Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33362e302f32322d3233203d3e20323730393332.roa
File: 3133382e35392e33362e302f32322d3233203d3e20323730393332.roa (raw, json)
Hash identifier: H8ICSiFGWxi3jGxpsu1Vqd566gOeEyBEuAn33549NaY=
Subject key identifier: FF:A4:85:8C:5D:E1:70:50:51:1E:60:29:7E:9B:F1:18:51:3B:0E:E0
Certificate issuer: /CN=2114671409937E8AC7FE751CB57FECC986B196C5
Certificate serial: 4B662D8802341B0074218D386B1A0349E84280D2
Authority key identifier: 21:14:67:14:09:93:7E:8A:C7:FE:75:1C:B5:7F:EC:C9:86:B1:96:C5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2114671409937E8AC7FE751CB57FECC986B196C5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33362e302f32322d3233203d3e20323730393332.roa
Signing time: Thu 04 Apr 2024 16:17:55 +0000
ROA not before: Thu 04 Apr 2024 16:12:55 +0000
ROA not after: Thu 03 Apr 2025 16:17:55 +0000
asID: 270932
IP address blocks: 138.59.36.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:66:2d:88:02:34:1b:00:74:21:8d:38:6b:1a:03:49:e8:42:80:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2114671409937E8AC7FE751CB57FECC986B196C5
Validity
Not Before: Apr 4 16:12:55 2024 GMT
Not After : Apr 3 16:17:55 2025 GMT
Subject: CN=FFA4858C5DE17050511E60297E9BF118513B0EE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:12:66:19:b9:12:4a:ef:b6:53:af:94:0b:7b:
b6:fa:f9:e6:45:59:df:c7:8d:82:0c:6a:d9:52:f8:
17:b9:0f:f2:2a:49:21:e4:f3:d0:91:57:62:eb:26:
b3:ab:8f:02:db:fd:8d:ca:c1:ca:39:07:73:e9:6b:
83:88:b6:8f:5a:66:13:00:e0:7f:3a:a5:f5:91:9c:
ae:c0:6b:1e:fa:d9:dd:4e:04:fc:89:7c:21:da:74:
c8:4e:b9:a1:76:75:67:8e:e3:ff:36:ca:88:69:5e:
90:ca:9f:3c:69:3b:13:5b:97:21:bb:be:2b:c8:26:
45:bd:eb:c3:f7:23:84:a6:8d:b3:24:48:0c:d6:9b:
2d:47:4c:c3:95:58:18:a0:2e:a3:a8:65:4d:85:8d:
2b:03:47:b0:72:46:8f:85:f7:71:ec:df:9b:f8:c6:
de:92:0d:94:dc:fa:eb:75:1c:a3:02:84:80:ce:60:
3e:8d:09:0b:f8:78:d1:13:84:53:c7:a7:b5:8b:f9:
5c:a7:49:03:27:12:c7:6a:c7:ea:be:24:9c:dd:e9:
8e:93:a8:46:48:ea:43:94:36:4d:90:32:a2:9c:63:
f0:3e:ea:6a:4b:bd:db:56:31:ee:67:d9:03:3f:ac:
c2:71:06:26:0c:f6:58:6c:70:28:c3:07:68:35:95:
d8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A4:85:8C:5D:E1:70:50:51:1E:60:29:7E:9B:F1:18:51:3B:0E:E0
X509v3 Authority Key Identifier:
keyid:21:14:67:14:09:93:7E:8A:C7:FE:75:1C:B5:7F:EC:C9:86:B1:96:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/2114671409937E8AC7FE751CB57FECC986B196C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2114671409937E8AC7FE751CB57FECC986B196C5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33362e302f32322d3233203d3e20323730393332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.36.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:40:ea:52:be:87:70:74:b0:e1:00:02:60:b9:8f:4e:be:02:
28:e3:0b:f6:e8:88:c6:01:06:1d:86:6f:04:9d:f6:a8:dc:55:
7f:39:a4:d7:c4:db:07:c5:d5:98:f3:29:a9:d9:fe:a4:ab:22:
65:2f:40:12:5b:9e:0b:21:70:1e:8c:a4:b2:dc:a7:7c:10:12:
c7:90:0b:b9:bb:69:94:57:6c:fc:0d:f3:c3:de:19:76:b6:3f:
24:92:ca:4c:68:09:43:47:20:71:df:98:31:5a:4d:0f:ef:22:
c5:ce:f1:5c:e4:28:4e:fd:c1:eb:fc:cf:ac:5e:a6:14:d4:b0:
fc:b0:31:32:0c:a6:a3:9c:b8:ba:bb:d3:4e:ad:89:77:60:5d:
ba:3c:e8:87:dc:fc:f0:26:67:99:a2:8a:2a:36:8f:14:20:15:
ac:83:e5:35:32:9c:7f:e9:da:52:83:a4:44:03:16:66:4f:e7:
aa:be:db:7f:f1:9b:8f:21:1e:f9:71:65:b1:df:8e:e1:1e:83:
c6:54:0d:80:75:74:96:58:ba:45:fe:39:fc:55:05:46:89:29:
08:2a:73:c4:03:c2:d0:b4:08:08:55:8b:4b:4b:cd:ca:60:2c:
b0:ac:f9:1c:41:59:7a:5f:a8:0d:b8:e2:06:a1:26:2b:15:6c:
a3:24:d5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:11:40 2025 by rpki-client