Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a663030303a3a2f34302d3430203d3e20323732323230.roa
File: 323830343a316635343a663030303a3a2f34302d3430203d3e20323732323230.roa (raw, json)
Hash identifier: rwqPq3e3cIfTJi1yHcLF7YzVNns2BpAaoaon/GDyOgs=
Subject key identifier: AD:86:33:0E:2A:99:3B:7B:DF:48:7E:09:D3:D7:D8:94:B1:97:32:2D
Certificate issuer: /CN=2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8
Certificate serial: 461EBFF98DE12F1D33F141B90826B6327D02AA06
Authority key identifier: 2A:37:8F:3F:C3:AC:5A:FF:D2:AE:F5:89:39:89:56:7E:2D:C4:0D:B8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a663030303a3a2f34302d3430203d3e20323732323230.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 272220
IP address blocks: 2804:1f54:f000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:1e:bf:f9:8d:e1:2f:1d:33:f1:41:b9:08:26:b6:32:7d:02:aa:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=AD86330E2A993B7BDF487E09D3D7D894B197322D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5f:84:c3:92:38:34:ea:27:de:da:a9:30:73:
71:02:11:61:bb:a5:92:26:98:e8:46:41:18:ae:9c:
6f:d0:95:0f:56:3d:1a:36:fe:22:7e:c4:69:bf:aa:
01:bf:4d:36:1b:43:3d:d7:ff:42:39:44:b7:03:2b:
6d:31:de:3b:5b:00:55:38:9a:70:3b:d6:99:6f:63:
bc:55:ff:d1:d3:1d:db:9c:08:49:a1:7a:dd:42:b5:
d5:fc:95:e5:82:1f:10:0a:0c:26:1e:83:3f:e4:94:
df:e3:5a:e0:19:50:99:cb:3b:26:f2:7d:0f:5b:dc:
ed:85:db:56:a7:e1:d9:6d:5e:10:07:fd:23:47:30:
b6:d6:e2:ea:25:f8:d6:92:be:87:74:ad:71:1e:17:
98:a0:ac:28:18:ec:c7:95:23:c4:61:72:be:3f:0d:
bf:0a:26:e2:d8:07:17:f6:3d:62:54:1e:e5:6c:94:
01:ae:75:c3:f5:75:6f:bd:f2:38:f6:0b:97:53:17:
de:26:22:12:00:1e:dc:f4:e0:43:76:bf:b9:e5:a9:
88:a0:a1:93:08:94:76:08:c7:fa:f7:01:1c:14:c5:
66:62:bf:94:c0:aa:4b:b2:66:9f:f3:ee:49:6c:58:
43:85:16:a4:d4:78:6a:b7:40:59:fc:f2:a6:8c:c8:
dd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:86:33:0E:2A:99:3B:7B:DF:48:7E:09:D3:D7:D8:94:B1:97:32:2D
X509v3 Authority Key Identifier:
keyid:2A:37:8F:3F:C3:AC:5A:FF:D2:AE:F5:89:39:89:56:7E:2D:C4:0D:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A378F3FC3AC5AFFD2AEF5893989567E2DC40DB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BadD4W2AyonpD4FMVoxCECfvseg7xDHikaAjsdtXAcEu/1/323830343a316635343a663030303a3a2f34302d3430203d3e20323732323230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1f54:f000::/40
Signature Algorithm: sha256WithRSAEncryption
a1:ed:de:d2:a0:2d:23:0f:fd:14:5f:56:11:9b:12:83:d3:8c:
b4:32:0f:7f:ff:e5:ea:25:23:8f:f0:d0:ac:f1:77:bd:01:ce:
aa:c5:d0:82:e6:65:ed:a9:24:8f:d7:e4:5b:89:40:7b:4e:c5:
ee:84:58:3b:b3:cf:b8:42:68:2a:27:f3:f5:f9:e5:f7:bb:8e:
49:02:52:f1:64:08:c4:30:68:df:7b:83:60:74:e2:d0:96:99:
9f:67:c7:e3:91:38:ff:c3:ed:de:3e:fc:34:62:28:dc:e9:34:
a4:33:b7:66:f9:d3:84:1e:d8:f2:93:25:17:ac:06:12:1b:fd:
d0:4d:55:e3:7f:e9:11:e5:dd:27:1f:43:77:e1:ed:2e:ac:a4:
8d:d8:f5:22:53:f7:67:2f:9e:d9:9c:60:63:f2:e6:ab:9f:0b:
f7:3f:5c:36:30:a0:39:fc:ae:4d:80:eb:26:a2:b2:8f:a7:a0:
c2:e7:84:6d:fd:b4:21:d8:e1:aa:b0:d5:d2:57:2c:0c:b3:42:
41:8f:e0:3e:3c:cf:5d:be:82:f8:c5:68:9d:bd:dd:76:9f:a1:
16:e6:3d:fc:21:3f:6b:ee:1e:f3:c8:78:c5:bf:66:df:ed:b8:
0e:58:88:95:aa:73:f1:35:93:4d:7b:f4:2d:e5:68:a1:c7:da:
c2:1a:88:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:10:45 2025 by rpki-client