Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AyxALNZ8XwNPn54gzDxFJpCwh22EKUEGecGhf6uRDzcY/1/34352e3137332e38342e302f32322d3234203d3e20323638383630.roa
File: 34352e3137332e38342e302f32322d3234203d3e20323638383630.roa (raw, json)
Hash identifier: e0LdlppeMVitsjrxbRyM2svGZM5LzruH2J12njpWby4=
Subject key identifier: 8C:91:E6:EF:AC:87:47:AB:A7:31:80:1A:27:DF:5C:3F:38:B0:33:74
Certificate issuer: /CN=1CD763408DADC1A60111846459A04E70929F8FE8
Certificate serial: 24873FF536F0DB82811ACA1B2BAD659E719B838F
Authority key identifier: 1C:D7:63:40:8D:AD:C1:A6:01:11:84:64:59:A0:4E:70:92:9F:8F:E8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1CD763408DADC1A60111846459A04E70929F8FE8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AyxALNZ8XwNPn54gzDxFJpCwh22EKUEGecGhf6uRDzcY/1/34352e3137332e38342e302f32322d3234203d3e20323638383630.roa
Signing time: Thu 04 Apr 2024 09:25:23 +0000
ROA not before: Thu 04 Apr 2024 09:20:23 +0000
ROA not after: Thu 03 Apr 2025 09:25:23 +0000
asID: 268860
IP address blocks: 45.173.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:87:3f:f5:36:f0:db:82:81:1a:ca:1b:2b:ad:65:9e:71:9b:83:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CD763408DADC1A60111846459A04E70929F8FE8
Validity
Not Before: Apr 4 09:20:23 2024 GMT
Not After : Apr 3 09:25:23 2025 GMT
Subject: CN=8C91E6EFAC8747ABA731801A27DF5C3F38B03374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3f:63:58:c3:b9:78:9c:c4:07:dd:8b:e7:d6:
59:ba:cb:11:e4:95:04:f8:69:bf:6f:43:46:65:f9:
23:ee:c1:bf:7c:04:59:a5:65:19:28:39:78:83:e8:
96:32:59:6a:1d:e3:e5:bd:c9:6a:d9:0d:1b:c2:a7:
05:a3:f4:df:1a:bc:d4:44:c6:72:90:28:c5:40:48:
81:96:f1:20:a0:94:07:a2:c0:7c:0b:f1:7b:69:93:
c4:e8:a9:f8:92:5c:3a:8b:b1:ea:5f:62:a5:fa:d8:
d2:d0:97:91:33:45:b2:85:b3:cb:6a:da:fa:06:51:
d1:36:a6:b4:eb:03:64:12:d6:49:d5:14:2c:7d:31:
47:4b:ab:75:18:11:40:e2:bf:f5:bd:1e:47:1a:af:
ed:a0:49:bb:73:93:3b:fe:c9:61:66:2b:95:8a:c3:
e3:4b:30:e3:b1:0f:ab:9c:67:a6:f6:d6:fd:c1:b4:
0a:40:40:84:b6:75:62:56:5b:ad:a2:cc:3b:b8:63:
02:3f:5c:fa:a9:7a:f5:c4:44:53:c5:75:3c:23:39:
e7:02:1a:33:a8:e8:e9:5e:e1:63:d7:b3:17:ae:72:
7e:c0:7e:f3:53:34:18:12:d1:12:86:34:48:a3:a6:
8b:98:94:88:fa:95:09:37:92:0d:42:f3:c1:ea:07:
21:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:91:E6:EF:AC:87:47:AB:A7:31:80:1A:27:DF:5C:3F:38:B0:33:74
X509v3 Authority Key Identifier:
keyid:1C:D7:63:40:8D:AD:C1:A6:01:11:84:64:59:A0:4E:70:92:9F:8F:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AyxALNZ8XwNPn54gzDxFJpCwh22EKUEGecGhf6uRDzcY/1/1CD763408DADC1A60111846459A04E70929F8FE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1CD763408DADC1A60111846459A04E70929F8FE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AyxALNZ8XwNPn54gzDxFJpCwh22EKUEGecGhf6uRDzcY/1/34352e3137332e38342e302f32322d3234203d3e20323638383630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.173.84.0/22
Signature Algorithm: sha256WithRSAEncryption
02:63:65:eb:9c:14:75:f2:03:78:20:c5:bf:cc:cf:a0:65:3f:
92:3d:74:10:59:21:67:f6:24:b3:48:39:1a:2a:e4:7f:86:5e:
f1:31:53:7d:f8:89:6b:59:15:72:53:76:ce:e7:83:90:f3:b1:
93:8e:bf:51:d9:76:a4:a1:d4:ba:c3:cc:f8:20:68:d7:68:29:
2a:8f:bb:65:c8:61:75:b5:ac:fd:5c:76:fc:0b:e2:88:ae:ad:
4b:e0:44:37:c3:8b:76:df:2e:8e:b7:db:22:84:6d:64:7e:4b:
1a:d0:56:de:91:d9:85:93:57:44:ed:bb:4d:17:8e:f9:7f:74:
ee:f2:86:2e:e5:dd:da:25:16:98:13:1d:6a:df:65:86:c6:58:
a6:10:7d:72:cf:89:b7:75:fc:bb:94:de:41:90:96:85:a8:ce:
38:63:07:ef:46:9b:7a:20:d3:8c:48:44:0c:43:8c:0f:2e:01:
a2:f0:0c:ba:6f:d3:94:1b:97:8e:68:8d:36:53:d2:d6:42:db:
8d:5a:76:cf:57:29:c3:79:6e:da:79:33:a9:3d:61:a4:05:6b:
15:db:09:18:be:5e:68:ed:89:15:26:bf:38:d4:8e:77:28:31:
44:10:27:e5:dc:ad:f4:c8:ad:a5:6d:88:d2:4d:d3:cb:10:74:
32:04:b0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:28:47 2025 by rpki-client