Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS61832.roa
File: AS61832.roa (raw, json)
Hash identifier: McW08KG7bMdRNdNqM8sTOp7M431jIKoU5Kw1mP6RzPo=
Subject key identifier: 73:B6:A3:D2:A9:D3:98:2B:F0:86:33:B3:A1:B3:BA:6B:6D:3E:B7:6D
Certificate issuer: /CN=3D5D40CF30F71728D13ED1EDA1B87700FA2696DD
Certificate serial: 6AAA6DE5E47A5865D4DA5738D700A6E29972E8C2
Authority key identifier: 3D:5D:40:CF:30:F7:17:28:D1:3E:D1:ED:A1:B8:77:00:FA:26:96:DD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS61832.roa
Signing time: Wed 28 Feb 2024 13:51:03 +0000
ROA not before: Wed 28 Feb 2024 13:46:03 +0000
ROA not after: Wed 26 Feb 2025 13:51:03 +0000
asID: 61832
IP address blocks: 45.236.68.0/22 maxlen: 23
170.81.192.0/22 maxlen: 22
170.81.192.0/24 maxlen: 24
170.81.193.0/24 maxlen: 24
170.81.194.0/24 maxlen: 24
170.81.195.0/24 maxlen: 24
177.66.120.0/22 maxlen: 22
177.66.120.0/23 maxlen: 23
177.66.122.0/23 maxlen: 23
177.72.0.0/21 maxlen: 21
177.72.0.0/22 maxlen: 22
177.72.4.0/22 maxlen: 22
187.60.240.0/20 maxlen: 20
187.60.240.0/21 maxlen: 21
187.60.248.0/21 maxlen: 21
187.84.64.0/20 maxlen: 20
187.84.64.0/21 maxlen: 21
187.84.72.0/21 maxlen: 21
191.6.8.0/21 maxlen: 21
191.6.8.0/22 maxlen: 22
191.6.12.0/22 maxlen: 22
201.148.100.0/22 maxlen: 22
201.148.100.0/22 maxlen: 24
201.148.100.0/24 maxlen: 24
201.148.101.0/24 maxlen: 24
201.148.102.0/24 maxlen: 24
201.148.103.0/24 maxlen: 24
2804:1a04::/32 maxlen: 32
2804:1a04:9::/48 maxlen: 48
2804:1a04:a::/48 maxlen: 48
2804:1a04:1b::/48 maxlen: 48
2804:1a04:1c::/48 maxlen: 48
2804:1a04:1d::/48 maxlen: 48
2804:1a04:1e::/48 maxlen: 48
2804:1a04:1f::/48 maxlen: 48
2804:1a04:20::/48 maxlen: 48
2804:1a04:22::/48 maxlen: 48
2804:1a04:24::/48 maxlen: 48
2804:1a04:2c::/48 maxlen: 48
2804:1a04:2d::/48 maxlen: 48
2804:1a04:80::/48 maxlen: 48
2804:1a04:81::/48 maxlen: 48
2804:1a04:180::/48 maxlen: 48
2804:1a04:181::/48 maxlen: 48
2804:1a04:400::/48 maxlen: 48
2804:1a04:4000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:aa:6d:e5:e4:7a:58:65:d4:da:57:38:d7:00:a6:e2:99:72:e8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D5D40CF30F71728D13ED1EDA1B87700FA2696DD
Validity
Not Before: Feb 28 13:46:03 2024 GMT
Not After : Feb 26 13:51:03 2025 GMT
