Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131332e302f32342d3234203d3e20323733373838.roa
File: 3137302e3233332e3131332e302f32342d3234203d3e20323733373838.roa (raw, json)
Hash identifier: ssuLAytq/OHz9ywB7G0F/3NjIxPtlXCrc4g55U9IvkI=
Subject key identifier: 79:12:6A:2E:E9:5A:15:7D:07:0B:CA:16:75:74:8B:FA:04:15:C9:C4
Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2
Certificate serial: 700C1A87560237D47D6A8ED0842E835F90C81DBF
Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131332e302f32342d3234203d3e20323733373838.roa
Signing time: Thu 06 Mar 2025 14:08:25 +0000
ROA not before: Thu 06 Mar 2025 14:03:25 +0000
ROA not after: Thu 05 Mar 2026 14:08:25 +0000
asID: 273788
IP address blocks: 170.233.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl
rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 16 Apr 2025 15:15:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:0c:1a:87:56:02:37:d4:7d:6a:8e:d0:84:2e:83:5f:90:c8:1d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2
Validity
Not Before: Mar 6 14:03:25 2025 GMT
Not After : Mar 5 14:08:25 2026 GMT
Subject: CN=79126A2EE95A157D070BCA1675748BFA0415C9C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:f4:70:c6:c3:f0:3b:fc:0c:6a:e1:44:51:
a9:80:96:af:90:fe:0b:35:3e:55:cb:fe:79:e5:21:
f6:f1:07:03:37:8f:6e:85:5f:d5:42:3a:46:ff:2f:
ad:e2:ed:df:54:ed:32:d2:dc:ff:5f:94:5b:ef:be:
47:bd:33:61:4a:c5:01:44:82:4a:26:d0:0a:84:48:
0a:fb:b6:d3:c7:9c:e9:eb:3b:76:4e:96:56:51:9a:
01:77:e8:7f:5b:99:9f:59:8b:63:35:c9:25:2b:8e:
c1:1a:cd:1b:cb:88:cc:3c:a8:4b:38:f7:17:1a:0d:
00:30:a2:c1:18:d0:79:26:df:42:9e:9d:d7:ed:a3:
22:c0:4d:cc:e9:9c:32:80:db:3a:d7:2e:f4:22:7d:
ca:12:ae:3d:80:04:91:3b:9b:b7:6a:e0:60:3f:4d:
45:32:b9:41:82:e9:de:78:6e:48:d1:b9:fe:3c:ca:
4d:86:cc:14:fb:92:fb:f7:6f:90:9a:e8:7d:dd:20:
5c:97:39:dd:e4:50:3f:ab:c5:55:3d:5b:35:e3:c2:
0c:c2:eb:45:e2:a2:4c:fc:41:16:09:48:40:63:b1:
5f:e3:40:e3:3f:b4:f5:b0:ed:a6:2d:f5:77:cb:4d:
6a:9b:c3:fc:38:19:a5:da:f0:55:a4:11:db:ec:ab:
51:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:12:6A:2E:E9:5A:15:7D:07:0B:CA:16:75:74:8B:FA:04:15:C9:C4
X509v3 Authority Key Identifier:
keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131332e302f32342d3234203d3e20323733373838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:24:d3:ee:2d:08:15:37:68:f1:07:71:54:86:b7:39:95:93:
95:28:b9:37:97:9f:f0:83:85:ee:d1:08:8d:d4:a1:41:d5:1f:
01:4f:f8:e9:ec:fc:43:08:84:92:5f:84:b3:b8:f3:f5:7a:b4:
5b:02:73:dc:e7:09:fc:15:41:ae:d7:88:97:c5:81:85:0f:d8:
29:84:3a:2b:8e:2a:25:37:26:db:7c:50:1e:ce:20:45:34:62:
d7:9a:95:9a:7c:a8:68:b1:1a:96:d4:6f:38:18:84:2e:f3:11:
84:8d:f0:61:ea:14:67:5c:a2:86:d7:8d:ee:fa:84:e8:88:ad:
0c:89:90:95:4b:63:dd:90:d3:6e:35:c9:94:03:fc:0d:67:fd:
d4:a2:ba:f6:e8:b3:52:fc:4c:b2:82:34:5b:7d:1f:ba:b2:c1:
7a:e8:d3:14:7f:5e:85:8c:d9:db:f3:08:1e:47:da:42:ad:01:
42:e7:9c:ac:7c:20:ba:a3:e1:d6:36:23:b3:ea:19:ad:a0:ce:
3c:0f:e9:a2:b3:05:f0:98:02:73:6b:10:a0:2f:0a:71:16:01:
ac:6a:d8:95:30:55:9c:56:b5:41:49:b4:26:0b:c8:c5:da:cb:
e7:12:86:e5:a6:66:ea:7e:34:b1:0d:dc:a8:32:69:06:ab:2a:
83:b1:3e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 18:05:41 2025 by rpki-client