Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DE9Y8HDoRCCXDmoqkYt2z2jw9cfuVgzzBc2uYoV9PZMa/0/34352e3139312e3133322e302f32322d3234203d3e20323639363732.roa
File: 34352e3139312e3133322e302f32322d3234203d3e20323639363732.roa (raw, json)
Hash identifier: nfoNs+L6hUcu/vUUnZlOg7Dp+nNHqd5mGfOmJVxxHxk=
Subject key identifier: 97:3B:61:67:88:C2:2B:59:B7:9C:AC:DE:4E:87:4D:D5:88:D7:54:5F
Certificate issuer: /CN=1FB4ECE4CB579B6CA9CD1EDCFDD71D771AEC14D2
Certificate serial: 27951339BA7878ABD89CFBE57ED8E8D45176A3A9
Authority key identifier: 1F:B4:EC:E4:CB:57:9B:6C:A9:CD:1E:DC:FD:D7:1D:77:1A:EC:14:D2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1FB4ECE4CB579B6CA9CD1EDCFDD71D771AEC14D2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DE9Y8HDoRCCXDmoqkYt2z2jw9cfuVgzzBc2uYoV9PZMa/0/34352e3139312e3133322e302f32322d3234203d3e20323639363732.roa
Signing time: Mon 10 Feb 2025 17:26:09 +0000
ROA not before: Mon 10 Feb 2025 17:21:09 +0000
ROA not after: Mon 09 Feb 2026 17:26:09 +0000
asID: 269672
IP address blocks: 45.191.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:95:13:39:ba:78:78:ab:d8:9c:fb:e5:7e:d8:e8:d4:51:76:a3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1FB4ECE4CB579B6CA9CD1EDCFDD71D771AEC14D2
Validity
Not Before: Feb 10 17:21:09 2025 GMT
Not After : Feb 9 17:26:09 2026 GMT
Subject: CN=973B616788C22B59B79CACDE4E874DD588D7545F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:db:08:32:32:02:36:98:84:db:26:cf:5b:
12:05:4a:ec:c2:01:d9:a5:ae:02:0f:5a:69:c9:fb:
31:9a:b2:b9:a5:1a:6e:df:b6:c7:5e:97:8e:39:87:
66:6e:60:1d:73:68:40:a6:ca:68:05:83:b0:82:3d:
75:4f:d7:b4:2b:42:28:b3:46:cd:5e:8a:d3:d4:0c:
45:83:8b:b8:57:01:06:23:25:18:cb:1b:02:ce:9a:
31:31:f9:57:9b:d9:63:14:da:c1:53:36:9b:e2:db:
9f:08:67:e8:cc:2c:0b:d3:c0:11:05:53:1c:aa:37:
9d:36:37:c1:a5:de:c8:70:86:e9:73:85:1e:cd:eb:
91:71:4e:f6:fe:f9:e0:5d:b2:6e:bb:2a:39:f0:e0:
5d:c5:31:f0:7f:03:01:c9:78:26:ff:b1:e3:ad:d0:
93:74:d2:fe:87:29:db:0e:7c:2f:88:03:3f:e2:d7:
59:15:8c:d7:dc:1a:ca:fd:ac:48:1d:86:86:cb:25:
fc:db:4d:a7:60:bb:3b:a7:2d:df:67:ce:32:2c:1d:
5c:20:05:1b:3e:ee:6c:dc:7b:a5:84:5b:d7:d1:79:
24:ed:bf:77:b7:d8:50:7a:d1:6f:9f:fa:fe:2b:f3:
02:bd:e4:0c:23:3e:3d:08:12:74:25:90:56:81:31:
ab:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3B:61:67:88:C2:2B:59:B7:9C:AC:DE:4E:87:4D:D5:88:D7:54:5F
X509v3 Authority Key Identifier:
keyid:1F:B4:EC:E4:CB:57:9B:6C:A9:CD:1E:DC:FD:D7:1D:77:1A:EC:14:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DE9Y8HDoRCCXDmoqkYt2z2jw9cfuVgzzBc2uYoV9PZMa/0/1FB4ECE4CB579B6CA9CD1EDCFDD71D771AEC14D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1FB4ECE4CB579B6CA9CD1EDCFDD71D771AEC14D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DE9Y8HDoRCCXDmoqkYt2z2jw9cfuVgzzBc2uYoV9PZMa/0/34352e3139312e3133322e302f32322d3234203d3e20323639363732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.191.132.0/22
Signature Algorithm: sha256WithRSAEncryption
54:5d:f8:c9:be:cf:c3:ea:b4:5f:65:dc:d2:92:fa:1b:97:2c:
c2:0d:2a:bb:77:7e:57:9f:10:7e:47:0f:c7:ac:75:ec:79:6d:
65:9c:9b:0f:bd:96:58:84:b5:77:78:76:b2:aa:98:45:9e:01:
42:9e:d1:17:a7:c4:d6:fb:54:e7:55:b4:5c:6d:5f:9b:48:a8:
c9:1e:bf:53:1c:ff:b3:bf:51:0b:e8:bd:54:44:f9:6a:23:ac:
c8:d6:3f:0e:8e:e5:cf:62:71:47:30:5d:b1:0d:48:47:57:f6:
11:57:6c:60:bd:c9:52:46:ef:b0:44:c3:d0:0b:5c:ab:24:d2:
5c:ec:a5:98:69:c9:d5:9e:b5:72:78:a6:b0:e6:e0:bc:fc:4f:
21:3b:64:03:ee:7e:4c:6f:8e:1f:0f:dc:08:e9:b0:25:a8:81:
2d:d6:ed:c5:a8:b1:90:39:42:c7:cc:f9:83:a1:1b:a9:96:79:
aa:9b:79:ff:fe:2b:ef:fa:a0:6e:e7:76:c9:c6:ba:81:8a:62:
4a:72:67:e5:04:18:11:6d:87:d1:f3:a2:25:a3:9b:c3:e9:66:
cb:e9:e8:a1:bd:d5:32:4d:79:42:c6:48:6b:3b:c6:b2:cb:d2:
49:e5:cf:e7:04:35:d5:01:61:f4:ff:bf:e3:f5:2a:0f:41:96:
5d:9d:04:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:47:58 2025 by rpki-client