Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BfgwUDQt9odgQzmaAbdMSnFWjeZw3KCBnX8Ee9f2pXdt/1/323830343a313264383a393930333a3a2f34382d3438203d3e20323633353030.roa
File: 323830343a313264383a393930333a3a2f34382d3438203d3e20323633353030.roa (raw, json)
Hash identifier: eA17qf5f2H8bmCmT1PJvVrvJd2+dPxoEEW6KjMLT2MU=
Subject key identifier: 9B:E9:9B:6E:A6:05:3D:56:9E:A6:FD:4A:52:5C:45:78:A7:95:D3:68
Certificate issuer: /CN=688CFC6ED295D85CCEC2EEE0687D7F1077721DC1
Certificate serial: 3CEEDD73452BCBCE1E4C751663C96777B9A3B89E
Authority key identifier: 68:8C:FC:6E:D2:95:D8:5C:CE:C2:EE:E0:68:7D:7F:10:77:72:1D:C1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/688CFC6ED295D85CCEC2EEE0687D7F1077721DC1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BfgwUDQt9odgQzmaAbdMSnFWjeZw3KCBnX8Ee9f2pXdt/1/323830343a313264383a393930333a3a2f34382d3438203d3e20323633353030.roa
Signing time: Thu 04 Apr 2024 10:58:32 +0000
ROA not before: Thu 04 Apr 2024 10:53:32 +0000
ROA not after: Thu 03 Apr 2025 10:58:32 +0000
asID: 263500
IP address blocks: 2804:12d8:9903::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:ee:dd:73:45:2b:cb:ce:1e:4c:75:16:63:c9:67:77:b9:a3:b8:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688CFC6ED295D85CCEC2EEE0687D7F1077721DC1
Validity
Not Before: Apr 4 10:53:32 2024 GMT
Not After : Apr 3 10:58:32 2025 GMT
Subject: CN=9BE99B6EA6053D569EA6FD4A525C4578A795D368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:97:23:84:14:1d:f8:63:78:70:d8:95:d1:
c2:11:34:5a:97:46:4d:90:53:04:60:01:a0:54:ea:
2d:c2:ff:86:66:62:43:45:2c:cf:59:87:c8:23:b5:
66:e4:ba:b8:17:28:38:b4:8e:b9:02:dc:5d:18:40:
34:9e:33:55:a3:fa:fd:68:57:7e:48:43:f9:fc:aa:
75:ff:f0:96:0b:e6:e0:f1:d6:c7:55:57:09:7b:11:
ae:6a:69:b5:b5:ec:81:47:13:e2:8d:41:61:c7:94:
53:56:cc:b9:1c:62:05:db:6e:68:24:b8:ff:91:0a:
c9:a6:6f:fc:0c:85:c2:a7:8b:4a:18:26:df:60:b8:
7e:f5:73:99:ae:4f:fa:81:a9:cc:f5:16:2b:33:8d:
55:57:1d:bf:1a:e1:f2:d6:94:af:db:bc:45:c9:b4:
9a:69:a9:06:3b:fa:1e:a4:4b:14:ce:3a:40:ea:70:
71:40:21:28:c0:31:52:2f:bb:83:3a:91:ef:ef:ec:
5c:22:8b:d4:52:af:82:8d:38:78:39:b1:7f:e5:91:
a1:66:b4:08:cb:a8:d0:37:6d:dd:3c:b3:d4:b3:16:
28:f2:16:ba:db:11:d1:a6:2b:05:fe:49:3e:10:ba:
ae:6c:cf:f4:8e:f8:1c:ba:90:ab:79:fa:75:a2:a8:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E9:9B:6E:A6:05:3D:56:9E:A6:FD:4A:52:5C:45:78:A7:95:D3:68
X509v3 Authority Key Identifier:
keyid:68:8C:FC:6E:D2:95:D8:5C:CE:C2:EE:E0:68:7D:7F:10:77:72:1D:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BfgwUDQt9odgQzmaAbdMSnFWjeZw3KCBnX8Ee9f2pXdt/1/688CFC6ED295D85CCEC2EEE0687D7F1077721DC1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/688CFC6ED295D85CCEC2EEE0687D7F1077721DC1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BfgwUDQt9odgQzmaAbdMSnFWjeZw3KCBnX8Ee9f2pXdt/1/323830343a313264383a393930333a3a2f34382d3438203d3e20323633353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:12d8:9903::/48
Signature Algorithm: sha256WithRSAEncryption
b5:92:e2:5e:3b:f6:d9:1a:32:39:27:eb:12:b8:f3:2f:65:da:
12:9e:d7:32:e4:d6:33:9b:86:d7:96:80:8c:1b:31:50:88:04:
07:52:5a:25:fa:13:77:14:43:fe:ff:03:16:01:ef:53:83:ac:
62:ed:fd:54:fa:96:62:f1:5e:0c:44:3b:df:06:6e:8b:b1:5c:
cf:51:21:0a:d2:36:9a:99:dc:de:fb:80:dc:61:ff:38:5c:0a:
22:d9:5a:47:47:cc:e0:58:9b:b4:47:e7:3b:c6:3c:8e:d3:11:
0a:da:de:83:a9:52:f7:db:9d:2e:39:8e:c6:fa:49:23:0f:f3:
e6:6e:6e:47:00:9a:0c:c3:92:6a:39:49:01:d8:11:c4:fc:3d:
0f:2f:86:75:13:28:c6:b2:67:e3:c2:cc:6b:51:32:b3:14:2e:
a0:9a:7f:bb:23:f7:6e:7f:57:be:d2:66:6d:b1:48:4b:cc:00:
09:92:cf:05:87:40:0d:28:b3:ed:0b:c4:c2:e2:65:a8:41:20:
66:c3:05:e6:fb:9f:24:2d:49:18:c2:35:ed:fb:a2:ba:a0:02:
7b:a7:98:8b:b1:9e:6a:53:86:a3:96:26:9f:53:99:bd:96:2f:
91:68:3f:10:09:79:8b:58:7b:9e:85:d4:56:a2:bb:17:a1:eb:
71:af:c3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:53:20 2025 by rpki-client