Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/3138372e39352e33322e302f32302d3234203d3e203238323630.roa
File: 3138372e39352e33322e302f32302d3234203d3e203238323630.roa (raw, json)
Hash identifier: UYnkn9hDxmXyf/3CYb9whQipVCNKlD+pG9V53Pxsaic=
Subject key identifier: AC:16:9D:15:68:7D:26:6C:0E:D9:F5:21:4E:D8:81:4B:0B:6F:BC:F5
Certificate issuer: /CN=EDDE9456DFB0E0B6141479B36FE32CA0BF98688B
Certificate serial: 3164F672C66E48B65E7E3AF6C4091AFB1337E3A4
Authority key identifier: ED:DE:94:56:DF:B0:E0:B6:14:14:79:B3:6F:E3:2C:A0:BF:98:68:8B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EDDE9456DFB0E0B6141479B36FE32CA0BF98688B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/3138372e39352e33322e302f32302d3234203d3e203238323630.roa
Signing time: Mon 27 Jan 2025 20:49:00 +0000
ROA not before: Mon 27 Jan 2025 20:44:00 +0000
ROA not after: Mon 26 Jan 2026 20:49:00 +0000
asID: 28260
IP address blocks: 187.95.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:64:f6:72:c6:6e:48:b6:5e:7e:3a:f6:c4:09:1a:fb:13:37:e3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDDE9456DFB0E0B6141479B36FE32CA0BF98688B
Validity
Not Before: Jan 27 20:44:00 2025 GMT
Not After : Jan 26 20:49:00 2026 GMT
Subject: CN=AC169D15687D266C0ED9F5214ED8814B0B6FBCF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f8:69:a2:3b:be:ce:89:04:b1:bd:5a:40:a7:
98:e1:79:67:0c:74:6a:4a:44:c9:70:cb:e6:96:56:
e2:1e:78:e6:7d:01:98:d9:1e:b4:18:53:9d:95:2b:
5a:13:d7:21:25:8d:e0:ed:0f:85:f1:84:e6:8f:ab:
b8:3a:5b:14:6d:0b:b1:7d:be:57:d0:47:39:7e:b1:
99:96:61:4a:fc:79:e7:b5:64:0a:9d:d4:52:fd:48:
89:d2:06:bb:8f:fe:09:7e:83:44:da:15:3b:f4:a4:
6b:de:8a:30:61:21:90:fc:b2:54:f2:9b:6d:c8:9e:
ab:3c:c0:ef:23:e0:b3:d9:e1:5e:0d:1c:35:84:79:
e5:cc:28:27:ef:10:2e:66:d1:77:01:7c:e4:3b:0c:
f1:83:ad:02:ec:f2:2d:cd:2c:f4:c0:31:8e:37:52:
3b:e3:6e:c3:1d:c2:58:91:83:48:f3:2d:d7:75:06:
a2:04:cf:85:fc:4c:c3:e9:d5:37:1d:b1:a8:c9:6c:
33:fb:1c:14:16:d8:e4:3f:db:0a:e0:72:0d:c9:c6:
0b:06:e6:9e:91:7a:97:2c:17:68:8a:66:3b:ed:85:
4b:a0:30:03:d3:80:73:97:c6:2d:48:1d:05:42:b2:
8e:92:ba:4b:c3:67:db:9e:e2:69:53:b7:22:42:f4:
64:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:16:9D:15:68:7D:26:6C:0E:D9:F5:21:4E:D8:81:4B:0B:6F:BC:F5
X509v3 Authority Key Identifier:
keyid:ED:DE:94:56:DF:B0:E0:B6:14:14:79:B3:6F:E3:2C:A0:BF:98:68:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/EDDE9456DFB0E0B6141479B36FE32CA0BF98688B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EDDE9456DFB0E0B6141479B36FE32CA0BF98688B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/3138372e39352e33322e302f32302d3234203d3e203238323630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.95.32.0/20
