Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38302e302f32322d3234203d3e20323634353731.roa
File: 3133382e33362e38302e302f32322d3234203d3e20323634353731.roa (raw, json)
Hash identifier: 2+vYUt+aiSeTSKIoA4RTr4VRql5FrrLCktFxzuoaL6s=
Subject key identifier: D3:A1:1E:87:81:A1:B5:84:DF:7E:A8:B2:B0:C0:A8:3C:AC:3C:7D:5B
Certificate issuer: /CN=84210C699884A23E38D45F40B27833D84A440F91
Certificate serial: 4217E966F53951E64DB1B7E592C2555B72B7922F
Authority key identifier: 84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38302e302f32322d3234203d3e20323634353731.roa
Signing time: Tue 13 Aug 2024 17:20:14 +0000
ROA not before: Tue 13 Aug 2024 17:15:14 +0000
ROA not after: Tue 12 Aug 2025 17:20:14 +0000
asID: 264571
IP address blocks: 138.36.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:17:e9:66:f5:39:51:e6:4d:b1:b7:e5:92:c2:55:5b:72:b7:92:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84210C699884A23E38D45F40B27833D84A440F91
Validity
Not Before: Aug 13 17:15:14 2024 GMT
Not After : Aug 12 17:20:14 2025 GMT
Subject: CN=D3A11E8781A1B584DF7EA8B2B0C0A83CAC3C7D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5b:1a:59:9b:1b:d0:5d:47:8e:79:99:d9:cd:
cc:9c:40:44:84:cb:11:98:9b:74:20:dd:6a:89:fa:
32:eb:df:4d:90:46:fa:ce:c3:bd:1c:2d:4c:fd:bf:
8d:a7:c2:02:d9:33:a9:91:d0:d3:71:20:95:03:9e:
e3:19:77:3b:9c:42:86:20:42:38:fe:96:d9:8e:db:
e9:0f:be:6c:28:34:79:4e:e3:76:19:9f:a3:68:59:
22:cf:c9:e2:73:42:6b:b1:cf:54:70:a9:bc:57:17:
71:a7:15:3a:58:c1:d1:a9:03:4a:c9:ad:a5:49:b6:
ff:d4:d9:c5:f7:a4:bf:e8:d0:79:1a:b2:6d:23:ef:
b1:8c:2c:54:0f:59:b8:a2:9c:67:ab:3f:b2:d3:27:
85:29:e4:ee:30:de:7d:45:61:49:1e:b4:cd:f6:f0:
76:ae:0b:a0:a2:2d:6f:c1:62:2d:69:be:ed:ce:f4:
4a:64:0e:65:64:db:70:ad:5c:58:10:49:b9:3e:4d:
f3:cf:87:f2:53:d9:08:4b:f4:b0:27:d4:cd:3f:ac:
2e:1d:ed:00:6b:28:2a:25:2f:a2:27:8e:ca:4f:fa:
8f:e1:d6:68:53:db:18:ee:f0:d9:6f:99:79:3e:f2:
d0:c0:16:09:86:95:0f:2d:76:d9:49:82:d7:b9:b4:
bd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A1:1E:87:81:A1:B5:84:DF:7E:A8:B2:B0:C0:A8:3C:AC:3C:7D:5B
X509v3 Authority Key Identifier:
keyid:84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/84210C699884A23E38D45F40B27833D84A440F91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38302e302f32322d3234203d3e20323634353731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:c6:ba:5d:6d:c2:b4:2b:81:0d:f0:1b:f4:24:40:2e:45:df:
ec:8d:fe:b0:5c:66:15:3c:ac:eb:f4:a8:c0:15:28:92:a8:56:
e2:84:5d:3f:f3:9e:08:bd:e4:8b:78:1e:51:b6:22:40:1e:64:
