Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BxWYRR9yVuLhzPzeXEbJAUoU63c97fPF1HFAE4fNytWz/1/3133382e39392e36382e302f32322d3234203d3e20323634313630.roa
File: 3133382e39392e36382e302f32322d3234203d3e20323634313630.roa (raw, json)
Hash identifier: zky51/DffORzZxBZ8AU9ayQwFMOYUQcDuinpg1HLTUI=
Subject key identifier: EA:53:0D:95:85:23:B5:6C:76:98:3E:F6:D5:BD:79:C1:46:B7:89:48
Certificate issuer: /CN=D80B6511B8BED418F67049DBA7A902EA0E950AD0
Certificate serial: 048AD76B5345E66210933D19373200C3414D2156
Authority key identifier: D8:0B:65:11:B8:BE:D4:18:F6:70:49:DB:A7:A9:02:EA:0E:95:0A:D0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D80B6511B8BED418F67049DBA7A902EA0E950AD0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BxWYRR9yVuLhzPzeXEbJAUoU63c97fPF1HFAE4fNytWz/1/3133382e39392e36382e302f32322d3234203d3e20323634313630.roa
Signing time: Tue 12 Nov 2024 20:20:06 +0000
ROA not before: Tue 12 Nov 2024 20:15:06 +0000
ROA not after: Tue 11 Nov 2025 20:20:06 +0000
asID: 264160
IP address blocks: 138.99.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:8a:d7:6b:53:45:e6:62:10:93:3d:19:37:32:00:c3:41:4d:21:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D80B6511B8BED418F67049DBA7A902EA0E950AD0
Validity
Not Before: Nov 12 20:15:06 2024 GMT
Not After : Nov 11 20:20:06 2025 GMT
Subject: CN=EA530D958523B56C76983EF6D5BD79C146B78948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5e:2a:e9:f3:2d:cf:4c:b3:be:a3:21:9f:b7:
83:25:bf:34:8d:80:c4:12:c4:bf:cd:c7:0c:5f:1d:
f0:b9:49:bc:a2:01:e4:b8:e9:bb:79:fb:48:3f:b9:
22:49:87:ad:12:f6:44:43:e5:ed:cf:9a:99:22:de:
7d:d8:6e:b8:e6:53:d9:db:dc:7f:5e:a6:96:81:9b:
38:01:2e:b1:a2:53:6a:03:aa:98:f5:37:0e:cc:64:
15:73:51:7c:45:0a:68:d6:bc:7b:01:d6:87:90:5b:
03:67:89:fa:3b:83:f2:9e:af:80:90:32:bc:27:ca:
54:55:b0:0a:c6:61:34:2d:46:69:80:55:26:87:25:
7d:b2:e0:83:2c:24:09:9e:51:03:40:ef:8b:94:e1:
69:ce:6c:86:7b:a5:73:ff:42:cb:f1:ad:58:55:0c:
e2:73:e7:14:41:1a:57:52:21:a7:00:03:99:1f:f5:
14:dd:8b:76:a6:5b:23:3f:c9:0d:f7:2a:86:bf:66:
ea:b0:ca:37:96:27:4c:ff:30:0b:8b:5f:72:d7:07:
3a:df:ae:23:f7:90:cf:23:48:ca:c5:2d:7a:de:88:
0a:20:22:23:92:51:d3:a5:47:64:67:6e:3a:60:cb:
9a:2a:43:31:e0:5f:3e:7a:b5:75:d4:b7:1d:1a:cf:
96:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:53:0D:95:85:23:B5:6C:76:98:3E:F6:D5:BD:79:C1:46:B7:89:48
X509v3 Authority Key Identifier:
keyid:D8:0B:65:11:B8:BE:D4:18:F6:70:49:DB:A7:A9:02:EA:0E:95:0A:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BxWYRR9yVuLhzPzeXEbJAUoU63c97fPF1HFAE4fNytWz/1/D80B6511B8BED418F67049DBA7A902EA0E950AD0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D80B6511B8BED418F67049DBA7A902EA0E950AD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BxWYRR9yVuLhzPzeXEbJAUoU63c97fPF1HFAE4fNytWz/1/3133382e39392e36382e302f32322d3234203d3e20323634313630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.68.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:cb:65:ae:b5:4f:b4:6b:71:0e:02:a1:c4:b4:05:50:14:3e:
