Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D6M24PGbfcRFKHJ5YxvqZQ7pUHFRpJPTmaYi219ez336/0/AS28220.roa
File: AS28220.roa (raw, json)
Hash identifier: l30sfx8QXwXulVWA/VPr4j6vMtsaizU7LDFBqzulmtg=
Subject key identifier: 9A:25:7C:F5:40:39:41:C4:61:76:5B:4C:54:2D:0C:59:1B:EE:E9:18
Certificate issuer: /CN=F245A20DD754102EB4C5ADABE8FDF7C8F30AF3E8
Certificate serial: 414FE63E4171A7ECE54DB36120B47842C923E75C
Authority key identifier: F2:45:A2:0D:D7:54:10:2E:B4:C5:AD:AB:E8:FD:F7:C8:F3:0A:F3:E8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F245A20DD754102EB4C5ADABE8FDF7C8F30AF3E8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D6M24PGbfcRFKHJ5YxvqZQ7pUHFRpJPTmaYi219ez336/0/AS28220.roa
Signing time: Thu 06 Oct 2022 17:53:03 +0000
ROA not before: Thu 06 Oct 2022 17:48:03 +0000
ROA not after: Thu 05 Oct 2023 17:53:03 +0000
asID: 28220
IP address blocks: 45.4.64.0/22 maxlen: 22
138.0.100.0/22 maxlen: 22
168.228.68.0/22 maxlen: 22
177.137.192.0/20 maxlen: 20
179.96.192.0/21 maxlen: 21
179.96.240.0/20 maxlen: 20
186.193.96.0/20 maxlen: 20
186.208.208.0/21 maxlen: 21
186.235.0.0/20 maxlen: 20
186.251.112.0/21 maxlen: 21
186.251.112.0/22 maxlen: 22
186.251.116.0/22 maxlen: 22
187.49.192.0/20 maxlen: 20
187.86.96.0/20 maxlen: 20
187.87.112.0/20 maxlen: 20
187.108.64.0/20 maxlen: 20
187.109.176.0/20 maxlen: 20
189.45.16.0/20 maxlen: 20
200.233.80.0/20 maxlen: 20
201.148.188.0/22 maxlen: 22
2804:2140::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:4f:e6:3e:41:71:a7:ec:e5:4d:b3:61:20:b4:78:42:c9:23:e7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F245A20DD754102EB4C5ADABE8FDF7C8F30AF3E8
Validity
Not Before: Oct 6 17:48:03 2022 GMT
Not After : Oct 5 17:53:03 2023 GMT
Subject: CN=9A257CF5403941C461765B4C542D0C591BEEE918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:93:cb:23:4c:07:66:2a:c8:57:97:b5:09:68:
b5:4f:07:ed:a4:96:4b:f2:9b:b0:fd:87:6c:4e:0e:
93:1f:fa:f1:99:e1:53:ba:b4:c7:d8:5b:5c:75:96:
cd:22:7d:0b:46:16:74:2c:1c:db:4f:bd:9c:83:60:
1f:51:4d:7f:41:c5:fc:e4:34:8b:d9:be:2e:81:58:
cc:32:70:99:29:fe:e6:00:ec:c2:69:f2:ed:1f:47:
4b:9d:99:f2:4a:cc:d6:08:86:cf:82:c6:11:b7:0e:
67:d0:2e:0d:78:27:60:b9:15:51:d4:cd:69:79:cb:
ab:5c:95:67:ca:cc:69:d6:a1:33:8f:b3:03:f9:2f:
0d:46:30:6c:aa:41:26:4d:2e:14:8c:9b:3f:48:e3:
52:f9:71:f9:06:55:71:91:b6:d3:fa:2e:d6:4c:12:
d3:ae:5a:65:5b:0e:36:c7:c0:fc:9c:39:a6:ee:c2:
d3:e7:cc:5d:a2:f3:c5:77:30:9a:72:90:bb:2d:b4:
a2:31:52:0c:d1:e3:ec:c3:05:be:a5:3c:13:39:29:
57:94:18:48:8a:97:62:89:65:56:e3:a5:0a:80:6d:
c4:dc:57:37:32:e0:9f:30:20:ae:19:e0:07:71:b1:
9c:77:05:a3:8f:fd:26:df:0b:20:14:10:e1:18:17:
a9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:25:7C:F5:40:39:41:C4:61:76:5B:4C:54:2D:0C:59:1B:EE:E9:18
X509v3 Authority Key Identifier:
keyid:F2:45:A2:0D:D7:54:10:2E:B4:C5:AD:AB:E8:FD:F7:C8:F3:0A:F3:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D6M24PGbfcRFKHJ5YxvqZQ7pUHFRpJPTmaYi219ez336/0/F245A20DD754102EB4C5ADABE8FDF7C8F30AF3E8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F245A20DD754102EB4C5ADABE8FDF7C8F30AF3E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6M24PGbfcRFKHJ5YxvqZQ7pUHFRpJPTmaYi219ez336/0/AS28220.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.64.0/22
138.0.100.0/22
168.228.68.0/22
177.137.192.0/20
179.96.192.0/21
179.96.240.0/20
186.193.96.0/20
186.208.208.0/21
186.235.0.0/20
186.251.112.0/21
187.49.192.0/20
187.86.96.0/20
187.87.112.0/20
187.108.64.0/20
187.109.176.0/20
189.45.16.0/20
200.233.80.0/20
201.148.188.0/22
IPv6:
2804:2140::/32
Signature Algorithm: sha256WithRSAEncryption
ab:22:92:0f:de:ea:7f:61:32:c1:06:3d:14:75:f0:b0:f0:98:
bf:68:2b:e7:89:c3:82:72:55:e5:e7:00:23:a1:0f:a1:c3:af:
6d:ea:89:68:0c:7e:eb:71:00:20:11:97:b1:70:11:8b:71:8d:
31:48:cc:58:e3:f4:39:97:94:14:af:27:2b:e2:68:28:c8:88:
d6:f1:77:8f:e0:90:e0:3d:d0:99:37:ad:e2:17:66:ea:b8:ab:
3a:75:fa:7d:f3:54:4e:01:33:f7:34:9f:4c:0e:b1:85:e7:cb:
d1:c2:d6:fe:51:76:5c:29:41:c7:37:f1:ef:64:8e:57:94:29:
12:43:2c:8e:3f:46:ff:7e:64:7b:0f:1a:79:0b:2c:45:c9:5e:
83:e3:f4:1b:93:cc:93:7f:4e:f7:72:f6:45:d3:ce:ce:83:a2:
f9:20:22:16:a8:0e:e5:f9:b7:8a:9f:4b:b0:a6:b3:16:39:bb:
30:01:bd:8f:c0:67:23:a4:41:5b:47:0d:52:17:bf:20:db:42:
fd:a3:bc:fd:68:95:e1:28:f5:25:cd:16:3f:ba:9d:b1:38:46:
3e:31:20:98:0c:d6:90:c8:57:cb:f4:85:23:a6:23:90:e8:b8:
be:7f:4a:23:6c:7a:57:a5:c8:58:a5:18:f4:3c:d6:00:98:00:
99:04:6b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 11:24:25 2025 by rpki-client