:d4:81:dd:c6:e4:
d1:79:1f:f0:09:e9:07:21:65:52:f1:d2:79:2d:67:a9:d4:98:
cf:49:f9:d0:cf:d8:c4:b7:c9:95:d6:17:0a:c6:d1:4c:ad:bf:
4a:01:ea:08:ea:7f:16:c7:14:f4:27:3f:1e:9d:62:cc:1f:51:
bf:4b:00:2d:0b:ce:44:1c:72:18:dc:e9:b9:4b:45:ae:2f:1e:
93:eb:bc:d9:73:90:bb:31:8b:ef:00:09:38:f2:81:bc:e8:ee:
50:d0:cf:c2:70:34:5e:d3:b1:b0:82:22:53:05:61:ed:20:42:
65:8b:43:7e:8d:8e:7b:dd:cc:32:bb:6c:33:75:18:5b:75:8a:
07:02:39:72:0a:a9:57:8a:cd:0b:9e:e5:94:79:53:ed:33:41:
f4:61:27:6f
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUQjXI5PQ5qMxgcUfTiQZe5zP0t5MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0U2QjcxQTRCMDQyODVCQjBFRkVBMTFCNDBCQTc1OUJD
NUZEMUMzODAeFw0yNTA0MTAxMjExNTJaFw0yNjA0MDkxMjE2NTJaMDMxMTAvBgNV
BAMTKDI5Nzc2MDc1RDU3RjRCQjk0RUFFNDZDMjhBNDEyMkVBQTIwNjA5RkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRJa2Mgod83slUT0H9OnZlRfNv
f8KNvwK2OqVCHHapYszihs/pDnu2n2l8A6Nt2AXicVB+wRHpBmofWHNrfoMkp3mk
tiN+mW1J3X2/S0c4MeiMtmzQDEPDE6gqBwgBapEKQKyIqtBYV7ClY3WMgjIjk9rz
vshdG+GYcC8OmM8q9DtrXmC9FOEG0vvLLQWwMBusTMvnEuHVj7hUAt9Xb0Yma+VD
nth5uwJrH8YMp+LscOLY+6/MeAKqCUx+V0IJwIDrxt4LUtN8BAHwUBz4OWaoyL2C
rjEFkcUNXKSjl6z9P81uZiKLvjr0IAr2MZPJ9A3QCcadsF4vYDN1W/MDm3jPAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUKXdgddV/S7lOrkbCikEi6qIGCf0wHwYDVR0j
BBgwFoAUzmtxpLBChbsO/qEbQLp1m8X9HDgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQUY0cU5rWFVrbjRHbm1LVWRuSGZKV2dFSHV0Z2Nnd0FkWEFOZjU5UHE2
ajIvMC9DRTZCNzFBNEIwNDI4NUJCMEVGRUExMUI0MEJBNzU5QkM1RkQxQzM4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFNkI3MUE0QjA0Mjg1QkIw
RUZFQTExQjQwQkE3NTlCQzVGRDFDMzguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0FGNHFOa1hVa240R25tS1VkbkhmSldnRUh1dGdjZ3dBZFhBTmY1OVBxNmoyLzAv
MzQzNTJlMzEzNjM2MmUzMjMwMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2
MzgzMDMzMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAAtpsowDQYJKoZIhvcNAQELBQADggEBAJbIo5bj
Ft1JaZFz0nvsOcb6p67clW8dSdJdwI99SpX3hTrzCVcAQQqqc4mMc9GNXfXtNCTl
te9+cob4JlYNGq/puJhcRbP2ZVI0NFfsWnDmoN+8ydU+FSWWqqL2Vzc7QX6JYokB
48vUgd3G5NF5H/AJ6QchZVLx0nktZ6nUmM9J+dDP2MS3yZXWFwrG0Uytv0oB6gjq
fxbHFPQnPx6dYswfUb9LAC0LzkQcchjc6blLRa4vHpPrvNlzkLsxi+8ACTjygbzo
7lDQz8JwNF7TsbCCIlMFYe0gQmWLQ36NjnvdzDK7bDN1GFt1igcCOXIKqVeKzQue
5ZR5U+0zQfRhJ28=
-----END CERTIFICATE-----
Generated at Sun Apr 13 07:51:46 2025 by rpki-client