Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/323830343a346265303a383030303a3a2f33342d3334203d3e20323637333334.roa
File: 323830343a346265303a383030303a3a2f33342d3334203d3e20323637333334.roa (raw, json)
Hash identifier: OVGTho24QlmrBxnDd7RzLBeqxftBjtKYg6S/wZvvxio=
Subject key identifier: 34:52:B4:CF:3D:71:33:5E:3D:DF:86:B3:A3:30:09:F3:68:8F:30:3E
Certificate issuer: /CN=D2FC8637672F6995F171A261D51674A50FE454A6
Certificate serial: 4783E8C81BA9F4C75353D5A70F02E8021FC59D7E
Authority key identifier: D2:FC:86:37:67:2F:69:95:F1:71:A2:61:D5:16:74:A5:0F:E4:54:A6
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2FC8637672F6995F171A261D51674A50FE454A6.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/323830343a346265303a383030303a3a2f33342d3334203d3e20323637333334.roa
Signing time: Wed 05 Mar 2025 19:00:01 +0000
ROA not before: Wed 05 Mar 2025 18:55:01 +0000
ROA not after: Wed 04 Mar 2026 19:00:01 +0000
asID: 267334
IP address blocks: 2804:4be0:8000::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/D2FC8637672F6995F171A261D51674A50FE454A6.crl
rsync://rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/D2FC8637672F6995F171A261D51674A50FE454A6.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2FC8637672F6995F171A261D51674A50FE454A6.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 02:22:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:83:e8:c8:1b:a9:f4:c7:53:53:d5:a7:0f:02:e8:02:1f:c5:9d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2FC8637672F6995F171A261D51674A50FE454A6
Validity
Not Before: Mar 5 18:55:01 2025 GMT
Not After : Mar 4 19:00:01 2026 GMT
Subject: CN=3452B4CF3D71335E3DDF86B3A33009F3688F303E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7e:52:d0:cf:f9:52:7e:41:29:a7:93:6c:a7:
c0:af:70:35:3a:d2:5b:1b:f2:03:83:20:c8:77:e4:
ab:02:6f:0f:b2:8a:d4:cd:f0:4e:1f:78:2e:f3:dd:
a8:46:63:73:91:7c:6a:3a:be:4a:aa:d8:ce:d3:c7:
5c:cb:d1:cd:d1:15:41:5d:3c:b8:72:6c:a5:a4:55:
76:f9:64:3c:51:17:91:b5:ff:1b:6f:26:12:fa:f9:
f5:a4:37:ab:93:f0:ac:da:0e:a0:0a:ab:de:62:d3:
cc:bb:c8:44:75:49:63:a1:54:2b:2e:12:0f:cb:a4:
f8:97:4e:0f:87:0d:22:77:47:52:89:20:be:0b:b3:
11:7c:3a:cc:76:94:1b:99:15:14:ed:53:1b:e7:d3:
e0:85:95:ad:91:90:09:71:d6:65:2c:51:5c:ab:da:
30:1c:29:73:36:88:05:75:1f:5d:ea:cc:83:f2:5f:
31:f6:ac:a0:94:bc:3b:97:c9:05:48:8c:8d:11:70:
63:f4:1e:0d:34:e7:5f:ba:56:ac:93:60:ed:46:c5:
af:c6:c5:e9:4b:b1:f2:72:79:b0:82:f1:43:3a:8a:
68:80:6d:c6:59:dc:02:3a:a4:fe:4b:75:98:74:fa:
e4:f6:1d:97:d8:29:c6:ac:75:45:d9:23:aa:25:ba:
df:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:52:B4:CF:3D:71:33:5E:3D:DF:86:B3:A3:30:09:F3:68:8F:30:3E
X509v3 Authority Key Identifier:
keyid:D2:FC:86:37:67:2F:69:95:F1:71:A2:61:D5:16:74:A5:0F:E4:54:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/D2FC8637672F6995F171A261D51674A50FE454A6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D2FC8637672F6995F171A261D51674A50FE454A6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BfMwy4Nqwej4UcU8EL3knZ2kytFo19gF6yPT1REi2Mov/1/323830343a346265303a383030303a3a2f33342d3334203d3e20323637333334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:4be0:8000::/34
Signature Algorithm: sha256WithRSAEncryption
06:0f:06:b2:e9:eb:2d:da:a6:28:f0:d5:8b:d5:f7:ee:0d:cb:
c0:fa:79:4d:dc:e5:8c:31:44:d9:ae:49:c9:0f:9a:52:9e:0b:
f5:50:42:4e:8c:0a:3b:bd:66:c7:85:65:28:eb:e9:0d:ef:2a:
09:e0:09:98:e5:32:3a:fb:18:06:81:3c:2c:2c:d8:45:d6:31:
82:db:97:51:0f:18:3d:19:1a:92:36:4c:b5:bd:21:ba:11:59:
f8:25:6f:c3:2a:12:e9:3e:38:94:86:65:f2:cc:57:3d:81:5c:
19:3e:5e:10:ea:8b:9e:27:ed:1d:34:f8:4a:0f:22:1c:ec:b5:
45:47:5b:22:86:6e:3f:38:c6:74:b4:34:01:d9:9e:26:e7:87:
3f:f9:ae:16:29:a9:0f:bd:12:f8:1b:c0:16:ba:3f:8b:94:a7:
c0:e4:fc:a4:ef:aa:59:c2:15:c5:8d:1d:54:f3:ee:20:b2:07:
97:b0:22:cf:15:3e:30:b0:78:35:6c:3c:30:30:6d:56:21:0f:
a0:48:3c:f4:a6:36:ed:73:f5:15:05:1d:5c:0d:47:a3:cf:3d:
24:84:6b:60:e6:5d:af:d8:c1:1f:07:33:8b:0d:48:61:59:60:
24:65:73:0c:35:ae:25:d3:df:dc:e8:35:1b:dc:74:05:55:69:
b0:88:de:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 12:35:29 2025 by rpki-client