Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/3137302e37392e3232382e302f32322d3234203d3e20323636333131.roa
File: 3137302e37392e3232382e302f32322d3234203d3e20323636333131.roa (raw, json)
Hash identifier: P911MJb8bo8zJ2j5fIGU+UADWHGgL9jZ2aBW0Bz91k4=
Subject key identifier: 64:68:76:5D:CD:39:61:A3:95:45:DD:E4:8E:F7:81:84:B3:88:4B:43
Certificate issuer: /CN=37E90523C827A57C11E0B97A03E6AD0AF350D7BB
Certificate serial: 52405FECFA590D1DA6220EF8AA0A1307CB052DA1
Authority key identifier: 37:E9:05:23:C8:27:A5:7C:11:E0:B9:7A:03:E6:AD:0A:F3:50:D7:BB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/3137302e37392e3232382e302f32322d3234203d3e20323636333131.roa
Signing time: Thu 06 Mar 2025 22:26:25 +0000
ROA not before: Thu 06 Mar 2025 22:21:25 +0000
ROA not after: Thu 05 Mar 2026 22:26:25 +0000
asID: 266311
IP address blocks: 170.79.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.crl
rsync://rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 15:24:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:40:5f:ec:fa:59:0d:1d:a6:22:0e:f8:aa:0a:13:07:cb:05:2d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37E90523C827A57C11E0B97A03E6AD0AF350D7BB
Validity
Not Before: Mar 6 22:21:25 2025 GMT
Not After : Mar 5 22:26:25 2026 GMT
Subject: CN=6468765DCD3961A39545DDE48EF78184B3884B43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:4c:b8:15:7a:8c:d7:0f:65:40:a4:80:0a:
e2:a5:5f:e1:eb:6e:c4:c5:29:24:c8:f2:23:96:e7:
cb:8e:d2:35:9f:53:06:df:e5:1c:2d:52:e7:79:80:
95:33:16:6e:f8:bd:bd:46:61:36:7d:79:f7:03:55:
38:a0:c0:8a:ad:6d:fc:62:b1:36:54:1d:9e:0f:c7:
79:4e:af:1c:d5:49:4e:e8:21:22:fd:69:9a:51:e2:
22:71:6b:a8:6f:a8:2c:68:47:1b:8e:12:c1:21:39:
b0:9d:29:ca:12:1e:39:05:13:87:5a:64:9e:50:51:
ee:6b:07:b2:e6:98:0c:bd:70:cb:b1:9c:5d:4a:8b:
84:ac:87:ba:11:35:c5:4e:45:c2:b1:bc:81:27:77:
03:1a:6b:86:62:af:89:81:51:b5:a7:d4:31:b9:e4:
85:d6:2a:e0:ca:c3:7c:86:74:5f:c6:98:7c:29:d9:
88:7a:cc:a7:7f:df:54:bc:f9:09:ee:90:04:6a:b9:
fd:46:48:39:b5:cd:05:81:26:e8:2d:3f:83:7a:aa:
18:6a:81:9e:78:ee:0d:a6:84:f5:44:cb:22:f0:f9:
0f:f2:0b:69:2d:52:1a:df:af:29:92:36:2d:c0:fa:
eb:50:60:eb:f7:83:4c:50:05:67:ff:cf:86:1e:a5:
b0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:68:76:5D:CD:39:61:A3:95:45:DD:E4:8E:F7:81:84:B3:88:4B:43
X509v3 Authority Key Identifier:
keyid:37:E9:05:23:C8:27:A5:7C:11:E0:B9:7A:03:E6:AD:0A:F3:50:D7:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37E90523C827A57C11E0B97A03E6AD0AF350D7BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/C5c5UPo1mrFmpdBpj6a5VLokLeB9z3So2MhcszETd7RU/1/3137302e37392e3232382e302f32322d3234203d3e20323636333131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.79.228.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:95:f9:0c:d3:e2:e1:86:f2:58:7d:20:6f:4f:1c:64:8c:c0:
29:70:5c:65:ba:40:29:72:64:69:e9:8a:8e:7e:38:24:dc:7f:
5b:f1:7d:95:0d:cf:54:a6:b5:89:16:00:1b:38:e2:c4:c6:0e:
19:2a:ba:d4:c2:a6:85:06:b4:14:13:07:40:c6:29:81:e1:54:
5c:07:2a:0b:da:4f:bd:d7:6e:6e:c7:fc:4a:54:1a:84:f2:b1:
19:f1:7d:2b:0c:22:ec:d8:87:61:c8:1f:95:e0:aa:d2:d7:ef:
37:ed:d1:dd:70:a3:99:c6:be:fc:ee:7c:5d:9d:49:3e:79:fd:
f3:53:ef:0c:4f:4e:70:47:ce:da:57:97:46:8a:b8:f3:d9:7c:
dc:bc:3d:c7:4d:0b:51:6d:b4:9c:ea:7a:83:34:c2:be:e5:0f:
b2:26:fe:3a:6f:ea:31:b4:5f:cb:87:85:7f:70:b1:ab:d9:b1:
d1:df:ee:96:d8:1e:09:1c:70:c0:67:66:c6:46:d5:fb:45:78:
b7:a9:41:4e:52:4b:f2:15:9a:3f:e9:ed:43:b3:be:02:be:9e:
82:4c:44:35:1f:a6:5a:79:d8:38:06:a6:2c:63:7a:21:6d:af:
a9:5a:f0:37:42:91:97:2d:d0:f7:3a:cb:90:68:24:23:6d:71:
96:23:45:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 08:24:52 2025 by rpki-client