Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/3137302e38332e3133322e302f32322d3332203d3e20323632353838.roa
File: 3137302e38332e3133322e302f32322d3332203d3e20323632353838.roa (raw, json)
Hash identifier: n54bEmAKHrH55uyH7iG2uVSoDUEst88PNYE8dPwrj6Y=
Subject key identifier: C5:66:F4:37:6B:A4:55:58:39:E8:69:13:CF:55:11:A5:24:B6:36:2B
Certificate issuer: /CN=70257C060065495B0C625EE3C4FC503EAEB25ED4
Certificate serial: 37B65A180E0AB4A06CAF9A99DBAF328A35ACADD0
Authority key identifier: 70:25:7C:06:00:65:49:5B:0C:62:5E:E3:C4:FC:50:3E:AE:B2:5E:D4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/3137302e38332e3133322e302f32322d3332203d3e20323632353838.roa
Signing time: Thu 06 Mar 2025 14:31:54 +0000
ROA not before: Thu 06 Mar 2025 14:26:54 +0000
ROA not after: Thu 05 Mar 2026 14:31:54 +0000
asID: 262588
IP address blocks: 170.83.132.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.crl
rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 11:28:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:b6:5a:18:0e:0a:b4:a0:6c:af:9a:99:db:af:32:8a:35:ac:ad:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70257C060065495B0C625EE3C4FC503EAEB25ED4
Validity
Not Before: Mar 6 14:26:54 2025 GMT
Not After : Mar 5 14:31:54 2026 GMT
Subject: CN=C566F4376BA4555839E86913CF5511A524B6362B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ca:df:04:85:72:99:cf:c5:d4:99:66:db:11:
bf:bd:87:8e:2d:74:83:69:4d:6b:f6:d7:9e:e0:d4:
3f:ac:86:fc:c4:7c:c0:7c:88:d9:bf:28:2f:60:ba:
62:7a:22:94:15:e6:d6:8a:62:46:5c:d2:80:d8:6b:
c8:02:38:fb:d5:b2:eb:b9:33:3f:d3:54:a3:af:e0:
7a:70:6d:ab:d6:67:4d:5c:3f:07:44:56:7f:86:4f:
23:81:7f:e2:83:1b:91:89:98:fd:12:b7:1c:05:5b:
30:6e:42:72:c7:a2:b3:eb:17:aa:e0:f6:67:c8:6f:
5b:c2:db:1f:56:79:89:cf:96:ce:ca:6f:31:25:73:
44:16:4e:e8:4d:6e:e9:12:31:11:b2:57:d3:1d:09:
9b:00:93:a7:cb:65:2c:58:47:12:46:37:c4:12:73:
39:d2:0a:d3:d7:c4:15:bb:36:d8:15:8d:2f:d7:82:
9f:3f:2a:9e:86:c5:80:b9:fa:76:21:da:1a:62:6f:
50:a7:68:1a:2b:2c:48:2b:75:a3:cb:d4:8d:e5:26:
04:bd:13:80:ec:dc:df:9f:3d:04:44:12:3c:30:97:
8f:51:17:3c:9a:03:0d:62:6e:15:4d:7f:68:b9:af:
2b:d4:48:2b:47:11:0e:d0:92:89:3f:9d:0b:a4:4f:
17:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:66:F4:37:6B:A4:55:58:39:E8:69:13:CF:55:11:A5:24:B6:36:2B
X509v3 Authority Key Identifier:
keyid:70:25:7C:06:00:65:49:5B:0C:62:5E:E3:C4:FC:50:3E:AE:B2:5E:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/3137302e38332e3133322e302f32322d3332203d3e20323632353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.132.0/22
Signature Algorithm: sha256WithRSAEncryption
95:70:1e:83:e5:80:52:bb:bd:77:ac:fc:84:c2:9c:b3:d4:38:
f0:e2:63:d3:e0:cd:ef:6a:4a:98:d3:9e:7f:2a:11:42:a1:48:
26:ce:96:57:1e:96:5f:36:65:c4:9e:1b:93:43:a8:71:f6:8e:
e1:3f:6e:47:bc:f9:db:23:d2:29:dd:93:f1:53:d0:35:27:be:
1e:6f:5a:6d:ae:e4:1a:f9:a1:f0:01:e9:34:59:07:1e:ea:b0:
0b:81:1b:cb:bd:b9:ca:93:57:11:66:b2:b7:7e:21:31:7a:56:
a3:d1:00:ef:f4:53:83:cb:cd:71:8b:35:3c:84:9b:9d:29:db:
ba:2f:04:34:15:08:39:aa:ff:1d:44:1f:84:fb:eb:8d:0d:9c:
46:6e:54:f2:14:42:62:e6:66:d8:43:07:c7:b2:11:28:a2:d6:
b5:e8:39:88:1b:99:ac:83:e3:b0:e3:44:12:7b:a6:98:29:23:
14:87:07:f8:4b:a3:b0:8a:c4:f5:62:3a:06:25:68:26:f2:3e:
eb:66:28:17:85:88:66:bb:97:8a:80:58:9d:77:6f:06:e8:8d:
1c:95:96:56:98:8e:16:48:ac:29:4e:8e:e8:b7:11:dc:ae:41:
f1:94:da:1a:52:59:36:56:0c:11:c1:2e:7d:29:b8:2d:34:22:
50:99:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 20:47:26 2025 by rpki-client