Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a363430303a3a2f34302d3430203d3e20323633363239.roa
File: 323830343a313034633a363430303a3a2f34302d3430203d3e20323633363239.roa (raw, json)
Hash identifier: P1BCYeADXHL731FgkuvQVqHt2Wbswp1EVq0ye1bsLdE=
Subject key identifier: 59:08:1B:0E:4F:32:C6:67:A6:96:46:19:9B:0B:97:8E:FE:0C:5B:90
Certificate issuer: /CN=EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD
Certificate serial: 432F46C7CF66FF402D0FC8B4B81F68F53360D675
Authority key identifier: EC:92:5A:78:F8:BF:CB:62:0C:80:CC:8F:AD:47:F5:F3:02:EF:FB:CD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a363430303a3a2f34302d3430203d3e20323633363239.roa
Signing time: Mon 17 Mar 2025 17:57:18 +0000
ROA not before: Mon 17 Mar 2025 17:52:18 +0000
ROA not after: Mon 16 Mar 2026 17:57:18 +0000
asID: 263629
IP address blocks: 2804:104c:6400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.crl
rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 09:46:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:2f:46:c7:cf:66:ff:40:2d:0f:c8:b4:b8:1f:68:f5:33:60:d6:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD
Validity
Not Before: Mar 17 17:52:18 2025 GMT
Not After : Mar 16 17:57:18 2026 GMT
Subject: CN=59081B0E4F32C667A69646199B0B978EFE0C5B90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fd:c3:95:25:bc:c9:19:06:d6:9f:07:3e:da:
89:69:ae:7d:c8:ca:79:ce:4c:60:1b:d7:c9:1e:82:
90:cb:dc:2c:0c:bc:58:e1:3a:23:17:8c:a1:8e:6e:
75:58:47:ef:17:54:53:4c:67:5a:92:b8:95:54:b1:
88:2d:80:7d:d0:d4:9b:a5:34:43:04:33:5b:21:73:
5a:25:bc:7a:90:f3:bd:77:14:5d:9e:33:eb:39:d3:
1e:73:50:99:97:10:b5:7f:97:15:e5:fb:f4:c8:6d:
ac:58:5a:82:2e:2a:7b:35:8a:90:44:ca:9e:7c:af:
7e:46:24:0b:dd:bb:96:ea:ed:91:12:42:a8:a3:d8:
2e:91:b7:fa:6e:ca:10:f6:1a:77:0f:59:a6:db:25:
3b:71:07:4d:f1:71:a6:bd:2b:54:a2:24:15:06:3a:
74:0e:8f:ba:1a:55:72:67:11:0b:30:b3:7f:f1:ea:
9c:92:2f:7c:de:09:55:38:24:ff:cd:90:1e:0f:df:
97:66:24:72:e2:61:cd:83:59:81:c8:71:0b:96:ef:
76:68:53:be:e6:37:fa:3a:3f:9e:b5:21:71:c4:8a:
96:3d:0e:6f:82:08:d8:3f:59:32:e1:c3:9e:90:aa:
d8:70:5e:0b:ea:16:74:f2:27:9b:b4:a9:2e:5f:f5:
2e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:08:1B:0E:4F:32:C6:67:A6:96:46:19:9B:0B:97:8E:FE:0C:5B:90
X509v3 Authority Key Identifier:
keyid:EC:92:5A:78:F8:BF:CB:62:0C:80:CC:8F:AD:47:F5:F3:02:EF:FB:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC925A78F8BFCB620C80CC8FAD47F5F302EFFBCD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/0/323830343a313034633a363430303a3a2f34302d3430203d3e20323633363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:104c:6400::/40
Signature Algorithm: sha256WithRSAEncryption
7f:8c:14:e5:4d:58:b1:7b:b6:24:b1:da:68:1e:b1:34:08:81:
d8:4d:16:8d:b7:a1:22:6b:2f:a5:ec:f8:48:29:2f:b2:0c:6c:
2b:21:81:92:3c:1d:e2:a7:b3:d1:29:22:4b:8a:8b:bd:de:24:
c8:c5:d2:64:8c:19:bd:dd:47:05:7c:01:09:80:3c:ae:74:a6:
31:9f:75:de:69:8c:b4:b6:53:3b:48:4d:6d:36:8a:b2:04:0f:
0f:63:84:aa:7b:3d:4c:d3:fb:7e:9f:11:4e:cd:7b:25:1e:c8:
f8:49:ee:a2:3b:13:72:08:31:f0:66:e7:3f:9b:ed:fa:2b:65:
69:49:21:ce:61:30:94:dc:73:53:a7:68:ab:a1:27:97:46:57:
0e:ab:8a:ec:13:f3:ce:dd:e8:d1:91:6d:18:c0:7c:77:30:00:
ae:b4:5f:0d:cf:e3:40:f1:a2:70:e6:e0:84:b7:21:5a:19:68:
57:59:ea:ea:df:d0:2c:83:4a:d1:56:3d:17:b9:d7:e9:b6:a6:
de:a0:9a:ac:cb:41:ce:19:c6:fa:5b:fd:f2:82:dc:9b:d8:be:
7f:3d:fe:8b:1e:5f:4f:6d:7d:10:22:0f:6e:76:70:ba:fb:19:
3a:5d:f8:fe:cc:49:6e:fd:43:c8:b2:87:79:09:92:31:7e:c6:
98:08:64:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:21:52 2025 by rpki-client