Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33342d3334203d3e20323634313431.roa
File: 323830343a316530633a343030303a3a2f33342d3334203d3e20323634313431.roa (raw, json)
Hash identifier: J0C3zjNrcN4vUlR/oOn06ffOKMDPn+yb8BezBgo5A+k=
Subject key identifier: 42:9F:DA:2D:A3:AD:43:77:A6:D6:1D:38:93:01:33:AF:5F:1F:88:FF
Certificate issuer: /CN=A2B96F8B53B06EE448A51709B8D230AE49DBF30D
Certificate serial: 0ECF951BE1C6361C12CE22CA23F5D1953D24C673
Authority key identifier: A2:B9:6F:8B:53:B0:6E:E4:48:A5:17:09:B8:D2:30:AE:49:DB:F3:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33342d3334203d3e20323634313431.roa
Signing time: Thu 02 Jan 2025 19:26:55 +0000
ROA not before: Thu 02 Jan 2025 19:21:55 +0000
ROA not after: Thu 01 Jan 2026 19:26:55 +0000
asID: 264141
IP address blocks: 2804:1e0c:4000::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.crl
rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 01:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:cf:95:1b:e1:c6:36:1c:12:ce:22:ca:23:f5:d1:95:3d:24:c6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A2B96F8B53B06EE448A51709B8D230AE49DBF30D
Validity
Not Before: Jan 2 19:21:55 2025 GMT
Not After : Jan 1 19:26:55 2026 GMT
Subject: CN=429FDA2DA3AD4377A6D61D38930133AF5F1F88FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:cd:b3:c5:2e:c5:9a:9b:a6:64:fb:8e:71:
ed:dd:a9:6e:28:32:f3:66:af:cb:7a:b8:2f:30:20:
9a:78:55:1c:68:68:4e:2d:7a:cd:22:d0:50:e3:ab:
5a:a9:50:6c:5f:f0:fe:de:bd:d6:b9:7c:b7:04:eb:
c3:67:94:b2:a4:60:c4:3d:09:c7:2d:1b:cf:fb:a4:
0f:4d:1a:cd:83:ba:99:89:b6:33:87:5f:15:53:c6:
43:dc:d8:fa:95:81:a9:f5:c1:bd:c2:09:87:6d:42:
07:77:4e:9a:3e:b3:70:f6:85:5f:e4:00:89:c7:69:
02:89:b3:16:06:d5:a5:7d:9e:b3:c3:34:54:fe:2c:
95:4e:a9:a0:3b:7c:5f:3e:87:9b:77:fa:d3:ae:b3:
17:a9:36:9a:7a:c5:47:3b:d7:04:91:a0:fd:ec:30:
56:f6:9f:1d:36:5f:c3:93:ee:e4:b0:4f:87:d5:51:
6c:77:db:64:78:95:24:f0:a9:75:77:4f:bf:70:9e:
7d:06:48:28:b5:fd:c8:40:8b:a3:93:ea:42:b7:c2:
83:26:73:a6:86:22:4a:4b:bc:58:39:8d:20:0e:e7:
58:6e:de:4b:8f:70:af:2d:3b:f2:80:75:9c:60:63:
62:ad:c5:54:1f:61:20:14:27:86:2e:19:c2:59:ba:
20:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9F:DA:2D:A3:AD:43:77:A6:D6:1D:38:93:01:33:AF:5F:1F:88:FF
X509v3 Authority Key Identifier:
keyid:A2:B9:6F:8B:53:B0:6E:E4:48:A5:17:09:B8:D2:30:AE:49:DB:F3:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A2B96F8B53B06EE448A51709B8D230AE49DBF30D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/B5kAUYjppKji9cVcMdNTxwNvdkYo13z2jFuyZo58uXfi/0/323830343a316530633a343030303a3a2f33342d3334203d3e20323634313431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1e0c:4000::/34
Signature Algorithm: sha256WithRSAEncryption
03:08:36:c7:0a:aa:b9:44:4d:5e:a6:9b:09:ae:b2:26:2e:a1:
f2:b3:e1:48:a4:7e:a7:f8:f2:2f:95:71:d7:e2:84:92:d8:5d:
da:07:ef:94:3c:93:6e:fc:40:9e:1e:7c:a0:4a:f1:f8:9d:3c:
a7:e8:0a:90:5d:94:1c:36:a3:86:26:5e:c0:58:92:39:d5:71:
55:4c:61:31:49:4e:f0:c2:5c:8b:91:60:54:21:a7:75:91:75:
12:30:87:7f:72:e7:55:28:98:16:d7:86:ba:5a:63:58:1a:91:
19:61:f7:49:54:44:2e:8c:82:f6:00:d4:fe:d7:7c:41:0a:f8:
d5:76:91:68:b4:04:dd:ff:a0:a1:1c:61:b8:6f:89:26:22:69:
33:f5:f3:0d:bb:41:ee:d7:0e:ef:30:80:e5:1d:be:13:e8:b7:
9e:e6:70:37:c0:6c:4b:a3:34:1d:1e:63:cc:04:53:26:cb:a3:
15:88:9e:b2:80:c3:94:a3:e3:09:04:f4:db:f5:28:19:fc:34:
cb:7f:b6:2d:dd:d2:e5:42:b4:b8:fd:63:90:e1:76:3c:f5:55:
66:1e:96:e0:ee:0f:f0:52:ce:e4:b2:3f:ea:26:79:d0:a3:2b:
15:5b:73:c9:e4:05:7a:6b:cf:79:50:c7:ab:19:c4:67:fc:b1:
a6:84:8d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 18:54:47 2025 by rpki-client