![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa
File: 3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa (raw, json)
Hash identifier: r88Jv8u0nFZUiwZVLzSEmjlueDeSQfHoM+L69OgIr3o=
Subject key identifier: 59:C6:99:BA:14:5C:FB:F6:1C:90:8C:3D:A7:43:67:5F:09:6A:4C:78
Certificate issuer: /CN=115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A
Certificate serial: 6A92034D0DFD31B03F45E946E815052C773C945F
Authority key identifier: 11:5B:D5:FA:AC:7A:C0:2C:56:D3:72:A4:7E:AF:DA:2B:67:C3:19:8A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa
Signing time: Tue 16 May 2023 17:34:04 +0000
ROA not before: Tue 16 May 2023 17:29:04 +0000
ROA not after: Tue 14 May 2024 17:34:04 +0000
asID: 264091
IP address blocks: 143.208.128.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:92:03:4d:0d:fd:31:b0:3f:45:e9:46:e8:15:05:2c:77:3c:94:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A
Validity
Not Before: May 16 17:29:04 2023 GMT
Not After : May 14 17:34:04 2024 GMT
Subject: CN=59C699BA145CFBF61C908C3DA743675F096A4C78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:c3:fc:9a:90:4f:7e:2a:ff:73:2d:b2:0e:
aa:61:44:0e:f3:91:60:ec:e8:dc:7d:be:64:54:85:
2c:95:ca:a9:70:41:32:72:d9:b8:90:9f:cc:d7:4f:
51:a5:47:6b:25:eb:25:1e:bb:88:70:eb:3e:6c:fb:
23:34:32:26:c9:6d:b3:e3:21:a7:9c:36:ee:44:43:
86:e7:09:19:09:47:01:7e:7a:f6:ad:09:1b:ad:f6:
c9:e7:bf:79:5f:7a:82:5e:f1:5f:74:4b:f0:be:a4:
b4:c2:c1:01:04:59:d4:84:17:67:54:af:3e:9d:26:
d7:ca:f4:72:11:a2:3d:92:83:77:f5:95:0a:2d:1a:
0b:ed:2b:42:3e:23:db:15:74:13:b9:aa:f6:a5:64:
67:9e:77:4e:49:56:de:e1:4a:20:0c:c3:48:b0:c8:
cc:8d:51:e7:54:63:e3:5c:9c:70:a6:3e:bf:66:08:
4f:a1:0f:d3:3b:97:bb:4d:77:73:e6:3e:63:c4:85:
85:bd:91:7e:2c:9a:11:14:d4:91:9b:e5:27:eb:f2:
22:7a:96:15:6a:fd:16:09:96:54:d9:10:c9:cd:36:
30:3e:a0:21:92:c4:8c:ba:3a:9c:61:f0:86:47:0c:
e2:f2:ab:59:62:69:f2:a1:48:02:9e:db:1f:7a:b1:
d1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C6:99:BA:14:5C:FB:F6:1C:90:8C:3D:A7:43:67:5F:09:6A:4C:78
X509v3 Authority Key Identifier:
keyid:11:5B:D5:FA:AC:7A:C0:2C:56:D3:72:A4:7E:AF:DA:2B:67:C3:19:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/115BD5FAAC7AC02C56D372A47EAFDA2B67C3198A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BKHFq33EjtUpErGNPXYxZWTXAjyBae6MUTnsi7Un7pa5/0/3134332e3230382e3132382e302f32322d3332203d3e20323634303931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.208.128.0/22
Signature Algorithm: sha256WithRSAEncryption
81:a8:e2:3b:2b:fd:05:cf:66:c9:4e:6f:08:1a:d2:70:0a:1c:
43:d6:70:85:66:f2:78:ee:3f:59:d2:19:5a:d5:68:cc:4e:9b:
cd:ed:8d:bd:8f:44:74:c2:24:35:a4:1d:09:d7:9d:2f:31:06:
88:d9:b4:ed:80:98:04:a3:4a:aa:57:78:d9:ab:45:b9:16:6f:
92:ac:10:ae:de:20:ae:eb:85:66:d6:c5:02:ee:a2:59:21:4d:
d6:8a:91:7a:45:71:4a:39:02:1d:08:6d:c0:f5:42:45:a2:58:
d8:b1:27:88:0e:7d:d7:9f:5b:00:4c:2d:80:76:c4:00:27:5c:
33:b1:3a:0e:5b:d5:55:0e:2a:cc:e5:3d:36:28:a0:d9:83:5e:
dd:64:6c:57:3a:59:d7:d0:96:fd:04:b6:a7:ce:65:13:80:1d:
3a:6c:82:7b:5e:da:53:72:6b:70:d1:e2:11:0e:6f:fe:08:4b:
7f:25:e0:3d:b0:bd:26:d9:9d:16:74:c2:91:71:11:cd:cb:ea:
1b:cb:69:54:9d:86:5b:a5:31:90:ef:97:d8:c7:c8:e6:0f:bd:
ad:32:b9:94:7f:a7:f5:ae:27:4d:be:47:c2:1e:c5:89:bd:2c:
c4:d3:94:ee:dc:3f:62:73:e9:e6:9b:be:ed:17:e1:94:dc:18:
e0:67:ed:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:52 2024 by rpki-client on console-ams.rpki-client.org