Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3130303a3a2f34302d3430203d3e20323637343834.roa
File: 323830343a316136383a3130303a3a2f34302d3430203d3e20323637343834.roa (raw, json)
Hash identifier: yAxHXhNGQzxjVK0LDWfB/dtW/bWuSARiwhONru3qMkc=
Subject key identifier: 3A:5B:D9:09:C5:75:58:1E:2A:92:53:45:CF:08:F4:D9:0C:66:E0:66
Certificate issuer: /CN=A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2
Certificate serial: 19B954B9BEE57D34A517D817F429A3E5FBEF7107
Authority key identifier: A5:1F:A8:C0:E8:04:B4:CF:C8:DD:1E:05:3C:24:54:81:ED:0F:66:C2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3130303a3a2f34302d3430203d3e20323637343834.roa
Signing time: Mon 10 Feb 2025 14:42:00 +0000
ROA not before: Mon 10 Feb 2025 14:37:00 +0000
ROA not after: Mon 09 Feb 2026 14:42:00 +0000
asID: 267484
IP address blocks: 2804:1a68:100::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.crl
rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 24 Apr 2025 09:10:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b9:54:b9:be:e5:7d:34:a5:17:d8:17:f4:29:a3:e5:fb:ef:71:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2
Validity
Not Before: Feb 10 14:37:00 2025 GMT
Not After : Feb 9 14:42:00 2026 GMT
Subject: CN=3A5BD909C575581E2A925345CF08F4D90C66E066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:54:e3:f8:da:1b:72:1d:4b:f7:43:95:8b:44:
96:0f:ed:57:ba:38:3d:ea:82:e9:59:44:8d:5c:ac:
88:7e:4a:1d:1a:d0:bf:ae:bb:e3:02:2e:61:c3:18:
58:b7:5b:06:e4:e2:d8:b5:c5:9e:0b:16:8a:b2:db:
9b:e6:e8:ca:62:84:54:a1:d7:19:00:9c:fe:5e:fe:
75:0e:9b:67:ca:39:9d:46:59:4c:78:89:32:64:37:
8c:44:98:f0:f4:ac:7a:c7:bd:e1:d1:46:65:25:46:
ff:7a:10:64:4d:39:86:fa:c6:8c:ea:d3:dc:c5:c5:
46:a1:d2:81:dd:c0:a5:a9:e5:ef:b8:5d:f5:7a:13:
8f:4b:20:bd:77:9e:ac:de:c5:ca:86:70:54:f4:31:
f2:7d:ea:8f:71:90:d0:f1:8d:11:1b:d8:d0:8c:51:
c3:a6:df:a2:81:6e:9c:68:0c:89:2a:7e:e5:b9:73:
1f:aa:09:4c:27:bd:e8:88:56:89:0a:01:bb:b1:fd:
25:30:c4:83:20:c5:1f:5d:15:f0:39:1e:0e:c4:1f:
36:9b:40:c5:cd:2e:ec:fd:4f:d5:07:60:29:45:02:
ea:41:59:99:85:bc:2b:bf:08:ef:d4:9e:07:52:68:
6c:8a:a3:14:0a:da:39:ff:1e:4d:6e:f2:40:7e:f2:
95:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5B:D9:09:C5:75:58:1E:2A:92:53:45:CF:08:F4:D9:0C:66:E0:66
X509v3 Authority Key Identifier:
keyid:A5:1F:A8:C0:E8:04:B4:CF:C8:DD:1E:05:3C:24:54:81:ED:0F:66:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A51FA8C0E804B4CFC8DD1E053C245481ED0F66C2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Ai5uYxS6717N57VeFxhY7WHRwS5NhfL6LL8ty4MTZp5J/0/323830343a316136383a3130303a3a2f34302d3430203d3e20323637343834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1a68:100::/40
Signature Algorithm: sha256WithRSAEncryption
2a:2a:c0:50:45:c8:ad:67:12:c0:5a:36:4e:b5:4b:37:19:66:
57:2b:91:02:ee:19:e8:52:b7:e9:bb:f8:bf:8d:26:22:9f:cf:
fa:43:12:b9:09:3d:2a:77:97:9a:9d:05:92:e5:3b:b9:3c:bf:
d4:50:5f:09:dd:6f:13:d6:5f:e6:13:14:73:22:9d:36:e3:45:
7f:3d:6d:81:c5:78:5f:c0:9b:b9:72:d1:9e:30:12:33:25:8c:
36:ca:a4:32:55:57:36:82:9e:fb:e6:53:64:f6:a9:8b:0f:ba:
17:0b:ec:00:e9:be:02:70:f7:0a:c9:e8:ea:b2:c1:6b:b9:05:
82:b6:e1:de:79:3c:90:5d:ad:b5:c3:f1:ab:6c:81:95:d7:07:
cd:de:95:e4:3d:eb:7d:07:c7:5b:d2:ca:58:3d:2a:42:0a:48:
77:e2:8d:ed:58:44:b2:a6:28:f9:93:55:b8:6f:78:89:29:db:
1b:5a:45:91:d5:ac:b4:ae:0d:90:ff:ba:ba:63:7e:c1:5e:65:
f3:c9:d9:85:d9:35:92:72:d9:97:a8:48:70:5c:1e:ad:27:da:
e8:8b:26:de:af:ab:95:1c:a4:2a:ed:38:bd:dc:c7:64:62:a3:
34:d9:4d:4e:b9:2c:d8:1c:dd:6b:05:99:68:53:01:6e:96:8d:
cd:1a:28:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 19:37:44 2025 by rpki-client