Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/323830343a343838303a3a2f33322d3438203d3e20323637313235.roa
File: 323830343a343838303a3a2f33322d3438203d3e20323637313235.roa (raw, json)
Hash identifier: 3fVSIJy9XFl9ICWfoQ7uf7isB24kDp2AXZHnsjF5OSA=
Subject key identifier: B3:03:CB:98:76:FC:43:2D:3F:05:D9:43:DF:42:EA:0E:4E:4A:17:17
Certificate issuer: /CN=D53752ADA92E81931C29CA44ABDEEDDF373E93F7
Certificate serial: 58C05D6B4ABF54C329A6E7E0BCB6F14071816317
Authority key identifier: D5:37:52:AD:A9:2E:81:93:1C:29:CA:44:AB:DE:ED:DF:37:3E:93:F7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/323830343a343838303a3a2f33322d3438203d3e20323637313235.roa
Signing time: Thu 12 Dec 2024 17:38:44 +0000
ROA not before: Thu 12 Dec 2024 17:33:44 +0000
ROA not after: Thu 11 Dec 2025 17:38:44 +0000
asID: 267125
IP address blocks: 2804:4880::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.crl
rsync://rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:c0:5d:6b:4a:bf:54:c3:29:a6:e7:e0:bc:b6:f1:40:71:81:63:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D53752ADA92E81931C29CA44ABDEEDDF373E93F7
Validity
Not Before: Dec 12 17:33:44 2024 GMT
Not After : Dec 11 17:38:44 2025 GMT
Subject: CN=B303CB9876FC432D3F05D943DF42EA0E4E4A1717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:79:dd:d9:e2:27:d8:15:12:4d:a1:5c:6a:08:
67:3f:36:64:69:db:11:7f:7f:0f:86:54:16:64:94:
95:d7:6e:ae:fa:a9:a5:a4:8f:6d:18:18:a2:5e:7d:
f8:c1:6e:d7:1d:39:1e:c9:f7:da:a1:c4:d7:67:1f:
b4:55:3f:42:00:78:0b:c0:17:3e:8b:03:93:c3:47:
4b:a6:dc:d5:8b:96:f1:98:ec:02:e4:2e:1d:89:15:
b0:54:ab:63:12:40:54:0b:60:a8:e1:46:39:a5:c2:
56:10:2d:b1:a9:62:d9:bc:e3:4d:c6:8e:b1:4d:ae:
51:5a:31:7e:72:3c:cd:50:25:53:2e:83:e3:25:48:
24:fc:8e:b4:c3:29:26:ac:cd:1d:65:e0:47:82:d8:
b9:a2:03:a7:d0:e4:b0:1d:fd:b0:3b:66:ec:96:d5:
c9:b0:01:16:9d:ee:31:20:31:0b:d6:fd:63:88:f1:
3f:48:08:d0:58:20:0f:ff:ca:13:a9:e2:65:fe:fa:
8d:e3:2d:9c:11:37:7c:09:75:9b:f8:16:5b:ae:bd:
b1:bb:7d:8a:a6:8f:e4:c8:dc:df:c1:39:e8:95:65:
58:95:5e:bd:61:9d:20:90:fe:a6:b1:bb:d2:d1:c8:
0d:31:35:1b:ad:58:13:73:4f:34:e4:59:c4:3a:ab:
3d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:03:CB:98:76:FC:43:2D:3F:05:D9:43:DF:42:EA:0E:4E:4A:17:17
X509v3 Authority Key Identifier:
keyid:D5:37:52:AD:A9:2E:81:93:1C:29:CA:44:AB:DE:ED:DF:37:3E:93:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D53752ADA92E81931C29CA44ABDEEDDF373E93F7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BBfUEw79NeQaUeJYNp5H4ffBMCNpKrGXCTooytn92Fvp/1/323830343a343838303a3a2f33322d3438203d3e20323637313235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:4880::/32
Signature Algorithm: sha256WithRSAEncryption
6a:51:2c:ea:41:79:20:da:5d:43:1f:c7:8a:c7:a0:d9:87:0d:
f6:7e:0c:b1:b5:ad:5c:48:45:9f:40:0a:75:61:ce:b6:56:98:
6f:a8:49:45:07:1a:8a:60:6b:4f:8e:09:14:f9:a9:d1:01:9a:
0e:e0:62:cb:ba:65:c0:2b:29:35:ac:aa:7a:37:63:58:c4:ac:
4b:4f:ea:ab:01:f9:91:63:05:d3:ac:f6:fb:b7:d3:fb:85:d8:
8a:49:ff:fa:b9:cb:a7:25:c6:d9:36:7a:e4:2d:f0:d5:9c:44:
1d:e9:96:e6:12:38:45:5d:81:b1:a3:86:66:87:21:17:7b:3d:
50:2d:75:04:92:a8:17:20:eb:54:4f:5b:84:6e:74:2e:62:74:
9e:d1:5e:6e:57:99:c6:c2:73:e9:cb:7a:c8:8a:66:76:99:b8:
ce:8b:2e:69:83:ef:87:7b:e8:f7:8a:40:e8:e3:ef:37:1c:80:
15:90:63:4b:45:1e:19:04:8c:15:e4:51:be:36:1f:3b:62:34:
b1:51:8b:ee:84:2a:7d:84:e5:ba:83:63:bf:57:3a:e0:97:06:
53:e6:e3:8d:bd:bd:72:4c:88:4e:6c:83:ac:a9:7d:fb:40:73:
4e:54:9f:f4:38:bc:cc:c9:73:1b:3c:f4:cf:51:15:90:79:fa:
b0:ac:b8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:35:58 2025 by rpki-client