Signature Algorithm: sha256WithRSAEncryption
a6:78:71:77:63:95:a7:1d:7c:b8:b5:81:60:9a:6f:92:c6:de:
6a:9b:8a:fc:13:38:da:e7:bf:7d:4a:ed:43:29:ec:66:96:57:
a4:18:25:03:46:a0:00:38:a3:29:ff:89:da:91:85:5a:95:d5:
3e:ae:09:88:e5:dd:16:ab:6f:d2:24:16:a8:77:68:96:5c:5c:
f6:61:48:5d:f2:6b:b0:93:1e:22:5b:f8:ed:44:78:bf:98:4f:
0a:6c:b4:6f:8d:50:7a:90:c9:e4:d9:1d:5b:a0:e8:c2:e0:1e:
92:20:fa:3d:04:65:67:5e:6e:5f:33:78:99:c1:45:26:2b:51:
f4:c6:71:50:22:ca:1b:4c:24:a2:23:53:2b:42:40:f9:de:2f:
03:c5:4c:c3:4f:de:b0:87:ac:1d:54:b7:f1:28:37:7d:02:c3:
9f:45:cb:88:55:8e:84:f3:11:ec:02:17:86:1f:d1:57:f5:05:
94:4a:37:b1:8a:e4:2f:df:a6:e7:e4:20:8e:43:33:39:51:1f:
a5:df:12:58:96:b3:3b:95:ab:2f:ae:9e:05:3d:3f:95:4b:04:
b6:8f:df:b9:2f:83:8b:a9:07:e5:e1:f8:fe:a1:92:42:35:5e:
43:fa:84:0e:90:ef:4b:4a:b1:70:6f:38:08:dc:93:9f:3d:0f:
e4:d5:d4:6c
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUMWT2csZuSLZefjr2xAka+xM346QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRURERTk0NTZERkIwRTBCNjE0MTQ3OUIzNkZFMzJDQTBC
Rjk4Njg4QjAeFw0yNTAxMjcyMDQ0MDBaFw0yNjAxMjYyMDQ5MDBaMDMxMTAvBgNV
BAMTKEFDMTY5RDE1Njg3RDI2NkMwRUQ5RjUyMTRFRDg4MTRCMEI2RkJDRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1+GmiO77OiQSxvVpAp5jheWcM
dGpKRMlwy+aWVuIeeOZ9AZjZHrQYU52VK1oT1yEljeDtD4XxhOaPq7g6WxRtC7F9
vlfQRzl+sZmWYUr8eee1ZAqd1FL9SInSBruP/gl+g0TaFTv0pGveijBhIZD8slTy
m23Inqs8wO8j4LPZ4V4NHDWEeeXMKCfvEC5m0XcBfOQ7DPGDrQLs8i3NLPTAMY43
UjvjbsMdwliRg0jzLdd1BqIEz4X8TMPp1TcdsajJbDP7HBQW2OQ/2wrgcg3JxgsG
5p6RepcsF2iKZjvthUugMAPTgHOXxi1IHQVCso6SukvDZ9ue4mlTtyJC9GQLAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUrBadFWh9JmwO2fUhTtiBSwtvvPUwHwYDVR0j
BBgwFoAU7d6UVt+w4LYUFHmzb+MsoL+YaIswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRDgxYWlYcERBdjVXQm1nRThvRXBmb3JkakdQNjJvdG4yZkhyaGFMNGNn
YnkvMC9FRERFOTQ1NkRGQjBFMEI2MTQxNDc5QjM2RkUzMkNBMEJGOTg2ODhCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0VEREU5NDU2REZCMEUwQjYx
NDE0NzlCMzZGRTMyQ0EwQkY5ODY4OEIuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0Q4MWFpWHBEQXY1V0JtZ0U4b0VwZm9yZGpHUDYyb3RuMmZIcmhhTDRjZ2J5LzAv
MzEzODM3MmUzOTM1MmUzMzMyMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzODMy
MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEBLtfIDANBgkqhkiG9w0BAQsFAAOCAQEApnhxd2OVpx18
uLWBYJpvksbeapuK/BM42ue/fUrtQynsZpZXpBglA0agADijKf+J2pGFWpXVPq4J
iOXdFqtv0iQWqHdollxc9mFIXfJrsJMeIlv47UR4v5hPCmy0b41QepDJ5NkdW6Do
wuAekiD6PQRlZ15uXzN4mcFFJitR9MZxUCLKG0wkoiNTK0JA+d4vA8VMw0/esIes
HVS38Sg3fQLDn0XLiFWOhPMR7AIXhh/RV/UFlEo3sYrkL9+m5+QgjkMzOVEfpd8S
WJazO5WrL66eBT0/lUsEto/fuS+Di6kH5eH4/qGSQjVeQ/qEDpDvS0qxcG84CNyT
nz0P5NXUbA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 19:01:17 2025 by rpki-client