Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa
File: 323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa (raw, json)
Hash identifier: Lo2MlJScQN75r6wadofxb3KYG1XJNToPcGPRYHMh4sY=
Subject key identifier: 9D:72:DA:30:AD:26:E9:56:F2:63:A0:36:27:69:2E:C0:EE:30:FE:28
Certificate issuer: /CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA
Certificate serial: 7BB838A39A1616B52FA2399557B3CD8128977E90
Authority key identifier: CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa
Signing time: Mon 24 Mar 2025 20:45:12 +0000
ROA not before: Mon 24 Mar 2025 20:40:12 +0000
ROA not after: Mon 23 Mar 2026 20:45:12 +0000
asID: 267991
IP address blocks: 2804:5654:a000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:b8:38:a3:9a:16:16:b5:2f:a2:39:95:57:b3:cd:81:28:97:7e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA
Validity
Not Before: Mar 24 20:40:12 2025 GMT
Not After : Mar 23 20:45:12 2026 GMT
Subject: CN=9D72DA30AD26E956F263A03627692EC0EE30FE28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8d:4c:da:54:22:7e:ae:35:c6:e6:b4:12:af:
17:85:07:9f:95:90:ef:3e:34:90:73:62:cf:6a:5a:
fe:94:84:93:18:62:2c:77:b8:50:34:8d:b6:9d:65:
d6:54:4d:82:dc:a3:7a:db:7a:19:01:71:02:f7:26:
fe:70:ce:ac:a5:9e:87:c0:2c:06:ea:15:59:a7:12:
bb:32:fa:e3:61:85:74:82:e6:28:21:a7:72:6b:21:
d3:e9:19:f4:af:4a:59:4e:86:db:62:c2:8e:85:1a:
99:18:4f:52:70:39:d4:54:0a:b4:ea:b7:f3:0e:32:
6c:a9:03:45:ce:90:d2:b1:f9:d6:fe:ae:f3:36:6e:
28:95:93:ef:44:56:04:a1:d8:3b:d8:42:d5:4c:07:
91:3d:26:f1:2f:b7:82:85:98:31:a4:a4:6b:31:c3:
e0:08:fa:f9:9e:77:d5:73:ba:6b:f5:9b:49:16:9f:
de:88:67:2a:79:8e:c0:84:77:9e:c7:3a:56:0f:62:
18:47:2c:09:9d:2d:1b:d5:46:df:2e:b3:32:2c:71:
dd:13:1e:de:4b:39:83:17:5c:03:6d:22:b4:79:a5:
d2:df:f0:d0:f8:b4:f0:e0:f0:34:ec:0c:f2:68:e3:
9e:5e:e1:68:1e:2d:f3:57:ed:8a:0b:3c:15:6d:47:
a2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:72:DA:30:AD:26:E9:56:F2:63:A0:36:27:69:2E:C0:EE:30:FE:28
X509v3 Authority Key Identifier:
keyid:CF:24:DC:2A:16:F6:FD:D5:A1:F0:B7:B3:8B:F7:C7:70:7A:E3:BA:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF24DC2A16F6FDD5A1F0B7B38BF7C7707AE3BAAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a613030303a3a2f33362d3336203d3e20323637393931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:5654:a000::/36
Signature Algorithm: sha256WithRSAEncryption
0b:c1:8a:ba:0b:ee:f9:17:77:78:71:57:73:0c:9b:fb:df:34:
95:7b:ab:ca:de:ad:48:00:44:59:9c:83:bf:50:be:f6:6f:b5:
5d:d6:fa:64:79:86:e1:52:da:9f:16:9e:ae:2e:01:a3:dd:aa:
