Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/323830343a346436383a3a2f33322d3438203d3e20323638313934.roa
File: 323830343a346436383a3a2f33322d3438203d3e20323638313934.roa (raw, json)
Hash identifier: ny3mmpCYx/i7rtb8nwvG8x+yTF3ccyd7VTl98Ybvphw=
Subject key identifier: E5:B1:EC:1C:CF:7C:40:AE:08:DF:0E:18:C2:5D:67:40:9B:42:FD:B7
Certificate issuer: /CN=C7AA2249FA58EA1330AA369A2E7EA202B054E665
Certificate serial: 0DEF35D21DC60980C623C855A03E6E197DF977DC
Authority key identifier: C7:AA:22:49:FA:58:EA:13:30:AA:36:9A:2E:7E:A2:02:B0:54:E6:65
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C7AA2249FA58EA1330AA369A2E7EA202B054E665.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/323830343a346436383a3a2f33322d3438203d3e20323638313934.roa
Signing time: Wed 12 Mar 2025 14:35:34 +0000
ROA not before: Wed 12 Mar 2025 14:30:34 +0000
ROA not after: Wed 11 Mar 2026 14:35:34 +0000
asID: 268194
IP address blocks: 2804:4d68::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/C7AA2249FA58EA1330AA369A2E7EA202B054E665.crl
rsync://rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/C7AA2249FA58EA1330AA369A2E7EA202B054E665.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C7AA2249FA58EA1330AA369A2E7EA202B054E665.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 17:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:ef:35:d2:1d:c6:09:80:c6:23:c8:55:a0:3e:6e:19:7d:f9:77:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C7AA2249FA58EA1330AA369A2E7EA202B054E665
Validity
Not Before: Mar 12 14:30:34 2025 GMT
Not After : Mar 11 14:35:34 2026 GMT
Subject: CN=E5B1EC1CCF7C40AE08DF0E18C25D67409B42FDB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8d:57:8f:3b:5f:0a:fc:d7:f5:8d:a0:a7:08:
0d:01:94:fb:a6:31:15:c2:c7:6e:30:6f:64:13:2e:
85:fd:af:04:71:6e:08:46:9f:32:88:7e:46:8d:2a:
49:1e:7e:a5:47:66:c7:46:7a:62:5c:8c:4d:45:9c:
7b:c1:69:52:c1:ea:93:86:33:b0:96:6f:11:00:01:
bb:a0:f8:a3:61:c2:1b:d1:71:a5:ff:0e:ab:72:48:
7a:5a:4a:09:09:f8:db:76:cb:ad:40:e1:66:c1:8e:
e6:5e:a3:a2:18:7e:8c:79:18:90:35:80:db:b2:f0:
80:d7:a2:48:bf:92:11:9f:8b:6d:87:20:3e:92:04:
ab:f7:fc:6a:8f:bf:ea:5b:a3:f9:f8:6e:4c:67:42:
7d:96:84:e0:ac:d6:7c:98:36:6f:ba:a7:39:ce:65:
fd:66:41:bd:64:46:48:83:39:3d:d4:9d:3c:77:6e:
7c:ec:d0:84:97:9e:f1:ae:93:a8:95:6e:9c:85:f7:
01:61:33:7d:00:e6:9e:ea:3d:6c:dd:89:8e:1f:59:
3b:43:aa:b8:ed:8b:f8:c1:45:68:2b:7a:eb:83:3c:
6e:53:d5:e6:6c:98:73:9c:b5:e1:bf:ac:bb:fc:59:
bb:c0:38:2b:8d:e9:31:01:f6:3e:6f:47:9f:c0:1e:
ad:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B1:EC:1C:CF:7C:40:AE:08:DF:0E:18:C2:5D:67:40:9B:42:FD:B7
X509v3 Authority Key Identifier:
keyid:C7:AA:22:49:FA:58:EA:13:30:AA:36:9A:2E:7E:A2:02:B0:54:E6:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/C7AA2249FA58EA1330AA369A2E7EA202B054E665.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C7AA2249FA58EA1330AA369A2E7EA202B054E665.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CFBgmCEgSXhgB5tsJEVP56oKCwXhYZHTNLtnFgVa3pDW/0/323830343a346436383a3a2f33322d3438203d3e20323638313934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:4d68::/32
Signature Algorithm: sha256WithRSAEncryption
af:03:ba:8c:5c:ec:59:ff:46:e4:19:0d:5a:13:7a:36:74:73:
37:9f:52:06:db:c0:cd:c2:8e:cd:52:35:6b:d1:dd:b8:3f:07:
f4:44:08:ea:39:c1:b5:11:e4:44:49:c3:98:da:7b:bd:39:aa:
c4:99:01:f9:73:c4:95:74:73:0d:a8:b2:e9:d2:c7:6d:43:bd:
47:26:ae:57:2c:6b:bf:51:e7:f3:3e:cf:3d:64:07:81:f7:ce:
9f:92:17:e2:2c:92:ae:40:ec:2c:99:39:8d:4a:e3:30:ee:c3:
55:a6:7b:09:ef:1e:72:4b:78:b8:e9:2f:1d:eb:ba:68:97:7d:
4f:13:dc:9b:1d:e2:92:16:44:fd:d7:ea:49:4e:0d:8b:9d:8e:
f9:4e:95:a7:5e:f6:bd:28:d1:f1:be:55:00:a3:38:3e:2b:59:
ad:5e:b0:2c:d1:a5:ac:31:a3:a8:d4:21:b1:20:44:40:4b:ca:
f9:65:24:e1:c9:20:08:89:e8:a2:59:9c:35:1a:19:73:29:8e:
cf:a1:c3:5a:e0:36:85:06:55:91:34:23:ef:7a:1b:12:8e:5d:
25:37:d9:94:db:89:d1:45:e6:2a:5b:0d:ba:64:b5:b5:25:e8:
a0:d9:d4:fd:5f:e5:ca:f6:54:8c:8f:af:99:bb:e9:c0:33:28:
b8:33:86:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 11:33:41 2025 by rpki-client