Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CZFRUVi2U4ZjQ78BgEF79NQfzVxF5LxTT9vvd9odu1VP/1/3138362e3231392e3132382e302f32302d3234203d3e203533313637.roa
File: 3138362e3231392e3132382e302f32302d3234203d3e203533313637.roa (raw, json)
Hash identifier: kilwzC18DThITy1fQANAqlEcom48IVMVh+TT3VxPVy4=
Subject key identifier: FB:D6:14:2F:B6:72:FD:FC:12:00:E0:C9:C5:9A:A0:FB:C1:4A:B5:DE
Certificate issuer: /CN=B7A04B6E71FC9DEC924E3D3536A1EE0B2701E5F4
Certificate serial: 650B420C5F444080FA3A56CF407B76D8FE39C620
Authority key identifier: B7:A0:4B:6E:71:FC:9D:EC:92:4E:3D:35:36:A1:EE:0B:27:01:E5:F4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7A04B6E71FC9DEC924E3D3536A1EE0B2701E5F4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CZFRUVi2U4ZjQ78BgEF79NQfzVxF5LxTT9vvd9odu1VP/1/3138362e3231392e3132382e302f32302d3234203d3e203533313637.roa
Signing time: Wed 05 Mar 2025 20:03:38 +0000
ROA not before: Wed 05 Mar 2025 19:58:38 +0000
ROA not after: Wed 04 Mar 2026 20:03:38 +0000
asID: 53167
IP address blocks: 186.219.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:0b:42:0c:5f:44:40:80:fa:3a:56:cf:40:7b:76:d8:fe:39:c6:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B7A04B6E71FC9DEC924E3D3536A1EE0B2701E5F4
Validity
Not Before: Mar 5 19:58:38 2025 GMT
Not After : Mar 4 20:03:38 2026 GMT
Subject: CN=FBD6142FB672FDFC1200E0C9C59AA0FBC14AB5DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5c:bd:55:dd:5a:28:35:2c:39:b0:95:02:14:
35:e1:09:49:f1:a4:4d:83:37:8e:39:e4:70:8c:32:
fc:6c:17:57:7b:08:3f:dd:87:9f:c0:ca:23:ea:d3:
49:1c:f5:81:2c:d5:d1:0b:66:85:50:27:c5:e4:5f:
b0:e4:04:27:89:15:92:4e:db:ec:2c:2a:99:e3:a6:
95:3c:94:77:a3:94:6e:91:23:4d:f6:9d:c7:d9:01:
4d:48:03:09:e8:73:32:f6:16:a8:5d:c2:e9:6c:87:
ba:2d:42:8e:7e:5e:3f:6a:b7:e2:81:dd:54:a4:47:
07:68:23:1b:18:20:58:f0:ad:ca:4b:d5:80:fe:77:
3a:9d:3c:4e:9d:92:f5:dd:60:33:b3:c6:f1:17:8b:
01:31:bf:28:31:6e:a2:80:12:5f:9e:b9:15:6c:9b:
81:11:8f:cc:11:63:9f:e9:83:eb:12:b4:12:cd:79:
18:12:9c:5b:b4:52:e3:e6:3d:6f:3b:1e:6f:84:03:
dd:35:6d:13:c0:25:db:52:a5:3b:fe:c4:94:62:0d:
47:53:9a:0c:0c:13:3e:ee:e2:7e:c8:6f:45:36:ad:
08:14:f7:e3:32:ff:ca:d5:7d:f0:0f:62:02:ce:b3:
f7:8b:6f:9c:c7:35:1f:28:ce:dc:82:40:48:2d:07:
1c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D6:14:2F:B6:72:FD:FC:12:00:E0:C9:C5:9A:A0:FB:C1:4A:B5:DE
X509v3 Authority Key Identifier:
keyid:B7:A0:4B:6E:71:FC:9D:EC:92:4E:3D:35:36:A1:EE:0B:27:01:E5:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CZFRUVi2U4ZjQ78BgEF79NQfzVxF5LxTT9vvd9odu1VP/1/B7A04B6E71FC9DEC924E3D3536A1EE0B2701E5F4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7A04B6E71FC9DEC924E3D3536A1EE0B2701E5F4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CZFRUVi2U4ZjQ78BgEF79NQfzVxF5LxTT9vvd9odu1VP/1/3138362e3231392e3132382e302f32302d3234203d3e203533313637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.219.128.0/20
Signature Algorithm: sha256WithRSAEncryption
49:7e:c8:b8:03:42:50:aa:f3:63:c1:a1:7e:f4:ed:6e:9d:18:
29:69:1f:f0:2c:da:09:da:84:f1:62:a6:c2:92:82:0c:54:3e:
ce:69:70:30:91:95:fb:a2:42:51:0e:3f:b6:96:f6:29:51:b9:
a4:53:13:fb:81:37:20:95:08:2d:48:3b:ab:0d:b8:0f:09:09:
8c:cb:b0:80:ce:0a:fc:bf:27:c5:87:20:2c:f0:80:1a:00:de:
bb:28:24:96:80:15:f4:31:e4:fd:56:92:5a:fa:b3:49:f8:e4:
03:20:c3:f4:83:63:c4:4c:41:da:05:a1:fd:6d:de:31:44:bc:
d9:d9:cd:99:be:21:00:c2:a3:80:ca:6a:7f:32:70:6a:ca:ee:
90:85:cf:b3:f0:28:d4:e9:ad:29:d6:19:e8:99:12:47:d0:e7:
3d:60:79:dd:2d:b0:69:49:48:ba:91:19:93:ac:5b:de:d6:78:
5f:61:3e:06:c3:cb:e1:ce:3a:d1:bb:bc:ca:16:3f:d5:c6:cd:
d4:e9:3f:29:47:75:44:4e:a4:3d:66:f7:fa:72:e1:7b:1a:d9:
f6:7e:b2:87:98:b7:e3:28:2c:1d:ce:db:02:68:a9:f4:78:3a:
b0:3e:e0:4c:dd:0d:cb:f4:46:54:50:ee:e2:d0:f0:a4:be:9c:
be:b4:5d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:37:14 2025 by rpki-client