89:2c:42:a8:63:0d:ec:7b:01:21:9e:89:53:e3:ac:b1:be:6d:
41:dd:29:a3:0e:6a:0e:b8:b4:0e:22:49:24:6c:e3:59:e6:6d:
9e:b2:f8:a3:5f:b9:f1:74:fb:2c:0d:94:d7:5f:ce:cd:0f:bb:
7b:bc:c3:bd:71:b1:57:f4:7b:0e:52:1a:54:f8:e0:10:41:88:
1c:fd:f0:2d:72:6b:3e:51:1d:c3:44:fa:ef:c8:64:da:30:41:
0c:f3:83:ee:52:c9:e5:8c:d8:ec:b3:29:2d:0d:7e:35:87:8a:
78:a4:2f:69:5d:9e:62:b8:c1:24:be:20:d6:58:ba:12:58:d6:
76:67:4f:b4:bb:51:ac:18:b0:5f:d4:62:d1:49:37:84:59:b8:
e2:93:a4:f1:7f:29:14:0f:86:b0:88:a5:d9:66:1c:6c:76:b9:
e3:a2:ca:9e:91:c6:17:09:b8:5d:b6:86:b8:72:b6:63:73:5d:
4a:3c:8d:c1:ba:93:7f:1a:f0:df:fb:3c:ba:af:f9:26:c6:fa:
a2:63:2e:d2
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUQhfpZvU5UeZNsbflksJVW3K3ki8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQyMTBDNjk5ODg0QTIzRTM4RDQ1RjQwQjI3ODMzRDg0
QTQ0MEY5MTAeFw0yNDA4MTMxNzE1MTRaFw0yNTA4MTIxNzIwMTRaMDMxMTAvBgNV
BAMTKEQzQTExRTg3ODFBMUI1ODRERjdFQThCMkIwQzBBODNDQUMzQzdENUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/WxpZmxvQXUeOeZnZzcycQESE
yxGYm3Qg3WqJ+jLr302QRvrOw70cLUz9v42nwgLZM6mR0NNxIJUDnuMZdzucQoYg
Qjj+ltmO2+kPvmwoNHlO43YZn6NoWSLPyeJzQmuxz1RwqbxXF3GnFTpYwdGpA0rJ
raVJtv/U2cX3pL/o0Hkasm0j77GMLFQPWbiinGerP7LTJ4Up5O4w3n1FYUketM32
8HauC6CiLW/BYi1pvu3O9EpkDmVk23CtXFgQSbk+TfPPh/JT2QhL9LAn1M0/rC4d
7QBrKColL6InjspP+o/h1mhT2xju8NlvmXk+8tDAFgmGlQ8tdtlJgte5tL0hAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQU06Eeh4GhtYTffqiysMCoPKw8fVswHwYDVR0j
BBgwFoAUhCEMaZiEoj441F9Asngz2EpED5EwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQ1B4aE5xZzVFQWNnaFVEalU0WUJlZXNtbUthRmRxbnZFM3I1R0s1Zm55
RkYvMS84NDIxMEM2OTk4ODRBMjNFMzhENDVGNDBCMjc4MzNEODRBNDQwRjkxLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg0MjEwQzY5OTg4NEEyM0Uz
OEQ0NUY0MEIyNzgzM0Q4NEE0NDBGOTEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0NQeGhOcWc1RUFjZ2hVRGpVNFlCZWVzbW1LYUZkcW52RTNyNUdLNWZueUZGLzEv
MzEzMzM4MmUzMzM2MmUzODMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM0
MzUzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCiiRQMA0GCSqGSIb3DQEBCwUAA4IBAQBdxrpdbcK0
K4EN8Bv0JEAuRd/sjf6wXGYVPKzr9KjAFSiSqFbihF0/854IveSLeB5RtiJAHmSJ
LEKoYw3sewEhnolT46yxvm1B3SmjDmoOuLQOIkkkbONZ5m2esvijX7nxdPssDZTX
X87ND7t7vMO9cbFX9HsOUhpU+OAQQYgc/fAtcms+UR3DRPrvyGTaMEEM84PuUsnl
jNjssyktDX41h4p4pC9pXZ5iuMEkviDWWLoSWNZ2Z0+0u1GsGLBf1GLRSTeEWbji
k6TxfykUD4awiKXZZhxsdrnjosqekcYXCbhdtoa4crZjc11KPI3BupN/GvDf+zy6
r/kmxvqiYy7S
-----END CERTIFICATE-----
Generated at Fri Apr 11 20:09:02 2025 by rpki-client