Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CmnCbp8v7iDMurgVtADrM17wgTJuFiozSkksoxv54AjP/0/323830343a3739303a3a2f33322d3438203d3e203238363533.roa
File: 323830343a3739303a3a2f33322d3438203d3e203238363533.roa (raw, json)
Hash identifier: rThZri3yAt8gIq6y7nZWYceqMqnxOjVeNmCg4rN2LyU=
Subject key identifier: 04:76:20:92:55:0C:E8:68:2F:D7:02:53:AE:7C:00:EF:31:D5:88:3D
Certificate issuer: /CN=ECC3A2FA75716FA5208D65EF79B557641DFD7D18
Certificate serial: 76E2C3BDCDE7B357F353D2C6A247B5B98849E290
Authority key identifier: EC:C3:A2:FA:75:71:6F:A5:20:8D:65:EF:79:B5:57:64:1D:FD:7D:18
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ECC3A2FA75716FA5208D65EF79B557641DFD7D18.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CmnCbp8v7iDMurgVtADrM17wgTJuFiozSkksoxv54AjP/0/323830343a3739303a3a2f33322d3438203d3e203238363533.roa
Signing time: Sun 23 Feb 2025 04:32:15 +0000
ROA not before: Sun 23 Feb 2025 04:27:15 +0000
ROA not after: Sun 22 Feb 2026 04:32:15 +0000
asID: 28653
IP address blocks: 2804:790::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:e2:c3:bd:cd:e7:b3:57:f3:53:d2:c6:a2:47:b5:b9:88:49:e2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECC3A2FA75716FA5208D65EF79B557641DFD7D18
Validity
Not Before: Feb 23 04:27:15 2025 GMT
Not After : Feb 22 04:32:15 2026 GMT
Subject: CN=04762092550CE8682FD70253AE7C00EF31D5883D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:c7:25:9a:00:fa:36:07:ac:14:44:63:80:
ea:53:08:b1:54:bc:fd:db:6e:f6:31:19:83:40:0a:
e8:db:0f:7d:40:4f:e8:aa:bd:04:f7:64:3a:df:65:
3c:95:b3:1f:77:14:40:aa:ef:08:b2:2c:50:00:9a:
5d:94:ae:af:95:3f:34:e2:26:f6:58:4f:08:72:e7:
cc:5c:cc:25:a7:e8:84:e9:7a:0e:24:42:eb:02:1f:
41:0f:2a:b0:28:ea:e8:a8:85:60:9e:75:8f:cd:df:
94:9a:21:1b:6f:d5:d7:a3:68:5f:fd:cc:b5:bb:e7:
62:c3:9b:79:16:c6:00:70:51:34:7c:f8:dc:55:92:
94:e4:84:29:2b:4b:1c:74:3b:06:04:78:c3:63:a9:
39:aa:82:7e:57:99:43:60:5d:b0:a6:f4:df:04:74:
65:42:8a:b7:27:c7:a7:9a:27:b1:f2:7c:57:83:b4:
bf:b9:f0:d3:4d:12:b9:f8:ed:af:23:df:65:91:cc:
a8:6c:a8:a9:61:99:98:c4:3d:66:e9:7c:23:f7:7c:
c7:8c:f4:65:ea:af:e5:f0:3b:f2:c0:e5:af:ee:bd:
ca:b5:cb:68:f5:84:8b:d2:ab:6e:22:1f:7f:be:9a:
f0:2b:a6:cd:fd:78:9e:9c:0c:b5:09:2d:ae:e0:0e:
09:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:76:20:92:55:0C:E8:68:2F:D7:02:53:AE:7C:00:EF:31:D5:88:3D
X509v3 Authority Key Identifier:
keyid:EC:C3:A2:FA:75:71:6F:A5:20:8D:65:EF:79:B5:57:64:1D:FD:7D:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CmnCbp8v7iDMurgVtADrM17wgTJuFiozSkksoxv54AjP/0/ECC3A2FA75716FA5208D65EF79B557641DFD7D18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ECC3A2FA75716FA5208D65EF79B557641DFD7D18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CmnCbp8v7iDMurgVtADrM17wgTJuFiozSkksoxv54AjP/0/323830343a3739303a3a2f33322d3438203d3e203238363533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:790::/32
Signature Algorithm: sha256WithRSAEncryption
49:4c:d6:34:7d:a4:a3:5f:c0:94:53:86:19:bb:92:fb:eb:bd:
aa:4e:76:ac:78:66:bc:43:e4:4f:70:c9:f6:bf:5f:24:e6:b9:
e3:ab:c3:aa:bc:55:94:99:56:35:9f:8f:01:e6:0c:ab:c8:73:
42:09:b3:34:52:38:32:b6:78:51:84:d4:b6:a4:ce:af:d5:04:
a3:e8:9f:92:de:36:12:72:6c:cc:03:06:1a:c8:bc:47:a8:7d:
fc:65:43:ac:27:f5:e4:34:f9:0e:16:80:73:1f:e4:e9:ed:30:
a1:b2:53:c2:c3:03:60:59:a9:b5:f4:e8:2a:b3:4f:e5:52:96:
b6:f1:a3:3b:76:da:77:37:2f:cf:50:6c:3a:1d:15:de:38:80:
39:3a:df:7b:99:da:0e:eb:3a:b3:1a:2c:71:54:92:69:9e:06:
22:4f:63:93:7e:71:d5:fa:7d:b5:22:30:8e:f7:1c:82:ee:c9:
23:50:93:f6:79:cf:63:3a:13:96:fc:b4:63:a0:d8:37:63:c8:
b6:d2:a8:c6:1d:ab:83:6e:3d:9a:b4:7e:15:b5:e8:3c:11:f7:
bc:c3:61:9a:5c:41:a5:b6:fd:eb:df:0c:26:d1:e7:3f:b8:29:
60:07:45:26:1f:f7:d5:33:5e:ae:50:5a:37:00:58:4f:06:1e:
3f:65:85:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:55:29 2025 by rpki-client