Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CKDjCj1kNmxoBtCq36DUgnSaQdCks9qdPgf7X1bfugNj/0/34352e3138392e34302e302f32322d3234203d3e20323639353730.roa
File: 34352e3138392e34302e302f32322d3234203d3e20323639353730.roa (raw, json)
Hash identifier: itJwnDXWLQ0MVyofLgzfc8RaLyuOC8MDg6ggRGmwBQo=
Subject key identifier: 01:FE:69:E6:E6:C6:23:18:FD:81:D1:29:9F:31:98:8C:D4:43:F5:39
Certificate issuer: /CN=1370A03EC954E150A22BE78FA96515CB0158F5C1
Certificate serial: 33900AD18AC11CFACFB259989D8B7CD14F10B7E3
Authority key identifier: 13:70:A0:3E:C9:54:E1:50:A2:2B:E7:8F:A9:65:15:CB:01:58:F5:C1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1370A03EC954E150A22BE78FA96515CB0158F5C1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CKDjCj1kNmxoBtCq36DUgnSaQdCks9qdPgf7X1bfugNj/0/34352e3138392e34302e302f32322d3234203d3e20323639353730.roa
Signing time: Wed 05 Jun 2024 19:32:48 +0000
ROA not before: Wed 05 Jun 2024 19:27:48 +0000
ROA not after: Wed 04 Jun 2025 19:32:48 +0000
asID: 269570
IP address blocks: 45.189.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:90:0a:d1:8a:c1:1c:fa:cf:b2:59:98:9d:8b:7c:d1:4f:10:b7:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1370A03EC954E150A22BE78FA96515CB0158F5C1
Validity
Not Before: Jun 5 19:27:48 2024 GMT
Not After : Jun 4 19:32:48 2025 GMT
Subject: CN=01FE69E6E6C62318FD81D1299F31988CD443F539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a1:1c:84:22:5f:36:85:5e:ef:d0:8e:f9:b0:
8c:82:c4:6b:c8:8f:fa:a2:1c:03:9c:25:99:24:3c:
70:71:95:e5:06:8f:53:e8:dd:33:c4:14:97:f7:7f:
99:83:05:47:58:67:ee:eb:75:63:4e:ec:7c:ba:96:
4a:0c:e3:31:d6:35:76:31:17:25:be:fb:c6:ad:16:
57:fc:cb:cd:a1:4a:ee:76:1b:ca:af:db:e7:cf:cc:
e3:9e:8b:cd:3e:ec:43:7a:d2:22:ce:46:c1:ac:2b:
53:75:56:d4:d9:cc:86:21:6e:33:4a:aa:e7:d8:d4:
b3:7f:9d:51:85:d8:f0:dd:2f:68:22:70:f4:8e:bf:
a4:e2:de:a4:a3:20:f0:8d:ac:59:19:64:2f:8d:06:
db:8c:db:ec:70:72:c2:ea:20:a3:34:23:90:c1:37:
01:5a:73:a3:c6:cb:a6:d6:78:5a:c5:92:79:5f:e7:
9f:be:d3:4e:43:52:9a:8d:87:29:57:c2:5a:8e:d2:
6d:e6:27:88:ef:ae:74:64:9b:fe:fb:4a:60:8c:6e:
75:46:3e:b9:4f:d7:d0:04:b7:8c:47:e3:43:e4:57:
05:9a:5f:c4:cb:23:4a:63:b9:52:7d:32:27:ca:fb:
64:49:d2:2a:95:a2:37:70:fa:69:65:0e:ad:63:b2:
96:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FE:69:E6:E6:C6:23:18:FD:81:D1:29:9F:31:98:8C:D4:43:F5:39
X509v3 Authority Key Identifier:
keyid:13:70:A0:3E:C9:54:E1:50:A2:2B:E7:8F:A9:65:15:CB:01:58:F5:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CKDjCj1kNmxoBtCq36DUgnSaQdCks9qdPgf7X1bfugNj/0/1370A03EC954E150A22BE78FA96515CB0158F5C1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1370A03EC954E150A22BE78FA96515CB0158F5C1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CKDjCj1kNmxoBtCq36DUgnSaQdCks9qdPgf7X1bfugNj/0/34352e3138392e34302e302f32322d3234203d3e20323639353730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.40.0/22
Signature Algorithm: sha256WithRSAEncryption
73:3f:a2:37:02:d0:15:d4:53:81:3e:7f:6e:3c:7c:8a:9a:31:
22:9e:44:b1:1d:17:82:19:9c:d4:89:db:6e:a7:3f:39:c2:e6:
01:86:02:c6:0d:45:ba:38:00:b1:37:61:e0:7e:33:2f:ae:9c:
7a:87:2f:1f:b8:dc:16:7e:b7:8c:03:91:38:f2:46:fd:aa:4c:
24:a9:75:52:96:30:80:9d:a6:22:a4:dc:d3:25:07:64:0f:2b:
a4:15:e4:8a:e1:a1:59:a3:49:10:99:cd:18:aa:7f:1b:9f:e7:
42:40:8a:9e:df:e2:42:cd:4c:34:77:24:6b:f5:61:ba:5d:9e:
15:2d:50:15:48:c0:38:b1:e8:23:ad:e1:ff:1d:8b:1e:e9:d2:
3a:66:37:25:43:2f:af:92:c4:cf:3f:47:5e:1c:1a:27:9b:b7:
37:88:0e:e2:95:fe:fd:c1:b7:b0:a2:b2:ca:b6:03:47:b8:74:
56:c1:f3:41:48:ae:4b:ad:bd:ca:c6:d7:68:13:7f:16:1e:5b:
a6:91:bb:4f:83:5a:2b:f4:8e:08:f1:aa:ea:60:6f:69:cc:68:
7c:55:5b:d7:5e:d8:e6:86:aa:76:d4:e3:33:0c:06:ad:45:c9:
37:b1:26:63:80:7a:8b:b5:92:cd:02:9b:c2:4f:bf:6d:df:a2:
47:1b:9f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:59:41 2025 by rpki-client