Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AfikK6KEzS7VnWPAJnUpjoDrrbWf4k9gJNR9T1TnwnJy/0/3138372e36312e38382e302f32322d3234203d3e20323632343033.roa
File: 3138372e36312e38382e302f32322d3234203d3e20323632343033.roa (raw, json)
Hash identifier: O3B9+XW/LZAkuW2eBxgUMBDOjfvwXTevGeiU1YR1zO4=
Subject key identifier: 04:D4:DA:5A:0E:2B:02:1E:44:DE:F5:BA:56:D0:D7:7D:14:D2:BF:AC
Certificate issuer: /CN=A878ADF075B08DD537A3F9985F041C7EABC6F9B0
Certificate serial: 535C46F9D22AB4E1E995BEC0D4BB22FAE507FFCE
Authority key identifier: A8:78:AD:F0:75:B0:8D:D5:37:A3:F9:98:5F:04:1C:7E:AB:C6:F9:B0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A878ADF075B08DD537A3F9985F041C7EABC6F9B0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AfikK6KEzS7VnWPAJnUpjoDrrbWf4k9gJNR9T1TnwnJy/0/3138372e36312e38382e302f32322d3234203d3e20323632343033.roa
Signing time: Mon 09 Dec 2024 19:35:00 +0000
ROA not before: Mon 09 Dec 2024 19:30:00 +0000
ROA not after: Mon 08 Dec 2025 19:35:00 +0000
asID: 262403
IP address blocks: 187.61.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5c:46:f9:d2:2a:b4:e1:e9:95:be:c0:d4:bb:22:fa:e5:07:ff:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A878ADF075B08DD537A3F9985F041C7EABC6F9B0
Validity
Not Before: Dec 9 19:30:00 2024 GMT
Not After : Dec 8 19:35:00 2025 GMT
Subject: CN=04D4DA5A0E2B021E44DEF5BA56D0D77D14D2BFAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:83:8d:fd:51:c5:25:f2:ee:20:75:12:24:99:
7f:5d:f1:d8:f7:1a:d7:7d:20:be:68:d1:b9:9e:8e:
7d:9e:58:4b:ae:62:af:f4:fd:47:85:c4:f1:f8:59:
bc:a8:55:1e:3d:bb:19:37:15:83:98:98:6d:74:1b:
b5:49:67:f5:f4:c3:c7:2f:51:6d:e6:25:8f:31:49:
3e:d1:25:14:63:4f:fe:00:5b:4e:31:76:d5:1d:46:
cd:de:85:28:72:bd:f4:d0:3f:a4:22:f4:71:44:69:
32:af:4e:a3:c8:38:38:a0:67:72:ac:96:c1:8b:28:
c1:29:d0:11:d4:df:a4:bc:33:01:cc:16:e0:d4:90:
8c:e1:35:1b:90:a5:53:e9:ce:07:ca:9e:27:b8:09:
09:4e:2e:e1:ec:35:a1:5a:bf:2d:eb:50:4e:6b:01:
bf:68:6f:80:f6:a3:d8:fc:e7:7a:ac:49:d4:ba:7d:
3d:66:66:81:2d:68:ed:23:93:d3:6b:f4:df:6b:60:
46:f4:f2:aa:5c:62:b0:57:e1:8f:48:48:03:a9:ea:
a3:64:a2:54:87:92:b9:d6:ad:c3:16:e8:98:cf:c6:
f1:ff:b5:ba:5e:58:b8:fd:58:81:16:bf:fd:67:25:
c9:47:c9:fe:ca:45:41:00:3d:9a:ed:54:71:9c:bb:
6f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D4:DA:5A:0E:2B:02:1E:44:DE:F5:BA:56:D0:D7:7D:14:D2:BF:AC
X509v3 Authority Key Identifier:
keyid:A8:78:AD:F0:75:B0:8D:D5:37:A3:F9:98:5F:04:1C:7E:AB:C6:F9:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AfikK6KEzS7VnWPAJnUpjoDrrbWf4k9gJNR9T1TnwnJy/0/A878ADF075B08DD537A3F9985F041C7EABC6F9B0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A878ADF075B08DD537A3F9985F041C7EABC6F9B0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AfikK6KEzS7VnWPAJnUpjoDrrbWf4k9gJNR9T1TnwnJy/0/3138372e36312e38382e302f32322d3234203d3e20323632343033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.61.88.0/22
Signature Algorithm: sha256WithRSAEncryption
61:84:57:c2:7c:29:e1:eb:9b:2c:fc:43:7c:fa:c5:9f:43:c2:
67:2a:67:63:d6:bb:19:eb:37:d8:13:a2:37:c0:3a:38:46:21:
e6:85:e5:82:ed:11:15:6a:5e:8d:07:87:bf:31:9f:93:b7:c6:
ea:4f:79:fd:13:22:6a:be:61:79:f9:83:02:02:6c:17:ed:45:
2b:4b:8c:34:02:de:4b:f3:5e:32:f0:59:73:51:3f:b4:5d:e5:
96:e2:35:07:e8:ac:ec:32:f8:7a:e6:c9:24:74:9f:ae:cd:56:
ab:8f:5c:6c:26:5b:00:a1:c3:f9:34:de:97:f5:3d:b6:4f:58:
49:29:3a:a3:fc:cb:a6:db:db:d5:09:14:eb:aa:c1:a5:ad:cb:
27:5b:16:8b:d3:45:28:2e:31:90:38:ea:29:d5:8c:da:f1:e4:
2d:4d:a2:d9:23:47:00:28:18:d7:1d:cd:d6:12:5f:07:1d:c6:
f4:56:16:55:96:27:1c:1e:15:4d:42:f8:05:4f:90:55:7a:46:
1a:ce:40:5f:e6:c9:a0:63:a2:3c:e4:87:8e:89:f7:4c:31:34:
47:a4:a4:3e:9b:98:b5:78:01:d5:46:7f:5c:67:bc:56:c4:9f:
75:49:53:c8:d8:d5:ff:94:78:72:e2:a2:d2:43:b3:dc:9c:b7:
2f:2a:79:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:08:51 2025 by rpki-client