Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/323830343a323163303a3a2f33322d3332203d3e20323634353731.roa
File: 323830343a323163303a3a2f33322d3332203d3e20323634353731.roa (raw, json)
Hash identifier: XTvtebp7oM9owviERxilfDQ7pM/0nW6KsEuwtKryh3E=
Subject key identifier: 29:05:B6:0C:68:F9:F7:8F:7E:13:86:E6:26:5A:09:2D:8F:AE:40:A5
Certificate issuer: /CN=84210C699884A23E38D45F40B27833D84A440F91
Certificate serial: 3E1840B469F7C5671DB97B8F9A1E4A1C6661F3F6
Authority key identifier: 84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/323830343a323163303a3a2f33322d3332203d3e20323634353731.roa
Signing time: Wed 05 Mar 2025 19:00:17 +0000
ROA not before: Wed 05 Mar 2025 18:55:17 +0000
ROA not after: Wed 04 Mar 2026 19:00:17 +0000
asID: 264571
IP address blocks: 2804:21c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:18:40:b4:69:f7:c5:67:1d:b9:7b:8f:9a:1e:4a:1c:66:61:f3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84210C699884A23E38D45F40B27833D84A440F91
Validity
Not Before: Mar 5 18:55:17 2025 GMT
Not After : Mar 4 19:00:17 2026 GMT
Subject: CN=2905B60C68F9F78F7E1386E6265A092D8FAE40A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:f6:4c:96:f4:05:a8:0d:ab:3e:2c:ef:af:
7b:ed:9d:c0:59:1d:41:f6:50:86:98:18:8d:e4:c6:
67:fe:48:ec:37:20:14:f3:eb:78:e2:27:ee:ea:e8:
47:49:b5:ef:eb:82:53:6d:99:82:8c:c6:d7:42:24:
ea:9b:ed:4f:44:46:ad:7e:29:b7:df:7b:2e:de:2f:
69:93:92:5f:ae:0c:04:50:21:12:d2:14:2d:b1:15:
98:5f:90:18:0a:ee:3f:cf:fb:5e:1b:fa:f7:93:b8:
6a:1a:85:ce:84:79:b6:c9:94:b5:a1:7b:f3:68:30:
8f:ae:67:7a:a6:3c:51:60:a0:12:c8:b1:72:90:1f:
a9:de:3d:04:ca:24:fc:92:47:e3:de:36:fe:b1:27:
6b:fd:c9:d2:69:5c:c1:cc:92:66:51:4c:5d:98:27:
e6:68:4e:4c:54:8b:8a:99:3b:2e:99:a3:22:ff:12:
46:92:7a:4c:10:64:64:37:b7:b8:88:3a:3b:2c:04:
29:96:fe:0b:66:06:85:93:e0:7f:7e:94:14:a7:1a:
89:8e:c4:d3:ef:64:c8:20:8d:e9:93:2d:82:ab:f9:
e8:36:50:b5:a5:ec:da:76:bc:9d:39:df:c7:99:5e:
d5:fa:a5:49:30:23:ad:ca:e4:5e:80:f3:d2:8b:6a:
21:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:05:B6:0C:68:F9:F7:8F:7E:13:86:E6:26:5A:09:2D:8F:AE:40:A5
X509v3 Authority Key Identifier:
keyid:84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/84210C699884A23E38D45F40B27833D84A440F91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/323830343a323163303a3a2f33322d3332203d3e20323634353731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:21c0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:59:6d:ff:8c:65:aa:18:5b:5c:08:52:fd:dd:e0:e6:a2:84:
c0:c0:b5:c3:97:b8:b2:44:63:6e:fa:19:e7:42:36:30:61:bd:
b3:64:36:d9:fc:93:cb:f0:46:fa:16:cb:b1:03:f5:bc:c0:a3:
91:1c:bb:7a:48:b8:d3:9a:8d:94:f6:8d:28:f1:74:a3:4d:18:
9b:d6:a4:8e:e6:1f:65:d9:78:74:a5:61:3c:8d:ed:da:4f:7b:
14:55:71:90:a0:0a:26:7b:52:fd:ef:fb:35:b1:0d:67:e3:30:
52:c8:2c:32:14:f0:6a:e8:54:05:dc:5a:f5:50:a4:a5:ff:9e:
e5:1b:4e:a9:1d:03:22:d4:f1:4d:67:9e:4f:e8:a9:21:8a:4f:
be:37:f7:26:c3:36:e7:4f:b0:0e:34:72:89:c9:4f:a3:47:8c:
8e:cc:ed:8c:c4:7b:81:b8:85:1a:3b:16:fc:63:fb:3e:a8:97:
94:e5:f3:9a:3c:de:4c:ac:a1:c9:78:e4:ef:bb:ef:78:b7:12:
6c:39:e5:b5:00:e8:6e:27:f6:e4:91:51:d8:87:7c:d1:af:66:
4e:00:05:9c:01:0c:83:63:a0:2e:21:d4:f4:d6:1d:f3:de:d8:
92:bd:5c:83:05:c8:f9:ec:31:e0:72:b4:3d:d6:ee:dd:7c:6b:
8c:b1:d4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:08:03 2025 by rpki-client