Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BFQUi5VQZ467FVoMjHeM2JKLSRACLH3TkheY8xHPTVFz/0/3137372e38342e32342e302f32322d3332203d3e20323632353737.roa
File: 3137372e38342e32342e302f32322d3332203d3e20323632353737.roa (raw, json)
Hash identifier: KTNEcC6Y2VHqLL+qb3kt3ywe3wmftinMc6r4trZIlnw=
Subject key identifier: 9D:FE:53:39:6B:A6:E8:1E:BD:E0:08:38:2E:C1:17:6D:EF:02:1E:CA
Certificate issuer: /CN=D2991FF0EF094685597EA5146C4730F0270A9201
Certificate serial: 2CE50D1991FBE8162B70170D73421D2CD5114159
Authority key identifier: D2:99:1F:F0:EF:09:46:85:59:7E:A5:14:6C:47:30:F0:27:0A:92:01
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2991FF0EF094685597EA5146C4730F0270A9201.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BFQUi5VQZ467FVoMjHeM2JKLSRACLH3TkheY8xHPTVFz/0/3137372e38342e32342e302f32322d3332203d3e20323632353737.roa
Signing time: Wed 13 Nov 2024 12:09:12 +0000
ROA not before: Wed 13 Nov 2024 12:04:12 +0000
ROA not after: Wed 12 Nov 2025 12:09:12 +0000
asID: 262577
IP address blocks: 177.84.24.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:e5:0d:19:91:fb:e8:16:2b:70:17:0d:73:42:1d:2c:d5:11:41:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2991FF0EF094685597EA5146C4730F0270A9201
Validity
Not Before: Nov 13 12:04:12 2024 GMT
Not After : Nov 12 12:09:12 2025 GMT
Subject: CN=9DFE53396BA6E81EBDE008382EC1176DEF021ECA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5c:89:a9:a8:1d:af:ad:09:42:b4:5c:af:8c:
3e:05:6f:51:c5:21:8b:02:f8:1a:df:53:af:47:80:
72:39:a4:3f:6a:75:f7:9a:b1:f6:3b:28:a3:6d:06:
57:75:d7:68:9a:3c:37:15:a9:20:c7:77:72:8b:7b:
83:ac:fd:4f:e8:e9:d9:c5:95:83:ba:5a:87:6b:58:
89:0e:0a:60:b8:44:ea:d4:7c:7e:36:9b:7f:d1:02:
e7:d5:3e:c4:d2:43:ea:9a:e6:fb:7b:82:25:0c:7f:
45:93:60:b0:18:67:5e:a3:a3:a2:b1:f1:3c:1c:9a:
1b:f7:59:d6:d7:ca:fa:96:f3:90:da:f9:1c:74:3f:
4e:63:da:8c:fd:70:89:2a:ea:94:bf:61:cf:b5:c3:
cd:dd:c3:cb:34:7b:cb:d3:9b:da:d5:2d:5f:36:38:
36:5e:94:37:5b:e3:5e:01:2b:df:39:f5:48:b7:e6:
da:32:ec:91:ec:25:c6:73:b8:79:c3:29:0d:2b:f1:
92:64:56:a5:1a:57:8b:16:bb:75:9c:6b:76:27:28:
ba:b3:79:8c:9d:e9:6f:b9:eb:32:5d:ce:d1:a3:fc:
a0:a0:8f:77:61:06:f5:89:a4:88:c8:af:da:73:c8:
ec:0d:d7:25:2d:f2:6b:40:f0:a5:97:e0:dd:2b:ee:
37:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:FE:53:39:6B:A6:E8:1E:BD:E0:08:38:2E:C1:17:6D:EF:02:1E:CA
X509v3 Authority Key Identifier:
keyid:D2:99:1F:F0:EF:09:46:85:59:7E:A5:14:6C:47:30:F0:27:0A:92:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BFQUi5VQZ467FVoMjHeM2JKLSRACLH3TkheY8xHPTVFz/0/D2991FF0EF094685597EA5146C4730F0270A9201.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2991FF0EF094685597EA5146C4730F0270A9201.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BFQUi5VQZ467FVoMjHeM2JKLSRACLH3TkheY8xHPTVFz/0/3137372e38342e32342e302f32322d3332203d3e20323632353737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.84.24.0/22
Signature Algorithm: sha256WithRSAEncryption
99:a5:30:04:d1:5f:d9:8a:b4:02:f7:cb:a3:99:0e:2e:78:aa:
1e:4d:61:50:de:2a:8a:5e:45:a0:0b:db:02:a6:cd:42:fd:66:
57:78:21:e8:cf:29:da:06:28:0a:36:7e:ce:ed:94:49:ed:ea:
22:46:6e:6a:c5:0b:fe:c1:80:89:ef:61:66:49:d7:47:43:4e:
5e:1e:a4:65:61:0e:7e:cb:00:8b:f4:d5:ac:24:22:ed:51:1e:
26:02:fa:9f:3e:ec:25:b9:d0:1a:e1:ee:ab:23:7b:05:18:27:
d3:3c:49:a2:de:95:36:89:72:0a:bf:2d:b6:70:36:8e:09:f9:
44:b5:c1:0e:34:1e:c5:ed:7a:f1:49:68:0c:9b:d0:b2:45:f9:
45:d2:f5:0b:f2:80:27:48:55:e4:c5:91:6e:a2:7d:1e:ce:8b:
8f:12:7f:a4:b8:23:27:39:b1:2c:62:ac:40:33:cf:94:34:82:
e0:1b:f1:89:02:92:35:f0:e4:35:a3:3d:13:24:16:95:ee:08:
2f:70:9c:b3:50:f4:cc:7c:09:cc:3b:78:6d:d9:45:ca:d7:fd:
0a:b4:1c:31:58:4e:b8:e0:d3:62:3e:e3:1b:b7:70:64:13:c6:
67:ad:ca:9f:ed:bb:3f:66:1b:07:67:31:bd:04:b3:28:d0:e2:
3f:e8:e4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:24:14 2025 by rpki-client