Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D73FTEoPCQqsr4u17e8bRN4cA5puL1XMHyQzTJgNqf18/1/34352e352e3134302e302f32322d3234203d3e20323639363333.roa
File: 34352e352e3134302e302f32322d3234203d3e20323639363333.roa (raw, json)
Hash identifier: 2cC/YxKpa5WWk6d7ou04Ap7pZQ0ddMCWt1Zp5+Bkf9I=
Subject key identifier: 5F:42:35:C7:AF:0F:44:EC:85:A2:DB:1C:85:8B:47:C9:3A:35:83:55
Certificate issuer: /CN=23A710552D56A7337CB18A7C931774ED1B1B6467
Certificate serial: 68FF3FBAFF59F9AF757BFAC35D821285746E0BB1
Authority key identifier: 23:A7:10:55:2D:56:A7:33:7C:B1:8A:7C:93:17:74:ED:1B:1B:64:67
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23A710552D56A7337CB18A7C931774ED1B1B6467.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D73FTEoPCQqsr4u17e8bRN4cA5puL1XMHyQzTJgNqf18/1/34352e352e3134302e302f32322d3234203d3e20323639363333.roa
Signing time: Thu 06 Mar 2025 18:07:56 +0000
ROA not before: Thu 06 Mar 2025 18:02:56 +0000
ROA not after: Thu 05 Mar 2026 18:07:56 +0000
asID: 269633
IP address blocks: 45.5.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:ff:3f:ba:ff:59:f9:af:75:7b:fa:c3:5d:82:12:85:74:6e:0b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23A710552D56A7337CB18A7C931774ED1B1B6467
Validity
Not Before: Mar 6 18:02:56 2025 GMT
Not After : Mar 5 18:07:56 2026 GMT
Subject: CN=5F4235C7AF0F44EC85A2DB1C858B47C93A358355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:83:0d:05:b0:6d:c8:ff:d1:21:ce:dc:12:31:
2d:58:a0:93:9d:87:62:0f:73:64:40:da:18:db:52:
7f:69:a5:52:d5:87:75:46:5d:c4:e2:3f:4f:19:a2:
e7:be:bf:e4:f5:65:b7:7f:4b:04:6b:2a:80:4a:12:
fd:98:47:6c:33:5f:09:a7:e9:a8:fb:7c:13:88:cc:
96:87:9a:bd:41:1f:43:b8:62:bc:41:d1:79:f7:f5:
1d:7c:5c:e0:97:7a:4c:b0:2b:5d:9c:69:9f:7e:4b:
86:25:3b:8c:79:0e:aa:96:df:64:29:52:b8:96:26:
0c:45:51:15:25:87:1b:a6:f3:6a:cf:09:12:00:eb:
7f:c3:d8:f3:d9:f5:05:69:ff:a1:60:a9:40:fe:31:
da:65:57:3f:21:84:93:e4:e9:20:b3:c0:d9:03:2b:
ad:e7:e0:d4:73:af:9d:ce:75:57:71:8c:5d:91:eb:
56:85:00:63:9a:8b:a6:c9:e0:ee:4e:b0:96:e2:f6:
03:33:84:ef:12:fb:ae:cc:80:eb:4d:76:eb:04:b0:
50:4d:db:98:5e:59:7a:13:b2:bd:3b:5c:48:5c:72:
a1:b9:0b:32:b8:77:c6:8d:ae:6e:af:3b:18:cd:cd:
f9:2c:e3:cb:1f:d8:b4:3f:bd:6a:c0:a4:c5:d6:cb:
ca:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:42:35:C7:AF:0F:44:EC:85:A2:DB:1C:85:8B:47:C9:3A:35:83:55
X509v3 Authority Key Identifier:
keyid:23:A7:10:55:2D:56:A7:33:7C:B1:8A:7C:93:17:74:ED:1B:1B:64:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D73FTEoPCQqsr4u17e8bRN4cA5puL1XMHyQzTJgNqf18/1/23A710552D56A7337CB18A7C931774ED1B1B6467.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23A710552D56A7337CB18A7C931774ED1B1B6467.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D73FTEoPCQqsr4u17e8bRN4cA5puL1XMHyQzTJgNqf18/1/34352e352e3134302e302f32322d3234203d3e20323639363333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.5.140.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:eb:98:e3:d4:4d:ea:ab:9b:ab:e4:4c:e0:0a:94:1f:04:83:
1a:e9:91:0f:f3:6d:0c:16:0a:b7:25:f1:62:3e:fe:80:10:a5:
d2:d8:7c:a0:90:07:12:ef:df:83:6e:de:28:66:21:55:51:21:
d3:a4:ba:92:3a:aa:78:09:c5:26:e7:e7:e6:16:ef:65:b6:72:
75:01:1d:de:f4:7b:e6:45:94:f1:65:37:87:8c:03:ca:2d:53:
92:d4:fe:13:a9:a8:0b:4a:30:86:7d:56:79:ca:60:d0:1b:f9:
a2:63:a1:0b:23:dd:25:7c:5b:a2:5f:6e:e7:23:0e:29:b0:d6:
e8:b6:d0:21:41:f5:b7:b9:97:50:fc:06:c9:37:b7:cc:40:52:
22:5b:ae:8d:12:f5:d9:ef:14:5f:6d:e5:b4:b1:eb:ba:9c:31:
fc:5c:67:7a:26:f6:f1:d8:82:98:2b:41:0c:01:b4:3b:5b:5e:
73:9c:3c:88:14:22:f8:8e:ee:ba:25:8f:59:7b:e3:6c:30:41:
7e:c8:21:a4:e4:e9:ce:18:1e:72:14:41:df:96:de:6d:16:9f:
0a:ee:cf:be:bd:ed:62:cc:09:ae:97:78:e8:e6:e9:20:5e:8f:
d8:6a:d9:c7:4e:c9:a7:5c:3c:9c:b2:ef:5b:6b:d8:60:85:15:
ec:03:d9:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:53:09 2025 by rpki-client