0f:c9:64:e3:9b:e2:0e:7e:4c:e7:fc:64:39:dc:41:c0:09:f0:
24:d9:7e:7a:8c:de:a8:b1:ec:d4:cf:6a:9d:70:02:0a:e2:64:
ea:2c:c8:97:21:77:c0:e3:3e:9c:72:39:54:fb:04:4e:ed:68:
04:91:d3:9c:aa:09:1a:b6:19:c7:aa:e1:9a:30:d8:00:3a:f7:
a1:45:70:94:d1:ed:f2:e1:40:bb:93:bf:e4:8f:aa:fa:b6:4f:
44:88:71:f4:6f:7a:10:cd:40:f6:b7:61:51:ac:be:8a:60:b8:
1a:f0:d9:5b:de:c4:ae:c2:8a:98:5c:08:ee:8f:56:59:e3:70:
74:74:06:5b:d3:e9:d6:78:93:cc:aa:a2:43:83:46:e0:18:58:
18:98:bf:e5:79:94:97:54:b5:75:3f:46:e6:7d:cc:11:a2:7b:
19:e3:66:4d:62:7e:b6:5a:5d:c3:dc:cd:4d:46:20:88:08:51:
19:b9:0c:4d:35:98:90:a3:e9:c2:0f:57:10:05:42:71:cb:25:
53:06:2f:5c:e5:d6:65:1a:a9:3f:96:a3:82:11:dd:ae:71:41:
28:82:57:6b:65:89:14:a3:8f:a5:f3:17:98:e2:6b:e4:8c:bf:
8c:50:1f:0b
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUBIrXa1NF5mIQkz0ZNzIAw0FNIVYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDgwQjY1MTFCOEJFRDQxOEY2NzA0OURCQTdBOTAyRUEw
RTk1MEFEMDAeFw0yNDExMTIyMDE1MDZaFw0yNTExMTEyMDIwMDZaMDMxMTAvBgNV
BAMTKEVBNTMwRDk1ODUyM0I1NkM3Njk4M0VGNkQ1QkQ3OUMxNDZCNzg5NDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Xirp8y3PTLO+oyGft4MlvzSN
gMQSxL/NxwxfHfC5SbyiAeS46bt5+0g/uSJJh60S9kRD5e3Pmpki3n3YbrjmU9nb
3H9eppaBmzgBLrGiU2oDqpj1Nw7MZBVzUXxFCmjWvHsB1oeQWwNnifo7g/Ker4CQ
MrwnylRVsArGYTQtRmmAVSaHJX2y4IMsJAmeUQNA74uU4WnObIZ7pXP/QsvxrVhV
DOJz5xRBGldSIacAA5kf9RTdi3amWyM/yQ33Koa/ZuqwyjeWJ0z/MAuLX3LXBzrf
riP3kM8jSMrFLXreiAogIiOSUdOlR2Rnbjpgy5oqQzHgXz56tXXUtx0az5bbAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQU6lMNlYUjtWx2mD721b15wUa3iUgwHwYDVR0j
BBgwFoAU2AtlEbi+1Bj2cEnbp6kC6g6VCtAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQnhXWVJSOXlWdUxoelB6ZVhFYkpBVW9VNjNjOTdmUEYxSEZBRTRmTnl0
V3ovMS9EODBCNjUxMUI4QkVENDE4RjY3MDQ5REJBN0E5MDJFQTBFOTUwQUQwLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q4MEI2NTExQjhCRUQ0MThG
NjcwNDlEQkE3QTkwMkVBMEU5NTBBRDAuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0J4V1lSUjl5VnVMaHpQemVYRWJKQVVvVTYzYzk3ZlBGMUhGQUU0Zk55dFd6LzEv
MzEzMzM4MmUzOTM5MmUzNjM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM0
MzEzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCimNEMA0GCSqGSIb3DQEBCwUAA4IBAQCfy2WutU+0
a3EOAqHEtAVQFD4PyWTjm+IOfkzn/GQ53EHACfAk2X56jN6osezUz2qdcAIK4mTq
LMiXIXfA4z6ccjlU+wRO7WgEkdOcqgkathnHquGaMNgAOvehRXCU0e3y4UC7k7/k
j6r6tk9EiHH0b3oQzUD2t2FRrL6KYLga8Nlb3sSuwoqYXAjuj1ZZ43B0dAZb0+nW
eJPMqqJDg0bgGFgYmL/leZSXVLV1P0bmfcwRonsZ42ZNYn62Wl3D3M1NRiCICFEZ
uQxNNZiQo+nCD1cQBUJxyyVTBi9c5dZlGqk/lqOCEd2ucUEogldrZYkUo4+l8xeY
4mvkjL+MUB8L
-----END CERTIFICATE-----
Generated at Tue Apr 8 21:37:55 2025 by rpki-client