Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/323830343a323930343a3a2f33322d3438203d3e20323632353838.roa
File: 323830343a323930343a3a2f33322d3438203d3e20323632353838.roa (raw, json)
Hash identifier: LnGsNm/NIk/Gw942VSvVHUk5Twh24BXxf11WVJdeiyQ=
Subject key identifier: 8B:B7:F2:21:0D:47:D3:8D:0C:CA:D9:18:51:41:F7:32:B0:19:FC:E4
Certificate issuer: /CN=70257C060065495B0C625EE3C4FC503EAEB25ED4
Certificate serial: 5270FA820CE14E5B7021C49EFB361A8F89A2C40E
Authority key identifier: 70:25:7C:06:00:65:49:5B:0C:62:5E:E3:C4:FC:50:3E:AE:B2:5E:D4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/323830343a323930343a3a2f33322d3438203d3e20323632353838.roa
Signing time: Thu 06 Mar 2025 14:31:54 +0000
ROA not before: Thu 06 Mar 2025 14:26:54 +0000
ROA not after: Thu 05 Mar 2026 14:31:54 +0000
asID: 262588
IP address blocks: 2804:2904::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:70:fa:82:0c:e1:4e:5b:70:21:c4:9e:fb:36:1a:8f:89:a2:c4:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70257C060065495B0C625EE3C4FC503EAEB25ED4
Validity
Not Before: Mar 6 14:26:54 2025 GMT
Not After : Mar 5 14:31:54 2026 GMT
Subject: CN=8BB7F2210D47D38D0CCAD9185141F732B019FCE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f7:d0:cc:17:3f:77:b0:80:61:49:e7:ca:e4:
af:0a:5c:e4:db:45:32:5d:0c:54:a7:9a:7e:ba:86:
e6:88:eb:3b:35:6e:75:1d:a1:84:5c:c1:b9:b3:3b:
fd:65:cf:00:fd:e1:c7:df:75:78:78:7f:cd:09:d2:
fc:2b:96:7b:e5:2f:5f:fc:cb:18:13:0c:8a:06:2c:
43:43:1c:b4:94:b8:d9:ce:3f:e6:bc:4e:cb:54:86:
d6:c2:11:25:2c:b3:66:0c:32:55:98:6b:6d:37:25:
6b:20:77:a8:d2:2a:9c:30:30:49:c4:55:22:b1:c0:
11:59:31:13:f0:ab:4d:db:bc:a1:0b:9a:50:b1:5f:
3a:0c:76:69:7f:02:4f:b1:14:b7:57:9f:2d:a4:b4:
b3:ec:e6:c2:3d:cb:a7:c2:c3:87:66:81:14:9c:88:
9b:23:03:5f:2b:18:0f:c0:7e:22:34:ae:b3:45:a4:
ee:ee:cc:70:2d:11:b5:4d:db:fb:ec:6a:03:83:56:
3c:c2:98:7d:9e:a1:4f:bc:45:c1:f7:44:1a:f6:94:
09:86:20:48:2e:8f:dc:0c:7a:b5:31:1c:9b:a5:78:
75:d0:c5:76:b0:8b:41:11:5f:e2:f7:88:44:81:59:
c1:4d:54:a9:ae:d1:e6:36:41:99:40:6d:29:d5:b2:
9b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:F2:21:0D:47:D3:8D:0C:CA:D9:18:51:41:F7:32:B0:19:FC:E4
X509v3 Authority Key Identifier:
keyid:70:25:7C:06:00:65:49:5B:0C:62:5E:E3:C4:FC:50:3E:AE:B2:5E:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/70257C060065495B0C625EE3C4FC503EAEB25ED4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AGS4xfD5qP5JBXbKKTkeJZp9V4NDJuKTr53B8dJYjtA/1/323830343a323930343a3a2f33322d3438203d3e20323632353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2904::/32
Signature Algorithm: sha256WithRSAEncryption
77:ee:3f:8e:45:56:49:42:6c:6c:83:47:54:a7:b5:1a:c9:fd:
4a:eb:98:5e:5c:c1:55:b2:62:79:9d:a6:fc:8b:58:ab:c5:ea:
a2:86:a3:bb:8e:24:40:9a:39:20:8e:82:91:cc:47:a2:85:81:
e3:b0:79:ff:f5:ec:2f:ef:6f:3d:49:27:a4:c3:56:2f:b1:d6:
ee:56:f3:de:33:ae:d8:41:2c:94:27:44:27:9d:b9:9c:b3:74:
84:c7:ed:87:12:d0:6f:f0:a8:eb:0f:4c:46:e0:fe:d9:f8:32:
19:63:10:af:d1:73:8e:9a:a1:89:8c:04:b3:e8:4b:bf:1a:78:
4d:f8:ec:4e:b9:b0:f4:ab:d0:dd:d1:46:4d:5f:4a:f2:65:ee:
5a:9d:4e:f2:49:41:95:43:30:e7:64:a1:f6:60:0a:02:34:7d:
40:c9:5f:47:00:e9:fe:1a:e9:71:79:76:a2:26:da:c7:64:6e:
a9:7c:18:d0:81:a3:7f:3c:8c:01:00:6c:46:4d:e8:ac:48:53:
8e:a9:73:09:25:68:9b:58:78:6b:a5:93:35:b0:76:56:e9:42:
84:4e:05:f2:21:30:32:03:3e:fa:6a:4a:2b:89:a9:c3:e8:2d:
f1:ed:c8:1d:8b:fd:a5:ad:09:85:a8:dc:27:1d:eb:a5:c1:91:
4a:bc:4e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 20:58:55 2025 by rpki-client