Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/APWuTEFksSNxdrAY9C7gE74ktMMvhoeSaas3CevjAEFa/1/3137302e38322e3136342e302f32322d3234203d3e203532363730.roa
File: 3137302e38322e3136342e302f32322d3234203d3e203532363730.roa (raw, json)
Hash identifier: Lcr6WgrPYpmxY4afXWgfP+7OOQAa+Z34RvH72vfxh0s=
Subject key identifier: 72:2B:46:8D:E9:45:22:8A:5F:8B:FC:C2:77:F4:0A:72:96:EC:0C:D2
Certificate issuer: /CN=09D2BDA11F5F30E72CA02E1F43CCEB583E0071A3
Certificate serial: 2973EBB211957B7D418F9C21AE1AC58F29351FB9
Authority key identifier: 09:D2:BD:A1:1F:5F:30:E7:2C:A0:2E:1F:43:CC:EB:58:3E:00:71:A3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09D2BDA11F5F30E72CA02E1F43CCEB583E0071A3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/APWuTEFksSNxdrAY9C7gE74ktMMvhoeSaas3CevjAEFa/1/3137302e38322e3136342e302f32322d3234203d3e203532363730.roa
Signing time: Wed 03 Apr 2024 20:19:43 +0000
ROA not before: Wed 03 Apr 2024 20:14:43 +0000
ROA not after: Wed 02 Apr 2025 20:19:43 +0000
asID: 52670
IP address blocks: 170.82.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:73:eb:b2:11:95:7b:7d:41:8f:9c:21:ae:1a:c5:8f:29:35:1f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09D2BDA11F5F30E72CA02E1F43CCEB583E0071A3
Validity
Not Before: Apr 3 20:14:43 2024 GMT
Not After : Apr 2 20:19:43 2025 GMT
Subject: CN=722B468DE945228A5F8BFCC277F40A7296EC0CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:13:cc:92:54:bc:86:e3:e2:0d:ab:17:c7:dd:
3d:1c:af:9b:ce:35:f5:b0:12:b6:5f:1d:79:85:9a:
57:a7:b6:f5:97:da:f9:32:2b:74:70:5a:cc:a5:72:
56:ca:f7:cf:98:a1:58:50:0e:3b:d3:68:28:0c:89:
19:46:d7:77:0b:08:e4:62:0a:fd:a7:77:4b:c5:ad:
6a:3a:8a:36:d6:c4:ec:a4:79:7c:63:e3:94:03:97:
21:93:9a:ee:25:1d:af:35:1b:8f:db:17:06:a1:ad:
de:77:65:91:78:e9:c9:36:eb:33:f8:51:be:1e:16:
4e:d4:32:9e:b5:2b:40:94:c5:5b:c2:66:ba:e0:e1:
05:55:48:a3:09:e1:66:0d:01:af:b4:17:a4:16:bf:
08:16:c8:7c:56:85:33:8b:df:9d:10:b9:55:f2:c7:
84:47:7d:d5:29:b7:33:1f:a8:52:ec:86:da:c0:ba:
92:49:a7:f0:bb:cb:bb:ca:2d:ca:93:26:8e:5f:4a:
4c:b9:f2:72:4d:93:6d:81:22:2b:fa:80:92:8f:64:
00:bd:45:82:3f:ea:48:1b:e1:2f:c1:51:8c:cf:16:
38:35:39:ca:96:20:43:14:ee:74:69:c6:0d:92:d1:
7e:21:a6:4f:fa:d1:9f:f2:66:bf:bc:99:be:45:96:
03:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:46:8D:E9:45:22:8A:5F:8B:FC:C2:77:F4:0A:72:96:EC:0C:D2
X509v3 Authority Key Identifier:
keyid:09:D2:BD:A1:1F:5F:30:E7:2C:A0:2E:1F:43:CC:EB:58:3E:00:71:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/APWuTEFksSNxdrAY9C7gE74ktMMvhoeSaas3CevjAEFa/1/09D2BDA11F5F30E72CA02E1F43CCEB583E0071A3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09D2BDA11F5F30E72CA02E1F43CCEB583E0071A3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/APWuTEFksSNxdrAY9C7gE74ktMMvhoeSaas3CevjAEFa/1/3137302e38322e3136342e302f32322d3234203d3e203532363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.164.0/22
Signature Algorithm: sha256WithRSAEncryption
84:d8:0b:fb:9e:e6:06:a5:f7:c2:75:d4:2b:c7:2b:57:b0:1f:
38:5e:a0:70:6a:55:f2:3c:33:a4:0a:41:01:23:cf:74:0e:40:
8d:a1:a9:4d:26:ed:23:f8:51:1d:82:32:e3:6a:e8:1c:1a:e2:
a4:43:68:91:54:a2:2a:2b:f1:e7:16:96:4b:51:44:fe:d2:77:
c9:e5:8c:21:d3:83:74:e6:e4:ba:7b:fe:55:a7:2f:a3:86:70:
98:0b:a0:e0:77:db:7c:ce:d8:c2:86:5a:98:cc:52:68:45:14:
d4:36:98:19:a9:ff:02:e3:dd:20:dc:75:65:d1:88:17:42:08:
50:c3:42:7b:9a:a7:6c:d7:22:15:3f:47:9e:6c:c9:d6:9b:94:
4f:23:14:d7:77:3f:05:26:4d:aa:cd:e5:c8:3a:53:07:3d:d7:
7a:74:c5:02:24:0d:25:e9:ae:2a:c2:fd:bf:f4:46:21:7c:be:
27:91:70:38:f1:9d:8b:cb:96:f1:2e:27:5c:02:ac:60:4d:e8:
67:0e:6f:09:16:24:a2:30:56:ef:08:0c:0c:51:aa:af:99:0a:
8a:9d:d2:22:51:e3:55:40:d5:07:87:30:c9:26:3d:75:c3:fb:
01:5b:75:69:68:d6:16:35:0e:7e:92:14:ca:8c:45:af:9b:28:
54:77:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:02:43 2025 by rpki-client