Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33372e302f32342d3234203d3e20323730393332.roa
File: 3133382e35392e33372e302f32342d3234203d3e20323730393332.roa (raw, json)
Hash identifier: zJDJlTvzorYAZnRVb9ylvjNs6WUpQ/q9sJAfgKcbmzc=
Subject key identifier: 11:1B:FE:67:0F:3A:79:96:BB:22:81:A8:F0:3D:BF:BA:1E:E6:DD:33
Certificate issuer: /CN=2114671409937E8AC7FE751CB57FECC986B196C5
Certificate serial: 02FF3369D23F4F097E566358ED5F2E328297CEB5
Authority key identifier: 21:14:67:14:09:93:7E:8A:C7:FE:75:1C:B5:7F:EC:C9:86:B1:96:C5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2114671409937E8AC7FE751CB57FECC986B196C5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33372e302f32342d3234203d3e20323730393332.roa
Signing time: Thu 04 Apr 2024 16:17:54 +0000
ROA not before: Thu 04 Apr 2024 16:12:54 +0000
ROA not after: Thu 03 Apr 2025 16:17:54 +0000
asID: 270932
IP address blocks: 138.59.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:ff:33:69:d2:3f:4f:09:7e:56:63:58:ed:5f:2e:32:82:97:ce:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2114671409937E8AC7FE751CB57FECC986B196C5
Validity
Not Before: Apr 4 16:12:54 2024 GMT
Not After : Apr 3 16:17:54 2025 GMT
Subject: CN=111BFE670F3A7996BB2281A8F03DBFBA1EE6DD33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:6a:4a:f9:1b:a3:86:33:6b:34:6d:41:d2:
1f:a3:77:3c:69:c1:f9:a7:9a:e8:f3:54:6b:fd:1f:
89:18:7f:23:6f:a8:55:02:e9:7f:69:af:c2:af:24:
6b:7c:22:61:c6:38:3e:70:a8:ec:b6:21:c9:75:de:
df:97:01:fd:73:88:5b:3c:c5:ed:c4:a7:fe:66:ae:
38:2c:20:46:a5:8f:66:a4:fe:19:1c:7a:3b:d8:fd:
d3:9b:84:ad:d0:4a:3c:8a:27:c4:dc:7c:c3:05:79:
08:d3:09:48:aa:c1:37:46:9f:38:8b:99:af:0d:39:
76:05:f7:92:e6:f9:da:f6:e2:8e:e0:18:34:11:7e:
03:62:f1:a0:26:91:1e:6f:20:57:54:f0:28:e0:88:
48:0d:6b:7e:97:af:eb:49:11:7a:b1:d7:e3:7b:28:
58:0f:d4:9c:9a:87:29:58:ce:1f:03:dd:5f:cc:a1:
17:94:98:d5:21:0c:30:8c:d0:b3:5d:2d:68:b9:ab:
be:d8:70:5a:3d:29:e4:85:cf:95:df:b3:fa:83:32:
b5:6a:cd:e2:f8:9c:56:56:2d:09:8a:dd:63:c0:b8:
3a:18:81:65:68:17:80:7f:17:e5:94:fc:55:bb:bb:
80:97:63:31:b5:1c:0d:99:72:14:90:0f:ec:a1:e6:
e6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1B:FE:67:0F:3A:79:96:BB:22:81:A8:F0:3D:BF:BA:1E:E6:DD:33
X509v3 Authority Key Identifier:
keyid:21:14:67:14:09:93:7E:8A:C7:FE:75:1C:B5:7F:EC:C9:86:B1:96:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/2114671409937E8AC7FE751CB57FECC986B196C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2114671409937E8AC7FE751CB57FECC986B196C5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CVfsZqZgH69aatvtKpMFeVMwMNY7Fgs358tQKzXVUUHe/1/3133382e35392e33372e302f32342d3234203d3e20323730393332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.37.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ec:26:ca:69:ee:3a:5b:69:d8:9b:7a:74:7c:ba:06:6d:dd:
2c:e3:71:28:c7:b2:79:97:bb:87:75:e6:4c:71:6f:65:28:34:
9b:c6:4b:00:f2:3f:7e:12:df:6c:d9:24:4f:25:af:54:fd:36:
b7:90:f6:84:15:b7:c3:87:26:b9:98:8b:7f:ce:9f:0b:c7:91:
00:da:3f:44:c8:0d:8d:25:a3:63:1b:14:0b:71:27:7b:f8:75:
33:bd:f6:e6:77:77:0a:0a:78:b5:ad:76:6c:ca:2e:ec:0a:79:
0c:c7:8e:fe:47:26:75:53:eb:86:19:ff:26:2c:ed:64:db:2a:
38:74:36:57:88:c2:f1:9f:03:e8:cf:54:18:12:eb:eb:d3:27:
03:e6:7d:fa:ce:2c:0b:13:53:5d:04:b8:8f:0a:9d:21:c2:e2:
d2:20:c6:9d:fe:f1:e0:f6:2d:9f:94:c0:a3:11:a7:52:1a:9d:
dc:5d:57:6c:27:3f:8a:0c:06:55:cd:f3:77:a9:36:79:ca:5d:
61:3f:d3:f4:5e:62:81:22:d5:45:fd:cd:e1:69:39:8b:78:8f:
b3:de:e5:82:17:3c:18:42:64:77:14:04:e6:3a:e8:3a:40:ff:
cc:58:ac:d4:a3:10:ea:65:71:e1:2a:90:44:3e:11:3a:c1:6e:
5f:b9:e6:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:14:30 2025 by rpki-client