Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS268018.roa
File: AS268018.roa (raw, json)
Hash identifier: gfOWtNLgkPpDL9tmC/UopKlRrMrDO6Bjm6Z9JAtQFmY=
Subject key identifier: D3:3E:01:D2:6E:CF:AB:68:C3:DF:DE:8F:0E:4D:67:80:C1:A5:BA:4C
Certificate issuer: /CN=3D5D40CF30F71728D13ED1EDA1B87700FA2696DD
Certificate serial: 145B4A94166539483C439DA3056E8CB1E5494C19
Authority key identifier: 3D:5D:40:CF:30:F7:17:28:D1:3E:D1:ED:A1:B8:77:00:FA:26:96:DD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS268018.roa
Signing time: Sun 25 Feb 2024 23:22:16 +0000
ROA not before: Sun 25 Feb 2024 23:17:16 +0000
ROA not after: Sun 23 Feb 2025 23:22:16 +0000
asID: 268018
IP address blocks: 45.165.230.0/23 maxlen: 23
45.165.230.0/24 maxlen: 24
45.165.231.0/24 maxlen: 24
138.122.84.0/22 maxlen: 22
138.122.84.0/23 maxlen: 23
138.122.85.0/24 maxlen: 24
138.122.86.0/23 maxlen: 23
138.122.86.0/24 maxlen: 24
177.39.56.0/21 maxlen: 21
177.39.56.0/22 maxlen: 22
177.39.58.0/23 maxlen: 23
177.53.216.0/21 maxlen: 21
177.53.216.0/22 maxlen: 22
177.53.216.0/23 maxlen: 23
177.53.218.0/23 maxlen: 23
177.53.220.0/22 maxlen: 22
177.53.220.0/23 maxlen: 23
177.53.222.0/23 maxlen: 23
177.53.223.0/24 maxlen: 24
179.96.216.0/21 maxlen: 21
179.96.216.0/22 maxlen: 22
179.96.216.0/23 maxlen: 23
179.96.218.0/23 maxlen: 23
179.96.218.0/24 maxlen: 24
179.96.220.0/22 maxlen: 22
179.96.220.0/23 maxlen: 23
179.96.222.0/23 maxlen: 23
2804:56b0::/32 maxlen: 32
2804:56b0::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:5b:4a:94:16:65:39:48:3c:43:9d:a3:05:6e:8c:b1:e5:49:4c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D5D40CF30F71728D13ED1EDA1B87700FA2696DD
Validity
Not Before: Feb 25 23:17:16 2024 GMT
Not After : Feb 23 23:22:16 2025 GMT
Subject: CN=D33E01D26ECFAB68C3DFDE8F0E4D6780C1A5BA4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:4d:21:0b:a9:ed:e4:1b:10:66:e2:31:ef:af:
bb:88:dd:73:5c:30:dc:9d:2a:a0:91:74:6f:d7:0f:
5a:37:56:8a:9b:00:36:38:51:53:79:bf:2b:ea:fb:
ab:f0:79:ed:92:ef:53:d6:34:ba:14:bf:89:35:b0:
59:42:0a:b3:2a:60:83:d6:da:68:97:9e:43:80:f9:
56:75:f3:c5:0b:1a:1c:10:3b:80:7d:48:5c:7d:20:
ed:40:83:b2:f8:f7:da:58:83:65:8a:7f:e8:bb:e4:
83:80:cc:1f:d5:f1:9a:00:d5:32:36:8f:43:68:c7:
6f:8c:f6:17:c1:29:8d:dd:45:c1:a3:9a:02:b9:1f:
ce:10:fe:79:57:84:7a:73:8c:d0:95:f6:96:36:72:
b3:a8:a8:4a:fb:54:f8:3d:0c:80:b5:00:5a:40:fe:
9d:b8:8c:38:1b:70:4b:d2:16:cf:7c:59:94:5f:d0:
ec:32:d1:57:b3:86:cd:b3:7e:97:98:f7:f5:98:d8:
c2:a8:3d:8b:05:25:df:ad:fc:e7:e8:8b:94:75:aa:
a4:58:2a:c6:11:b8:69:cc:eb:27:6e:76:b6:8c:50:
f1:14:b9:6f:7f:25:fc:1e:c6:35:ee:48:92:5d:6f:
8e:eb:26:93:df:92:88:70:b3:4b:ec:4f:f7:b0:57:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3E:01:D2:6E:CF:AB:68:C3:DF:DE:8F:0E:4D:67:80:C1:A5:BA:4C
X509v3 Authority Key Identifier:
keyid:3D:5D:40:CF:30:F7:17:28:D1:3E:D1:ED:A1:B8:77:00:FA:26:96:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS268018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.165.230.0/23
