Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D6U2kjjrugBhesWJevV2cpkik8XCRhtvtri38riAieLU/0/3230312e3134302e3235322e302f32322d3332203d3e203631383331.roa
File: 3230312e3134302e3235322e302f32322d3332203d3e203631383331.roa (raw, json)
Hash identifier: sCW/oZQ3AF72moVGFCpltL/gP5afzxfBSujsMF4Bfsg=
Subject key identifier: 6F:90:2B:28:85:C1:D1:17:EA:9D:C9:94:C5:22:64:3F:D0:0C:C0:A0
Certificate issuer: /CN=5A2848029237EDE072BF0D27156F239E1FEBEF52
Certificate serial: 0D86544000E33EC679CAB1F73ACB12008A907E56
Authority key identifier: 5A:28:48:02:92:37:ED:E0:72:BF:0D:27:15:6F:23:9E:1F:EB:EF:52
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A2848029237EDE072BF0D27156F239E1FEBEF52.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D6U2kjjrugBhesWJevV2cpkik8XCRhtvtri38riAieLU/0/3230312e3134302e3235322e302f32322d3332203d3e203631383331.roa
Signing time: Tue 19 Nov 2024 20:01:54 +0000
ROA not before: Tue 19 Nov 2024 19:56:54 +0000
ROA not after: Tue 18 Nov 2025 20:01:54 +0000
asID: 61831
IP address blocks: 201.140.252.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:86:54:40:00:e3:3e:c6:79:ca:b1:f7:3a:cb:12:00:8a:90:7e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A2848029237EDE072BF0D27156F239E1FEBEF52
Validity
Not Before: Nov 19 19:56:54 2024 GMT
Not After : Nov 18 20:01:54 2025 GMT
Subject: CN=6F902B2885C1D117EA9DC994C522643FD00CC0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:ca:3b:c6:52:51:71:c2:42:97:eb:e0:d2:
e1:fe:61:72:30:26:de:0b:a5:63:0f:59:a0:86:0e:
bf:31:ae:e1:4f:2e:91:39:df:a2:47:07:e8:de:3d:
03:df:d2:1d:ce:12:a4:65:4e:01:c2:06:47:59:47:
eb:c5:9c:c7:7f:b9:fc:98:ec:05:10:6f:d4:00:1a:
07:a6:bc:c1:0b:10:26:b3:fe:3e:40:73:0b:5c:ae:
96:d0:51:18:09:12:7c:5f:bb:5a:7a:11:c5:42:f2:
2d:2b:0f:b7:f9:8a:27:c4:c5:6b:07:04:e6:0a:55:
f3:fd:d2:54:b7:c5:bf:72:b7:e0:e8:da:e7:1f:c2:
79:0c:15:3d:2f:77:d8:b5:4b:3d:09:e2:64:bf:63:
2c:c1:f2:1e:0c:fb:16:b3:89:65:d8:c6:cd:b4:8a:
cf:da:1b:30:33:89:f5:c6:74:37:fb:ad:3c:d3:3d:
97:7f:1d:2c:93:0d:f5:c0:07:82:da:88:3b:82:16:
b9:23:c0:32:3c:05:b1:a4:05:f4:67:cf:88:f3:b2:
26:5e:cc:ea:22:1a:10:80:6e:7e:92:eb:26:0c:8c:
d3:aa:18:da:4d:da:fa:8b:12:18:2e:fe:98:1d:17:
8b:06:b3:62:cc:0b:3e:37:0c:bf:68:90:9f:98:5a:
79:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:90:2B:28:85:C1:D1:17:EA:9D:C9:94:C5:22:64:3F:D0:0C:C0:A0
X509v3 Authority Key Identifier:
keyid:5A:28:48:02:92:37:ED:E0:72:BF:0D:27:15:6F:23:9E:1F:EB:EF:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D6U2kjjrugBhesWJevV2cpkik8XCRhtvtri38riAieLU/0/5A2848029237EDE072BF0D27156F239E1FEBEF52.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A2848029237EDE072BF0D27156F239E1FEBEF52.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6U2kjjrugBhesWJevV2cpkik8XCRhtvtri38riAieLU/0/3230312e3134302e3235322e302f32322d3332203d3e203631383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.140.252.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:b9:2c:e4:aa:db:8e:86:a1:48:f8:ac:b2:d9:2b:32:18:f3:
ed:1a:e9:57:93:da:49:1c:df:93:44:87:8e:14:ba:cd:6c:1f:
38:01:e4:fe:a7:ec:e5:f8:0d:67:ce:a5:8b:9b:49:b7:a8:2f:
ee:2d:e9:d6:68:ea:0c:6c:92:b1:5e:55:6a:07:55:e6:8a:1d:
af:16:4b:e6:fa:c5:e1:ae:62:3d:e7:59:22:04:8b:29:c9:43:
89:ca:24:ca:a4:63:8d:98:98:12:21:b5:ed:10:2d:e1:39:fb:
ca:f7:e3:5c:37:65:79:91:db:ef:d6:ae:ce:5a:3a:cc:85:83:
cb:86:83:92:55:27:2d:2d:80:8f:3b:bb:e3:d4:8e:d2:b4:e7:
e2:d0:66:7a:84:5e:79:b9:b9:fb:36:48:e4:0a:52:51:92:98:
e1:b6:b6:01:54:46:d1:c1:ea:ea:da:17:fb:00:90:2f:33:08:
26:db:b4:bd:71:60:9b:1c:23:5f:8b:b0:fa:e9:7b:cc:34:21:
ca:d5:f3:55:a0:a4:3e:30:0b:c9:89:06:4d:28:b8:54:ef:82:
6b:d4:91:9b:36:f8:df:fa:61:32:dd:cc:f3:6c:32:be:12:d1:
73:a2:f9:14:e3:05:a3:0a:8d:c1:6e:ee:38:cf:c2:dc:66:af:
f7:2f:26:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:24:47 2025 by rpki-client