4c:7a:52:85:26:19:29:8c:b5:2e:19:dc:7b:d6:10:02:05:02:
e4:46:16:56:34:c7:98:23:14:3e:e8:91:3c:a2:e5:29:4c:62:
d0:5e:c5:58:3a:e6:ca:fb:1a:39:57:ce:57:5d:bd:5c:08:f5:
6c:ef:1f:f1:3c:d1:0a:c9:17:52:71:ad:f0:cb:6d:2d:58:d8:
b1:11:d7:6c:cf:fc:a8:51:84:33:36:f5:87:b8:bf:20:9a:9c:
37:22:de:08:ef:d2:57:f5:d0:4d:77:46:01:58:fe:f5:92:d7:
0d:cf:ed:80:5f:b9:eb:ca:9b:63:3a:73:b7:a1:6b:00:34:f7:
93:31:27:f6:f9:06:7c:7f:48:1d:e4:f9:99:7e:8b:92:98:98:
54:c9:8b:d0:b8:3f:c6:e6:39:c7:0a:11:0d:bc:98:83:2d:f8:
61:f0:2b:8f:05:5f:8e:3d:54:25:3b:59:a1:f0:3b:bc:67:fb:
ff:ba:25:46:da:c8:6b:b0:c7:c8:f9:09:33:c7:d5:9d:e1:9b:
4d:23:43:23
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUe7g4o5oWFrUvojmVV7PNgSiXfpAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0YyNERDMkExNkY2RkRENUExRjBCN0IzOEJGN0M3NzA3
QUUzQkFBQTAeFw0yNTAzMjQyMDQwMTJaFw0yNjAzMjMyMDQ1MTJaMDMxMTAvBgNV
BAMTKDlENzJEQTMwQUQyNkU5NTZGMjYzQTAzNjI3NjkyRUMwRUUzMEZFMjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmjUzaVCJ+rjXG5rQSrxeFB5+V
kO8+NJBzYs9qWv6UhJMYYix3uFA0jbadZdZUTYLco3rbehkBcQL3Jv5wzqylnofA
LAbqFVmnErsy+uNhhXSC5ighp3JrIdPpGfSvSllOhttiwo6FGpkYT1JwOdRUCrTq
t/MOMmypA0XOkNKx+db+rvM2biiVk+9EVgSh2DvYQtVMB5E9JvEvt4KFmDGkpGsx
w+AI+vmed9Vzumv1m0kWn96IZyp5jsCEd57HOlYPYhhHLAmdLRvVRt8uszIscd0T
Ht5LOYMXXANtIrR5pdLf8ND4tPDg8DTsDPJo455e4WgeLfNX7YoLPBVtR6J5AgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUnXLaMK0m6VbyY6A2J2kuwO4w/igwHwYDVR0j
BBgwFoAUzyTcKhb2/dWh8Lezi/fHcHrjuqowDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRDhUVVNjMkxUcEhnTHRhQmFvMTlZVFFSN0tFM2ZrSDRhRFlUQzJpMTF5
Mk4vMC9DRjI0REMyQTE2RjZGREQ1QTFGMEI3QjM4QkY3Qzc3MDdBRTNCQUFBLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NGMjREQzJBMTZGNkZERDVB
MUYwQjdCMzhCRjdDNzcwN0FFM0JBQUEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0Q4VFVTYzJMVHBIZ0x0YUJhbzE5WVRRUjdLRTNma0g0YURZVEMyaTExeTJOLzAv
MzIzODMwMzQzYTM1MzYzNTM0M2E2MTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNk
M2UyMDMyMzYzNzM5MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCgEVlSgMA0GCSqGSIb3DQEBCwUA
A4IBAQALwYq6C+75F3d4cVdzDJv73zSVe6vK3q1IAERZnIO/UL72b7Vd1vpkeYbh
UtqfFp6uLgGj3apMelKFJhkpjLUuGdx71hACBQLkRhZWNMeYIxQ+6JE8ouUpTGLQ
XsVYOubK+xo5V85XXb1cCPVs7x/xPNEKyRdSca3wy20tWNixEddsz/yoUYQzNvWH
uL8gmpw3It4I79JX9dBNd0YBWP71ktcNz+2AX7nryptjOnO3oWsANPeTMSf2+QZ8
f0gd5PmZfouSmJhUyYvQuD/G5jnHChENvJiDLfhh8CuPBV+OPVQlO1mh8Du8Z/v/
uiVG2shrsMfI+Qkzx9Wd4ZtNI0Mj
-----END CERTIFICATE-----
Generated at Mon Apr 7 10:55:47 2025 by rpki-client