Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CgSByf9ZmDpytRbUdiwck29v8keZ2u3isULUZP2G9icP/0/3230312e372e3231372e302f32342d3234203d3e203631383336.roa
File: 3230312e372e3231372e302f32342d3234203d3e203631383336.roa (raw, json)
Hash identifier: QLS/WJSb1padGA21Y7A96kpNMVzsnGKB9k0vlz4pnTg=
Subject key identifier: F3:74:AF:AD:2B:D9:E1:52:56:57:3E:AA:F0:03:5A:4E:31:48:20:F0
Certificate issuer: /CN=43885CAAF241C57514F4BFCC379D2F93549E4FAB
Certificate serial: 657F579CF5033A259BD6DC32461C86544F1C04E4
Authority key identifier: 43:88:5C:AA:F2:41:C5:75:14:F4:BF:CC:37:9D:2F:93:54:9E:4F:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/43885CAAF241C57514F4BFCC379D2F93549E4FAB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CgSByf9ZmDpytRbUdiwck29v8keZ2u3isULUZP2G9icP/0/3230312e372e3231372e302f32342d3234203d3e203631383336.roa
Signing time: Fri 26 Jul 2024 16:46:28 +0000
ROA not before: Fri 26 Jul 2024 16:41:28 +0000
ROA not after: Fri 25 Jul 2025 16:46:28 +0000
asID: 61836
IP address blocks: 201.7.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:7f:57:9c:f5:03:3a:25:9b:d6:dc:32:46:1c:86:54:4f:1c:04:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43885CAAF241C57514F4BFCC379D2F93549E4FAB
Validity
Not Before: Jul 26 16:41:28 2024 GMT
Not After : Jul 25 16:46:28 2025 GMT
Subject: CN=F374AFAD2BD9E15256573EAAF0035A4E314820F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7b:da:b0:37:fb:52:b1:9e:8b:90:d6:2f:1a:
6a:8c:03:85:f8:f1:1b:4b:ab:9f:e5:5a:cb:3a:61:
df:a7:91:9f:86:87:ed:a1:0c:80:63:8e:65:96:75:
8e:9b:da:48:d5:63:cb:c2:49:ee:15:73:82:de:05:
f2:32:9b:db:f1:e1:65:b5:fc:1f:00:bd:90:cf:b5:
29:26:cd:6d:fa:53:ed:7e:00:5e:76:f5:1a:14:22:
78:77:74:f4:30:41:25:03:e1:1b:5c:8c:79:94:49:
e1:c1:cc:cb:8b:cf:34:12:50:c5:5b:79:74:a5:23:
68:b9:c0:24:f1:0f:04:ba:53:88:ff:04:34:f0:a9:
a7:e6:f4:00:85:74:dd:b5:d0:04:af:ad:c4:99:70:
36:b6:b4:a9:38:d5:d8:c3:36:c4:57:95:7f:2e:f9:
52:b9:ae:ca:18:2c:aa:61:38:a3:bb:6b:e3:47:65:
f3:29:cc:c6:f3:39:85:78:95:94:c0:40:fa:b8:ff:
e0:0c:98:6a:71:40:78:e2:c5:26:39:a9:25:8e:db:
2a:ea:56:6b:be:da:ce:13:cb:8e:ed:ca:be:13:72:
fd:99:d4:42:b0:1f:65:c9:ed:b1:a4:36:3c:cf:e8:
a6:9c:98:55:3c:b8:69:f2:9e:04:30:52:0b:8b:41:
cc:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:74:AF:AD:2B:D9:E1:52:56:57:3E:AA:F0:03:5A:4E:31:48:20:F0
X509v3 Authority Key Identifier:
keyid:43:88:5C:AA:F2:41:C5:75:14:F4:BF:CC:37:9D:2F:93:54:9E:4F:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CgSByf9ZmDpytRbUdiwck29v8keZ2u3isULUZP2G9icP/0/43885CAAF241C57514F4BFCC379D2F93549E4FAB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/43885CAAF241C57514F4BFCC379D2F93549E4FAB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CgSByf9ZmDpytRbUdiwck29v8keZ2u3isULUZP2G9icP/0/3230312e372e3231372e302f32342d3234203d3e203631383336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.7.217.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c2:4a:0f:fb:78:4f:32:41:9a:d7:a0:73:50:be:99:20:f0:
ea:61:0a:5f:05:65:62:b9:70:f6:85:44:fe:4a:b4:eb:29:0d:
ce:34:e9:8d:b0:50:14:b6:f2:60:12:5f:63:2b:c4:a0:87:03:
45:44:2e:e0:fc:78:71:c3:38:1f:4e:00:e4:6d:3f:58:ae:11:
6d:82:6f:f0:bf:b5:63:20:62:d8:62:36:d7:88:8c:03:61:ba:
e6:9e:f4:96:9d:3c:e4:6c:97:5c:21:4a:22:f9:ef:c1:e4:b1:
d8:f8:01:50:96:9e:a0:f9:d0:76:33:b1:42:04:e5:0c:34:3b:
b3:8b:7e:67:d7:c1:79:f6:c0:51:40:37:a7:82:18:5a:22:fe:
4a:bb:f5:87:7f:93:61:36:64:e7:72:01:e8:e6:8b:7a:f0:e3:
48:8f:46:4e:e9:fa:3b:7b:57:f6:0a:d4:6f:88:78:37:c1:bd:
79:e1:8d:b6:d9:46:b5:90:c1:d8:a4:10:ea:58:65:11:e3:46:
c1:ca:c0:c0:30:d2:d3:4d:55:d3:6a:3b:3d:f8:13:b0:18:11:
ae:1d:1e:d0:be:bb:38:14:bc:e5:d1:db:80:17:6d:ae:1f:0e:
73:17:0e:86:e8:fc:ce:7a:69:ad:5b:af:cf:24:4c:66:b9:e8:
67:70:88:27
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUZX9XnPUDOiWb1twyRhyGVE8cBOQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDM4ODVDQUFGMjQxQzU3NTE0RjRCRkNDMzc5RDJGOTM1
NDlFNEZBQjAeFw0yNDA3MjYxNjQxMjhaFw0yNTA3MjUxNjQ2MjhaMDMxMTAvBgNV
BAMTKEYzNzRBRkFEMkJEOUUxNTI1NjU3M0VBQUYwMDM1QTRFMzE0ODIwRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCle9qwN/tSsZ6LkNYvGmqMA4X4
8RtLq5/lWss6Yd+nkZ+Gh+2hDIBjjmWWdY6b2kjVY8vCSe4Vc4LeBfIym9vx4WW1
/B8AvZDPtSkmzW36U+1+AF529RoUInh3dPQwQSUD4RtcjHmUSeHBzMuLzzQSUMVb
eXSlI2i5wCTxDwS6U4j/BDTwqafm9ACFdN210ASvrcSZcDa2tKk41djDNsRXlX8u
+VK5rsoYLKphOKO7a+NHZfMpzMbzOYV4lZTAQPq4/+AMmGpxQHjixSY5qSWO2yrq
Vmu+2s4Ty47tyr4Tcv2Z1EKwH2XJ7bGkNjzP6KacmFU8uGnyngQwUguLQcz1AgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQU83SvrSvZ4VJWVz6q8ANaTjFIIPAwHwYDVR0j
BBgwFoAUQ4hcqvJBxXUU9L/MN50vk1SeT6swDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQ2dTQnlmOVptRHB5dFJiVWRpd2NrMjl2OGtlWjJ1M2lzVUxVWlAyRzlp
Y1AvMC80Mzg4NUNBQUYyNDFDNTc1MTRGNEJGQ0MzNzlEMkY5MzU0OUU0RkFCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQzODg1Q0FBRjI0MUM1NzUx
NEY0QkZDQzM3OUQyRjkzNTQ5RTRGQUIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0NnU0J5ZjlabURweXRSYlVkaXdjazI5djhrZVoydTNpc1VMVVpQMkc5aWNQLzAv
MzIzMDMxMmUzNzJlMzIzMTM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTM4
MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAMkH2TANBgkqhkiG9w0BAQsFAAOCAQEAgcJKD/t4TzJB
mtegc1C+mSDw6mEKXwVlYrlw9oVE/kq06ykNzjTpjbBQFLbyYBJfYyvEoIcDRUQu
4Px4ccM4H04A5G0/WK4RbYJv8L+1YyBi2GI214iMA2G65p70lp085GyXXCFKIvnv
weSx2PgBUJaeoPnQdjOxQgTlDDQ7s4t+Z9fBefbAUUA3p4IYWiL+Srv1h3+TYTZk
53IB6OaLevDjSI9GTun6O3tX9grUb4h4N8G9eeGNttlGtZDB2KQQ6lhlEeNGwcrA
wDDS001V02o7PfgTsBgRrh0e0L67OBS85dHbgBdtrh8OcxcOhuj8znpprVuvzyRM
ZrnoZ3CIJw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:21:06 2025 by rpki-client