Subject: CN=73B6A3D2A9D3982BF08633B3A1B3BA6B6D3EB76D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e6:75:48:c1:76:83:a6:c8:bd:61:e0:be:e7:
4a:54:99:bb:cb:f1:a5:81:4f:56:b4:0b:5c:36:41:
83:ad:a0:07:07:6e:a2:f6:53:28:ed:9c:b2:1e:df:
16:26:fd:8b:7f:49:4c:64:85:0a:f9:2a:1a:29:93:
d0:be:58:87:52:df:e4:bf:ea:f4:0a:d9:ce:fb:7f:
f7:93:d5:ab:8c:0f:5d:21:83:f5:fc:1a:cd:03:4d:
d1:a5:29:c6:0d:24:db:00:25:78:bd:6e:78:03:0d:
94:82:bd:ee:f2:fe:5a:3f:d9:c8:8e:45:5a:02:f2:
c1:dc:fa:61:05:0f:16:df:50:4e:f2:06:95:6a:cb:
ef:13:30:eb:05:28:f3:38:c2:f2:f9:88:2f:fe:9d:
cd:f8:29:4b:4d:86:8b:53:64:e8:f3:00:9c:7d:0e:
a2:03:a2:6d:46:ec:9a:ca:ff:9f:8e:67:2c:fa:71:
ef:3a:09:dc:9b:9c:4c:92:9c:ce:79:1f:7c:b7:e4:
aa:1a:39:fa:6c:a5:10:89:1b:52:6f:b3:0c:08:4a:
85:c8:91:9d:54:4f:0e:bd:a2:02:b3:9d:6c:a3:e1:
34:3d:c8:55:cb:7d:0c:59:4d:2c:ec:5f:e4:cd:44:
7b:7b:39:48:bc:76:a1:cb:77:f5:71:36:e8:75:43:
a8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B6:A3:D2:A9:D3:98:2B:F0:86:33:B3:A1:B3:BA:6B:6D:3E:B7:6D
X509v3 Authority Key Identifier:
keyid:3D:5D:40:CF:30:F7:17:28:D1:3E:D1:ED:A1:B8:77:00:FA:26:96:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3D5D40CF30F71728D13ED1EDA1B87700FA2696DD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/0/AS61832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.236.68.0/22
170.81.192.0/22
177.66.120.0/22
177.72.0.0/21
187.60.240.0/20
187.84.64.0/20
191.6.8.0/21
201.148.100.0/22
IPv6:
2804:1a04::/32
Signature Algorithm: sha256WithRSAEncryption
07:7d:87:c8:f7:a1:61:bd:f6:f4:03:63:39:2f:5f:93:6c:d2:
da:de:61:4b:1c:1d:1c:93:95:73:7a:94:32:9e:01:8d:d7:89:
8e:fb:42:62:9a:00:bd:df:42:8f:3a:be:39:17:89:1a:6d:76:
0a:c0:d5:50:cf:19:e0:05:46:55:4b:39:54:40:fa:26:7f:c4:
f7:f2:91:3a:a6:e9:f7:9b:b8:64:5d:d2:7d:af:2d:00:bf:ce:
7b:88:15:fc:bb:6d:38:9a:f3:9c:63:66:54:2d:25:ef:94:72:
52:f0:82:f5:14:77:19:2f:8f:ea:b4:da:36:3d:17:80:83:d8:
e2:7d:98:a2:78:a6:2f:9d:b2:29:28:25:7c:24:fb:e2:f8:26:
8e:2d:84:bd:ff:97:86:71:d5:93:08:ab:0a:47:a7:0f:ba:bf:
ec:7b:f5:4c:6e:53:2d:8f:f3:5b:e2:33:aa:4d:80:f4:17:33:
a1:6e:25:97:bc:99:00:8d:5b:8b:11:21:c0:d1:a5:fd:ec:40:
ec:ee:2b:30:3c:5e:e0:e4:a4:9c:2b:15:4c:25:af:8f:fa:aa:
51:1d:a6:cd:c6:35:3c:1f:06:5b:2c:00:b7:fc:73:f3:8f:de:
3f:62:9c:ad:61:c0:cb:f1:cf:10:52:d0:0d:9c:46:d3:3f:ed:
18:57:a5:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:21:15 2025 by rpki-client