Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DSijPWYF5ucADh65ivNsY8eykeUY7Pvt3xFVc1dCLZGC/0/34352e3233332e3232302e302f32322d3234203d3e20323733333039.roa
File: 34352e3233332e3232302e302f32322d3234203d3e20323733333039.roa (raw, json)
Hash identifier: 5tc1Y+Q18oBWFd6UPb9+NWnjs4Tz3OhkADZZ1F8ExOc=
Subject key identifier: 64:E3:E1:E4:90:86:8F:DC:79:38:C7:E7:65:4A:3C:14:67:BB:B6:38
Certificate issuer: /CN=11C40A54AEA8862C23E5838BA28E2EC6317D1116
Certificate serial: 67FF004FB9197C4397A4F424B3370EE852E5BB4E
Authority key identifier: 11:C4:0A:54:AE:A8:86:2C:23:E5:83:8B:A2:8E:2E:C6:31:7D:11:16
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11C40A54AEA8862C23E5838BA28E2EC6317D1116.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DSijPWYF5ucADh65ivNsY8eykeUY7Pvt3xFVc1dCLZGC/0/34352e3233332e3232302e302f32322d3234203d3e20323733333039.roa
Signing time: Thu 09 May 2024 14:46:50 +0000
ROA not before: Thu 09 May 2024 14:41:50 +0000
ROA not after: Thu 08 May 2025 14:46:50 +0000
asID: 273309
IP address blocks: 45.233.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ff:00:4f:b9:19:7c:43:97:a4:f4:24:b3:37:0e:e8:52:e5:bb:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C40A54AEA8862C23E5838BA28E2EC6317D1116
Validity
Not Before: May 9 14:41:50 2024 GMT
Not After : May 8 14:46:50 2025 GMT
Subject: CN=64E3E1E490868FDC7938C7E7654A3C1467BBB638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fe:7a:81:c0:a6:dc:7d:15:54:4d:e7:af:91:
99:c8:9f:c3:86:43:1a:f2:b9:c9:ba:a9:b1:3a:6f:
1e:f1:2d:7c:7d:88:43:1e:e3:c1:7b:97:5d:19:64:
1e:8e:f2:c8:d4:8d:09:c4:36:e9:d7:84:f7:97:96:
23:81:cf:01:e1:4d:e9:d5:7b:0b:46:c1:16:65:d4:
f5:22:7f:d1:c0:74:83:e1:81:3c:7e:06:4c:8c:bc:
48:31:a1:96:06:9d:08:10:21:ec:42:7a:e1:d1:56:
d0:d9:a6:42:6a:e7:cb:f7:50:90:6a:08:c0:8c:5e:
aa:0a:f5:94:08:84:9c:5b:86:1d:b3:ea:67:59:e8:
76:9c:db:72:37:d1:4c:bb:0a:b5:60:e4:6b:ae:18:
c3:db:ea:06:96:9e:b9:b0:4e:d6:20:83:97:a4:c3:
40:67:ac:f6:33:30:65:86:8f:fa:a4:d7:05:06:c0:
7a:98:e0:7f:0c:b6:da:30:11:34:7f:40:07:2c:fe:
f3:8f:22:6b:f5:13:c8:eb:2c:0b:8c:2b:f1:84:b1:
f6:46:8f:c4:ce:1f:08:70:43:d3:f9:39:d4:3c:fb:
64:ca:81:33:1f:89:fb:5e:91:73:a4:b8:a3:a4:1f:
46:d0:8f:c6:d3:8d:c0:28:14:19:06:be:95:2f:1d:
25:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E3:E1:E4:90:86:8F:DC:79:38:C7:E7:65:4A:3C:14:67:BB:B6:38
X509v3 Authority Key Identifier:
keyid:11:C4:0A:54:AE:A8:86:2C:23:E5:83:8B:A2:8E:2E:C6:31:7D:11:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DSijPWYF5ucADh65ivNsY8eykeUY7Pvt3xFVc1dCLZGC/0/11C40A54AEA8862C23E5838BA28E2EC6317D1116.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11C40A54AEA8862C23E5838BA28E2EC6317D1116.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DSijPWYF5ucADh65ivNsY8eykeUY7Pvt3xFVc1dCLZGC/0/34352e3233332e3232302e302f32322d3234203d3e20323733333039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.233.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:b7:52:36:a7:e7:56:ee:b7:0b:37:22:d9:eb:dd:2e:69:d5:
9a:74:a0:68:be:75:ec:3b:59:4e:00:90:85:53:5f:c4:87:fb:
d7:de:ef:8b:8d:c6:ed:51:a9:33:07:c0:98:41:b2:b6:f7:0b:
0a:ae:66:9e:0c:45:91:c2:44:fc:a8:93:ab:85:0e:fe:2c:64:
c5:78:fa:1e:74:1f:9a:12:09:31:26:02:f9:f9:54:e2:ab:4d:
c5:3d:79:ce:5a:b5:24:01:00:0d:10:ad:6d:fa:e9:e0:42:82:
bd:1c:cc:aa:95:44:e6:bc:96:f4:cd:30:bf:c1:50:4a:5d:fc:
88:b7:24:ac:e9:95:63:ec:3d:03:ff:63:c6:81:82:b0:63:65:
2f:d6:c2:ea:2d:1a:73:a5:20:7e:5b:df:3d:72:14:3c:d5:08:
18:fc:7a:7d:1a:37:58:fe:59:6c:83:a6:22:69:1d:12:9e:a4:
b4:5d:60:8f:f3:37:9c:5d:bd:6b:9e:c1:cf:dd:0a:c8:3a:cb:
35:ec:80:31:40:26:fd:cd:c1:de:1c:a3:24:37:f2:96:8c:02:
68:16:ca:6b:0e:cd:ff:09:f2:71:d9:ad:d4:a1:8d:13:40:d1:
24:6a:69:1b:09:39:5e:df:d7:b4:5b:dd:03:9b:61:f6:7f:b1:
a4:15:45:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:36:57 2025 by rpki-client