Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BcnTDFJP8y6M6AyjVpyDzS4PgQ8oJarxESexAUU1zoTN/0/323830343a333763383a3a2f33322d3438203d3e203533323136.roa
File: 323830343a333763383a3a2f33322d3438203d3e203533323136.roa (raw, json)
Hash identifier: wQ4PHQTcUtzAk7Fn10ybK23AUpy/LTgr5nLb4OhCnC4=
Subject key identifier: D4:20:41:2A:B0:61:14:5C:78:FA:6B:E1:78:07:E3:E5:7A:12:B9:8F
Certificate issuer: /CN=64947E8AAE2B568EB77CEEC8D7AB6897B019CBEA
Certificate serial: 22E8D5A3F2E4BDE596CEE0C520D973907F506BBA
Authority key identifier: 64:94:7E:8A:AE:2B:56:8E:B7:7C:EE:C8:D7:AB:68:97:B0:19:CB:EA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/64947E8AAE2B568EB77CEEC8D7AB6897B019CBEA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BcnTDFJP8y6M6AyjVpyDzS4PgQ8oJarxESexAUU1zoTN/0/323830343a333763383a3a2f33322d3438203d3e203533323136.roa
Signing time: Wed 19 Feb 2025 20:14:41 +0000
ROA not before: Wed 19 Feb 2025 20:09:41 +0000
ROA not after: Wed 18 Feb 2026 20:14:41 +0000
asID: 53216
IP address blocks: 2804:37c8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:e8:d5:a3:f2:e4:bd:e5:96:ce:e0:c5:20:d9:73:90:7f:50:6b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64947E8AAE2B568EB77CEEC8D7AB6897B019CBEA
Validity
Not Before: Feb 19 20:09:41 2025 GMT
Not After : Feb 18 20:14:41 2026 GMT
Subject: CN=D420412AB061145C78FA6BE17807E3E57A12B98F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:89:f6:53:0a:8e:51:f7:08:c0:71:a3:e0:
98:8c:58:c2:b9:9a:df:a4:7e:0a:a0:cc:91:f1:fb:
a8:7e:94:51:5a:7f:ae:e8:ad:a7:6e:b5:aa:12:6d:
3c:1d:a3:cd:30:a9:94:eb:db:3d:a2:d3:63:4c:fe:
1f:e2:32:74:b9:68:4c:a8:b1:96:3f:13:81:49:63:
08:1c:56:55:16:13:61:94:63:1d:77:3e:b8:fe:f8:
a7:7b:61:c1:30:0e:a5:6d:f3:f8:1a:d6:b7:2d:d1:
6e:32:5e:93:45:29:d4:07:6e:5d:10:4d:4b:2f:45:
d1:80:bd:3b:fe:1b:07:26:35:da:e7:91:01:1c:14:
d2:63:1d:4b:2c:90:f6:9c:e4:7b:bb:30:36:b8:9e:
48:33:ec:a9:32:ee:88:4a:32:4b:ef:11:d5:90:7f:
d3:be:c9:6e:7a:89:5b:10:4b:3c:96:54:a2:ef:2a:
a3:68:fc:6b:2a:f1:05:32:37:98:12:c6:21:c8:9c:
fb:2f:cc:97:e8:fc:ce:90:2d:55:58:d6:16:25:9a:
ad:18:8e:02:b5:ce:dc:17:0c:5d:42:cc:05:83:3d:
86:21:b2:74:ca:8c:78:3e:e0:ab:9b:90:64:18:53:
96:7e:2c:4e:16:c1:90:15:9d:09:f1:49:2a:3b:47:
25:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:20:41:2A:B0:61:14:5C:78:FA:6B:E1:78:07:E3:E5:7A:12:B9:8F
X509v3 Authority Key Identifier:
keyid:64:94:7E:8A:AE:2B:56:8E:B7:7C:EE:C8:D7:AB:68:97:B0:19:CB:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BcnTDFJP8y6M6AyjVpyDzS4PgQ8oJarxESexAUU1zoTN/0/64947E8AAE2B568EB77CEEC8D7AB6897B019CBEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/64947E8AAE2B568EB77CEEC8D7AB6897B019CBEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BcnTDFJP8y6M6AyjVpyDzS4PgQ8oJarxESexAUU1zoTN/0/323830343a333763383a3a2f33322d3438203d3e203533323136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:37c8::/32
Signature Algorithm: sha256WithRSAEncryption
10:59:c0:0e:c6:6d:68:cc:04:3b:8b:e7:80:ed:9f:9e:a6:13:
40:7d:d4:12:cb:3e:3e:f5:25:d7:e6:f5:56:66:33:20:61:61:
3b:b2:9f:81:7a:15:57:88:30:f3:87:43:48:2a:ac:54:68:b3:
87:51:1b:a3:f4:74:4d:5c:ea:5d:cb:5a:87:7c:7b:8c:c4:07:
00:28:4f:8e:d0:53:72:f8:fb:00:a8:af:0b:76:b1:4c:e4:7a:
e6:b4:d6:79:59:10:88:54:c2:28:6f:94:40:c5:92:9d:5a:07:
27:e9:d6:1c:71:f2:f8:e5:d9:70:5d:34:ed:ba:91:a8:c6:d7:
62:c8:b9:d4:ad:36:6e:4c:9f:c3:9a:d0:7e:97:de:9e:18:1b:
55:0d:d3:52:7f:1f:d8:85:ba:20:b3:9e:13:4a:ae:90:75:2f:
92:23:b6:f1:de:ae:d5:7d:e8:34:20:78:4d:7c:e1:35:ba:d1:
78:54:6d:97:a9:48:a2:85:6e:a6:38:88:9b:9a:8a:57:14:05:
59:ce:43:b3:69:81:2f:a1:12:66:5f:a5:54:8d:79:96:51:71:
3d:cc:c8:01:4d:3f:5f:07:5e:1f:8f:6b:f4:9a:91:43:d8:f0:
82:c5:4e:78:88:6f:79:84:a9:7a:77:a4:ea:d1:5f:16:eb:56:
8a:d5:c0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 20:10:10 2025 by rpki-client