Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DGQsGVrGfg2kqT4kk57HoJF3ZRZY8kpTbxannzgTuCVw/1/323830343a3161633a3a2f33322d3634203d3e203533313735.roa
File: 323830343a3161633a3a2f33322d3634203d3e203533313735.roa (raw, json)
Hash identifier: hthaHQ1W4Hhi7UR8B+WN+HOaWbENvNu2yu6xV3d/KEc=
Subject key identifier: 97:B8:40:CF:5F:BA:8F:CF:42:7C:DC:72:2C:B6:D6:A9:07:A6:A6:FE
Certificate issuer: /CN=B87E403FD04360E1BA519D841853FF5C9E675A23
Certificate serial: 6A5502BE09FC6EBE2E68CE8E718FFC86FC9B3798
Authority key identifier: B8:7E:40:3F:D0:43:60:E1:BA:51:9D:84:18:53:FF:5C:9E:67:5A:23
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B87E403FD04360E1BA519D841853FF5C9E675A23.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DGQsGVrGfg2kqT4kk57HoJF3ZRZY8kpTbxannzgTuCVw/1/323830343a3161633a3a2f33322d3634203d3e203533313735.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 53175
IP address blocks: 2804:1ac::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:55:02:be:09:fc:6e:be:2e:68:ce:8e:71:8f:fc:86:fc:9b:37:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B87E403FD04360E1BA519D841853FF5C9E675A23
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=97B840CF5FBA8FCF427CDC722CB6D6A907A6A6FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3c:65:36:4d:c7:bc:6e:03:b1:7a:4f:e6:cb:
c9:e3:d0:7c:5a:38:d5:a0:39:eb:63:76:9a:eb:70:
1f:6e:bd:ba:74:c1:7d:23:3f:19:53:c5:bb:ff:ed:
19:d5:d0:a8:e3:14:d3:0d:94:3c:29:13:b9:bb:7c:
74:48:4c:2d:1f:fd:51:fc:7e:68:57:b8:4c:2a:04:
7c:a3:61:11:23:c6:71:07:35:30:dc:ba:16:7e:0d:
bc:76:e4:2d:df:87:c6:2f:37:fa:44:a3:bf:46:1e:
b1:55:a4:42:3c:0f:95:dd:95:a4:4e:42:31:0c:e3:
bd:4c:7e:e2:d2:76:8f:d0:7d:6f:d9:94:6b:68:d9:
1e:8d:12:d2:2d:9e:5c:fc:58:9d:b9:0e:67:62:39:
3d:6d:5b:3b:49:20:96:8a:2f:16:2e:a8:ab:6c:6e:
43:24:c3:14:79:fc:87:cb:e4:61:10:b4:4f:cc:f2:
a7:d0:a8:ec:24:df:42:72:a7:47:87:19:82:70:fc:
c0:57:a8:a2:a9:8b:79:38:b6:e7:da:f7:12:a4:a7:
b7:ca:b8:53:38:61:da:c3:72:ed:38:c1:8a:0e:8d:
bd:bb:90:de:ce:bf:18:39:80:90:06:ad:ea:ad:4b:
a9:78:a7:64:30:6a:37:97:34:e2:b0:d1:2a:90:26:
0a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B8:40:CF:5F:BA:8F:CF:42:7C:DC:72:2C:B6:D6:A9:07:A6:A6:FE
X509v3 Authority Key Identifier:
keyid:B8:7E:40:3F:D0:43:60:E1:BA:51:9D:84:18:53:FF:5C:9E:67:5A:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DGQsGVrGfg2kqT4kk57HoJF3ZRZY8kpTbxannzgTuCVw/1/B87E403FD04360E1BA519D841853FF5C9E675A23.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B87E403FD04360E1BA519D841853FF5C9E675A23.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DGQsGVrGfg2kqT4kk57HoJF3ZRZY8kpTbxannzgTuCVw/1/323830343a3161633a3a2f33322d3634203d3e203533313735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1ac::/32
Signature Algorithm: sha256WithRSAEncryption
2a:d5:3f:7b:6a:20:2a:7a:34:b5:b1:86:3c:28:90:cb:f9:c9:
39:22:3f:ad:47:59:43:91:21:15:f4:2b:e2:b4:24:17:a6:59:
8d:4b:cb:cc:f0:28:0a:0e:15:cd:a8:28:b1:10:08:c1:6a:dd:
ec:75:ba:b9:2a:d8:9a:7c:8d:26:fb:da:b5:f7:c6:3d:79:0d:
d7:3e:5d:8a:8b:de:3f:27:a8:2c:22:6a:24:15:e3:b7:e9:a5:
74:54:fd:03:e2:f5:e6:c5:b7:0a:0f:90:4d:72:b2:42:84:d5:
70:01:0a:23:77:33:78:52:0b:18:2b:70:94:3a:27:04:8b:20:
6e:c6:3d:1d:65:af:1c:c3:06:f7:35:7f:54:42:15:14:31:b1:
18:2b:e3:54:49:cf:b7:8d:59:93:c2:b7:5c:b7:a6:5f:65:d4:
c8:52:6d:9b:dc:53:d1:9b:b6:e1:65:21:06:80:1e:6d:72:66:
91:a3:c2:04:9f:f9:28:ab:fd:ae:6e:75:39:19:ef:56:d3:f0:
b2:7c:5c:e5:79:ec:6b:ad:b8:b3:ff:97:30:0c:b3:90:aa:aa:
52:33:26:d6:f3:76:48:c9:3d:47:4e:de:0a:01:d4:16:4f:e5:
5e:c8:12:57:66:ec:f4:17:2f:0a:a1:53:d7:2e:4c:61:5a:7a:
c1:1b:d2:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:49:26 2025 by rpki-client