Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/1/3137302e302e34302e302f32322d3234203d3e20323633363239.roa
File: 3137302e302e34302e302f32322d3234203d3e20323633363239.roa (raw, json)
Hash identifier: +2ZtKtJrHqGSUo4uP1JIk0bcyWUxk4ZNJjGMqFtL8kw=
Subject key identifier: C9:CB:FC:B2:C2:5B:30:64:87:A8:99:9D:07:31:EC:2F:8F:7E:F9:E4
Certificate issuer: /CN=7060D64077E65F706DB71176EBC6581364F88CFC
Certificate serial: 7176DB0A663534702E1497EF483E94FC8FA7966D
Authority key identifier: 70:60:D6:40:77:E6:5F:70:6D:B7:11:76:EB:C6:58:13:64:F8:8C:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7060D64077E65F706DB71176EBC6581364F88CFC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/1/3137302e302e34302e302f32322d3234203d3e20323633363239.roa
Signing time: Thu 04 Apr 2024 12:48:41 +0000
ROA not before: Thu 04 Apr 2024 12:43:41 +0000
ROA not after: Thu 03 Apr 2025 12:48:41 +0000
asID: 263629
IP address blocks: 170.0.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:76:db:0a:66:35:34:70:2e:14:97:ef:48:3e:94:fc:8f:a7:96:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7060D64077E65F706DB71176EBC6581364F88CFC
Validity
Not Before: Apr 4 12:43:41 2024 GMT
Not After : Apr 3 12:48:41 2025 GMT
Subject: CN=C9CBFCB2C25B306487A8999D0731EC2F8F7EF9E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:15:b4:29:36:99:a3:ef:c6:4b:6e:51:2a:
2c:e8:a0:5f:9c:f8:8f:d6:fd:e0:66:24:0f:95:7e:
ac:69:7b:83:9d:f9:0b:a1:54:21:f3:54:e8:46:04:
b2:11:7e:1b:f2:77:cf:22:4e:ef:de:e3:a7:7f:a7:
fc:d4:94:04:43:a8:e9:4e:a9:8e:15:fe:73:51:94:
79:e6:9b:80:ed:67:2a:bf:85:36:d6:a1:6b:c4:8e:
e1:42:4a:5f:29:a9:7a:d5:97:fd:31:d4:a8:70:af:
67:dd:0b:6b:f0:76:63:07:3d:75:c8:2f:89:c9:c7:
9f:c4:c1:8d:71:98:2a:ba:06:64:29:69:f9:85:c2:
54:c5:80:90:71:18:23:c8:e4:fa:d4:fb:78:e0:fe:
eb:43:5c:80:0f:d3:45:17:8f:20:13:1b:df:dd:b0:
73:60:50:9e:59:97:bd:bc:ba:bf:96:1c:66:2b:92:
3f:77:57:3d:b3:63:27:48:84:92:af:fa:12:eb:98:
5f:bc:41:be:3f:80:71:8e:1d:d4:a6:6e:58:09:0d:
51:4d:6f:45:dd:22:9e:ab:33:a8:d8:f1:e0:7a:a6:
cb:03:07:65:e5:83:9b:71:1a:9b:c2:5b:68:65:e1:
bf:2c:f3:61:b3:9e:ae:3d:9f:12:f6:82:50:5e:03:
9d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CB:FC:B2:C2:5B:30:64:87:A8:99:9D:07:31:EC:2F:8F:7E:F9:E4
X509v3 Authority Key Identifier:
keyid:70:60:D6:40:77:E6:5F:70:6D:B7:11:76:EB:C6:58:13:64:F8:8C:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/1/7060D64077E65F706DB71176EBC6581364F88CFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7060D64077E65F706DB71176EBC6581364F88CFC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BhNNZnYcAddNCBnUmnWrCG4aj2ovJZHbJq9MmRgw9cXk/1/3137302e302e34302e302f32322d3234203d3e20323633363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.40.0/22
Signature Algorithm: sha256WithRSAEncryption
83:96:02:f2:ba:78:0f:f3:17:e4:86:cd:b6:d1:52:4d:e0:57:
ed:1f:a1:0d:b8:d8:f4:e8:73:7e:99:79:20:18:5f:16:d3:ef:
4f:e0:26:54:06:8a:50:eb:89:fb:e8:76:fd:b0:2e:d3:a2:8f:
01:5e:f0:a0:0a:26:d0:a6:ad:28:ed:3d:a2:30:8c:6f:9d:f7:
11:c8:2b:bc:21:1d:d1:e0:da:a5:68:18:e2:3a:2c:0d:67:82:
10:b8:3a:b2:fa:5d:6d:28:f1:29:af:bf:16:8e:39:e8:3d:20:
76:bf:b8:48:eb:06:e3:d0:fc:28:d0:94:77:8f:df:41:52:23:
9e:d2:66:0d:d9:51:c5:66:ad:81:2c:86:4e:7a:d5:db:f5:70:
cd:b4:f6:75:cd:f0:68:13:d6:21:26:4b:3f:37:9f:5f:9e:c4:
77:a1:b8:a2:fa:b9:5e:57:e3:42:60:cf:c1:d6:1f:a2:2d:fc:
5d:5e:39:24:70:fe:92:f0:f3:f0:cc:92:31:41:8e:15:c9:82:
e3:ef:7a:e7:4b:2e:28:7e:a1:db:ca:fd:ec:c1:e8:c1:05:25:
b7:a5:7c:88:f5:92:f0:42:a1:1f:0a:fb:a4:9d:cf:76:23:d8:
94:c2:df:31:4b:a2:fe:04:c0:d6:65:6b:76:e1:d2:4c:3e:86:
e2:a6:de:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:22:42 2025 by rpki-client