Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/B8qcsaJVHfBteNZKt3heV7iK9oLLgdHM8zJrA7VnqruF/0/34352e3138382e38382e302f32322d3232203d3e20323639353237.roa
File: 34352e3138382e38382e302f32322d3232203d3e20323639353237.roa (raw, json)
Hash identifier: AY3Z2rk8jrgSk9T0Fkwkbl3vtW8WYS0lgQYHZZ+77h8=
Subject key identifier: 21:F2:E6:CF:60:0F:62:84:D2:CF:EE:61:02:DA:A9:36:F1:AA:DF:19
Certificate issuer: /CN=7D24FD2D59F7DC84368B4ED4F153DC3747A76DCE
Certificate serial: 155115F901DEC3BDA555DD819A878F91C62ECF1E
Authority key identifier: 7D:24:FD:2D:59:F7:DC:84:36:8B:4E:D4:F1:53:DC:37:47:A7:6D:CE
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7D24FD2D59F7DC84368B4ED4F153DC3747A76DCE.cer
Subject info access: rsync://rpki-repo.registro.br/repo/B8qcsaJVHfBteNZKt3heV7iK9oLLgdHM8zJrA7VnqruF/0/34352e3138382e38382e302f32322d3232203d3e20323639353237.roa
Signing time: Tue 09 Jan 2024 19:02:45 +0000
ROA not before: Tue 09 Jan 2024 18:57:45 +0000
ROA not after: Tue 07 Jan 2025 19:02:45 +0000
asID: 269527
IP address blocks: 45.188.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:51:15:f9:01:de:c3:bd:a5:55:dd:81:9a:87:8f:91:c6:2e:cf:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D24FD2D59F7DC84368B4ED4F153DC3747A76DCE
Validity
Not Before: Jan 9 18:57:45 2024 GMT
Not After : Jan 7 19:02:45 2025 GMT
Subject: CN=21F2E6CF600F6284D2CFEE6102DAA936F1AADF19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5d:4d:af:35:dd:6e:6c:f2:38:12:83:22:9b:
e5:1a:8b:e6:ae:8c:f4:41:a2:2a:a9:3a:00:20:71:
37:f8:1f:9d:d7:66:d6:b4:d3:1a:97:db:a8:fd:90:
46:76:73:55:20:1d:92:d5:17:2e:71:41:9e:41:9b:
7e:02:5f:97:eb:94:40:fd:d7:46:53:8f:72:df:95:
01:a9:d6:04:13:ad:67:9a:35:01:b3:9f:00:8f:6c:
84:03:b5:9d:41:96:07:90:1c:12:54:5b:19:dc:49:
0b:06:ca:96:32:17:93:45:0b:48:9a:4f:8c:92:da:
06:c5:1c:05:a4:cd:56:30:19:09:1c:12:2f:8d:33:
29:b3:ed:e7:e0:06:16:d2:ac:93:20:96:b2:c4:62:
f9:6f:73:27:bd:76:17:93:03:92:fd:fb:85:2e:0b:
02:0f:4f:b2:fb:7a:0e:bd:9d:c4:54:2c:52:e5:cd:
f6:d3:12:2f:34:46:7e:98:3f:43:66:87:a9:83:ec:
95:a1:3c:f8:68:0e:bb:64:54:8c:28:03:28:85:d2:
c8:78:e6:04:f9:ba:ec:6d:cf:3e:66:b9:f3:4d:24:
ef:7d:3a:9c:c6:5d:1f:14:e1:39:cc:6d:16:5e:d8:
27:7b:e1:de:ba:fb:8b:c3:f0:54:c3:8c:d4:81:70:
e4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F2:E6:CF:60:0F:62:84:D2:CF:EE:61:02:DA:A9:36:F1:AA:DF:19
X509v3 Authority Key Identifier:
keyid:7D:24:FD:2D:59:F7:DC:84:36:8B:4E:D4:F1:53:DC:37:47:A7:6D:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/B8qcsaJVHfBteNZKt3heV7iK9oLLgdHM8zJrA7VnqruF/0/7D24FD2D59F7DC84368B4ED4F153DC3747A76DCE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/7D24FD2D59F7DC84368B4ED4F153DC3747A76DCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/B8qcsaJVHfBteNZKt3heV7iK9oLLgdHM8zJrA7VnqruF/0/34352e3138382e38382e302f32322d3232203d3e20323639353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.188.88.0/22
Signature Algorithm: sha256WithRSAEncryption
05:96:32:1b:50:ed:fa:03:cb:df:83:64:b1:50:94:60:97:f3:
3d:21:76:4d:cc:fb:5e:b9:e5:12:d6:7d:46:4f:b8:a9:72:c1:
69:2f:36:6b:28:da:ed:9b:1a:1c:24:35:5f:47:0c:82:98:f8:
26:96:d2:7e:35:a0:79:2c:37:12:c7:b0:2d:36:95:04:32:ea:
44:6c:e4:24:e8:e7:d3:3b:32:67:d6:76:6e:82:a7:f0:e7:98:
34:9e:9f:d0:fd:7d:e5:f0:20:99:3e:c7:f4:7c:3e:c2:48:28:
ce:a1:bd:c0:0a:37:5d:15:85:da:93:e7:6b:95:c4:a4:a9:39:
60:31:fb:f6:91:e7:29:1f:3e:82:3b:14:02:2c:63:3b:87:e7:
0c:d5:a4:8c:39:f9:24:e3:26:60:84:5b:95:b6:81:68:4f:15:
5c:07:6c:b0:38:7e:b4:a7:ad:48:fb:bf:d3:d7:85:ff:f8:8f:
46:ac:0f:b7:de:97:56:76:46:ee:76:d7:af:98:e6:34:7a:b5:
2f:f1:53:15:09:39:4a:e7:99:8e:86:7e:99:45:b9:f6:cd:d3:
be:61:b3:16:8f:e4:31:93:d0:ae:98:69:2d:e0:04:d8:f8:46:
ac:1a:15:a1:3a:b0:26:16:ad:58:3a:4e:43:f1:ce:7e:db:e5:
ec:0e:8a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 13:35:04 2025 by rpki-client