138.122.84.0/22
177.39.56.0/21
177.53.216.0/21
179.96.216.0/21
IPv6:
2804:56b0::/32
Signature Algorithm: sha256WithRSAEncryption
5e:8c:af:3f:fc:8f:b0:29:4e:f0:9f:70:55:b4:69:a6:6f:d5:
82:7f:bf:f8:e4:2f:16:37:5a:a0:a0:3a:c4:85:36:ab:0a:96:
62:4d:c5:b4:6c:37:2c:26:60:68:a6:06:40:40:35:0e:6b:6a:
c1:54:8a:ad:13:e3:65:3d:7f:ca:cb:06:31:dc:dc:58:f8:f0:
22:7d:e5:9f:a4:33:85:98:1a:cf:55:04:fc:24:1e:60:9b:20:
34:d3:26:02:39:55:16:88:18:51:8c:23:6a:c2:f1:da:68:cf:
4a:18:91:6f:5d:a9:71:6f:9f:f9:0c:e0:a3:10:50:9d:ff:b6:
f5:b9:07:df:83:93:24:55:9d:67:ac:8b:7d:a1:1f:80:86:db:
fc:de:12:7e:d8:c0:af:13:3e:04:db:ad:a8:85:27:75:33:ba:
bc:20:cf:89:38:3b:92:19:6d:37:77:7c:ff:17:52:cd:cd:70:
e4:6d:92:fd:f7:99:78:e9:e2:4b:c5:a0:ed:16:f6:16:63:be:
26:76:1d:c7:39:9a:52:08:9f:9f:7d:93:d1:e1:3d:c0:ae:b8:
36:82:c0:37:0f:75:f6:50:c0:e0:a8:e3:c0:40:71:e8:55:af:
86:d8:85:f2:8e:05:92:d6:03:49:07:3b:51:dc:ac:ab:eb:31:
fb:9e:5e:dd
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgIUFFtKlBZlOUg8Q52jBW6MseVJTBkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0Q1RDQwQ0YzMEY3MTcyOEQxM0VEMUVEQTFCODc3MDBG
QTI2OTZERDAeFw0yNDAyMjUyMzE3MTZaFw0yNTAyMjMyMzIyMTZaMDMxMTAvBgNV
BAMTKEQzM0UwMUQyNkVDRkFCNjhDM0RGREU4RjBFNEQ2NzgwQzFBNUJBNEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtTSELqe3kGxBm4jHvr7uI3XNc
MNydKqCRdG/XD1o3VoqbADY4UVN5vyvq+6vwee2S71PWNLoUv4k1sFlCCrMqYIPW
2miXnkOA+VZ188ULGhwQO4B9SFx9IO1Ag7L499pYg2WKf+i75IOAzB/V8ZoA1TI2
j0Nox2+M9hfBKY3dRcGjmgK5H84Q/nlXhHpzjNCV9pY2crOoqEr7VPg9DIC1AFpA
/p24jDgbcEvSFs98WZRf0Owy0Vezhs2zfpeY9/WY2MKoPYsFJd+t/Ofoi5R1qqRY
KsYRuGnM6ydudraMUPEUuW9/JfwexjXuSJJdb47rJpPfkohws0vsT/ewV9lNAgMB
AAGjggJDMIICPzAdBgNVHQ4EFgQU0z4B0m7Pq2jD396PDk1ngMGlukwwHwYDVR0j
BBgwFoAUPV1AzzD3FyjRPtHtobh3APomlt0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQ1JXeHdxajlLa0NValVyUWE2MWM4Wm8xREhtSG1wVGtUOW5VZmphZlFm
dXEvMC8zRDVENDBDRjMwRjcxNzI4RDEzRUQxRURBMUI4NzcwMEZBMjY5NkRELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzNENUQ0MENGMzBGNzE3MjhE
MTNFRDFFREExQjg3NzAwRkEyNjk2REQuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr
BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9DUld4
d3FqOUtrQ1VqVXJRYTYxYzhabzFESG1IbXBUa1Q5blVmamFmUWZ1cS8wL0FTMjY4
MDE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/
BDcwNTAkBAIAATAeAwQBLaXmAwQCinpUAwQDsSc4AwQDsTXYAwQDs2DYMA0EAgAC
MAcDBQAoBFawMA0GCSqGSIb3DQEBCwUAA4IBAQBejK8//I+wKU7wn3BVtGmmb9WC
f7/45C8WN1qgoDrEhTarCpZiTcW0bDcsJmBopgZAQDUOa2rBVIqtE+NlPX/KywYx
3NxY+PAifeWfpDOFmBrPVQT8JB5gmyA00yYCOVUWiBhRjCNqwvHaaM9KGJFvXalx
b5/5DOCjEFCd/7b1uQffg5MkVZ1nrIt9oR+Ahtv83hJ+2MCvEz4E262ohSd1M7q8
IM+JODuSGW03d3z/F1LNzXDkbZL995l46eJLxaDtFvYWY74mdh3HOZpSCJ+ffZPR
4T3Arrg2gsA3D3X2UMDgqOPAQHHoVa+G2IXyjgWS1gNJBztR3Kyr6zH7nl7d
-----END CERTIFICATE-----
Generated at Mon Apr 15 17:26:17 2024 by rpki-client on console-ams.rpki-client.org