Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/3139302e3131322e3135362e302f32342d3234203d3e20323639373132.roa
File: 3139302e3131322e3135362e302f32342d3234203d3e20323639373132.roa (raw, json)
Hash identifier: vRgBXTf737dOywQC8sA8E66J2VR8DKiOsUHsQlkbJis=
Subject key identifier: F8:70:39:EC:8C:27:CF:68:FE:B7:D0:DF:8A:E3:84:AF:87:07:57:1E
Certificate issuer: /CN=9B40C2CC13EAB50345EDACFACC15DB43E60B85A2
Certificate serial: 3840512F05F35A0DB4FE7C924B863B7827BF472B
Authority key identifier: 9B:40:C2:CC:13:EA:B5:03:45:ED:AC:FA:CC:15:DB:43:E6:0B:85:A2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/3139302e3131322e3135362e302f32342d3234203d3e20323639373132.roa
Signing time: Mon 24 Feb 2025 17:21:06 +0000
ROA not before: Mon 24 Feb 2025 17:16:06 +0000
ROA not after: Mon 23 Feb 2026 17:21:06 +0000
asID: 269712
IP address blocks: 190.112.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.crl
rsync://rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 12:08:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:40:51:2f:05:f3:5a:0d:b4:fe:7c:92:4b:86:3b:78:27:bf:47:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B40C2CC13EAB50345EDACFACC15DB43E60B85A2
Validity
Not Before: Feb 24 17:16:06 2025 GMT
Not After : Feb 23 17:21:06 2026 GMT
Subject: CN=F87039EC8C27CF68FEB7D0DF8AE384AF8707571E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:54:47:74:a2:ec:91:48:bf:73:3d:a4:4d:ca:
aa:1d:6d:d7:84:9b:56:4a:8d:c6:7c:1a:a1:dd:17:
40:de:13:39:8d:b4:c1:52:cf:03:51:15:2d:b3:00:
c7:a2:71:14:74:4d:b5:14:43:f0:fd:0c:1d:64:2c:
f1:64:0a:ee:ac:d1:d9:fd:86:92:4d:59:f8:74:69:
de:9b:9f:e4:ab:c8:49:a6:d2:d8:64:b5:da:37:7c:
58:72:94:ad:8f:ab:e5:99:df:62:02:26:ab:71:bc:
e1:62:ab:bf:b7:79:0a:69:88:4d:83:f6:f5:ed:87:
06:f4:c8:b5:86:33:89:c9:cf:d2:1f:f3:13:91:f5:
50:2c:fc:d7:a7:1f:22:5e:24:c1:bd:5d:cd:94:5a:
63:09:87:f6:53:55:4e:d5:08:c5:97:87:5b:6a:f3:
b9:ae:12:81:9d:f3:b5:50:66:2d:0c:fe:9a:b5:86:
01:b1:26:92:23:6c:5f:09:26:73:8d:49:25:78:4f:
46:75:33:46:64:8e:e6:ad:f2:a9:94:3e:43:8f:88:
c8:35:19:df:84:7a:df:7a:5c:99:1c:6a:9c:98:64:
20:6b:d4:12:19:39:43:4f:e1:97:b4:6f:84:bc:03:
87:18:ad:11:64:ab:73:f9:ec:9f:2c:13:d9:78:c7:
ae:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:70:39:EC:8C:27:CF:68:FE:B7:D0:DF:8A:E3:84:AF:87:07:57:1E
X509v3 Authority Key Identifier:
keyid:9B:40:C2:CC:13:EA:B5:03:45:ED:AC:FA:CC:15:DB:43:E6:0B:85:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9B40C2CC13EAB50345EDACFACC15DB43E60B85A2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BzNz5dBE2kMYGnAfxEsNYLv7aMT8m4yxP63Yv82Ldm2g/0/3139302e3131322e3135362e302f32342d3234203d3e20323639373132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.112.156.0/24
Signature Algorithm: sha256WithRSAEncryption
69:cd:b8:13:31:7e:d5:6a:5e:84:4e:25:44:b5:61:2f:2c:d9:
10:07:8c:c8:66:78:af:60:b2:99:b3:24:2d:9b:ce:9e:49:cb:
4b:9d:b3:fc:f4:9c:c5:66:fa:7d:dc:aa:00:90:74:68:ac:72:
28:3e:df:7b:41:e5:0c:33:27:31:59:1b:6b:13:17:96:0a:82:
30:1d:7a:c1:e0:ce:cf:9b:2f:e3:24:83:4d:c6:0f:22:ba:b1:
31:1f:8f:3e:21:20:9b:91:b1:c7:1e:33:35:fa:bd:27:a6:48:
ea:6e:18:99:d0:3e:86:da:e7:1c:3b:a7:da:06:49:b6:98:cd:
7d:58:ca:ca:a6:f7:27:94:85:c3:ab:bd:63:7f:5b:81:d6:e0:
15:c3:49:51:03:f8:18:8d:4b:3c:a5:22:d1:a3:d1:7c:15:0e:
9b:83:42:de:59:1e:1e:8d:b3:a9:64:84:24:78:55:82:01:7c:
e6:b6:8b:b8:7c:f1:6e:3c:9e:1e:3d:32:fe:3d:db:69:01:c1:
d0:8a:32:65:1a:49:6c:25:f5:39:19:49:ab:04:d9:76:cc:0e:
19:18:5e:3b:3e:df:d7:db:d4:d9:77:67:1a:b1:22:1b:a2:8b:
45:db:0f:90:a5:87:96:f5:68:07:31:76:56:25:40:85:cc:3e:
88:7c:33:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 21:19:00 2025 by rpki-client