Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DTSraUdAWWLhUYX9ud3cynyXH6ZeWcAVC8zcGoFhP9AH/1/323830343a323439633a3a2f33322d3438203d3e20323634323333.roa
File: 323830343a323439633a3a2f33322d3438203d3e20323634323333.roa (raw, json)
Hash identifier: NawnnPEHbMCtTiXRZuqs51ycbe695zSEZpiIfj2SEO8=
Subject key identifier: B9:B9:13:07:FE:CE:AF:36:38:35:A9:87:9B:3F:6B:4C:D9:D4:32:CD
Certificate issuer: /CN=2D59905C3FCA5BDA34D7101B088D80451D026C47
Certificate serial: 65B74EC104CD0093D403991B34627BFDE4517195
Authority key identifier: 2D:59:90:5C:3F:CA:5B:DA:34:D7:10:1B:08:8D:80:45:1D:02:6C:47
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D59905C3FCA5BDA34D7101B088D80451D026C47.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DTSraUdAWWLhUYX9ud3cynyXH6ZeWcAVC8zcGoFhP9AH/1/323830343a323439633a3a2f33322d3438203d3e20323634323333.roa
Signing time: Thu 06 Mar 2025 15:33:22 +0000
ROA not before: Thu 06 Mar 2025 15:28:22 +0000
ROA not after: Thu 05 Mar 2026 15:33:22 +0000
asID: 264233
IP address blocks: 2804:249c::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:b7:4e:c1:04:cd:00:93:d4:03:99:1b:34:62:7b:fd:e4:51:71:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D59905C3FCA5BDA34D7101B088D80451D026C47
Validity
Not Before: Mar 6 15:28:22 2025 GMT
Not After : Mar 5 15:33:22 2026 GMT
Subject: CN=B9B91307FECEAF363835A9879B3F6B4CD9D432CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:92:11:85:68:72:4b:ef:fb:87:d4:72:e0:82:
74:8c:78:52:be:bd:cd:4d:a3:22:ea:f2:29:b0:0b:
33:79:18:d4:83:53:84:bb:ef:57:50:fc:cf:6e:0b:
06:a4:74:2d:30:31:58:2b:c3:7f:45:6a:22:42:8a:
f1:80:c4:24:c9:45:b0:b7:d8:b1:ad:c6:ac:83:cb:
dc:ba:70:ee:3a:f2:d3:57:b1:dd:ee:7e:63:3f:85:
73:e3:bd:92:7d:a4:78:e7:85:34:e2:d1:42:b4:0f:
3b:3e:33:95:f1:eb:c6:27:29:66:02:5d:b7:e6:7c:
83:b7:17:8a:98:f2:f3:ad:98:17:64:6f:a5:c6:27:
20:5c:8f:ed:7d:c2:c2:df:b3:27:16:de:98:f0:5a:
fc:3f:e8:a3:8b:14:db:bd:69:43:4d:7b:84:29:60:
22:ca:af:21:ee:e4:13:eb:21:ed:e9:d7:69:a7:88:
64:9d:8e:01:88:2e:c7:dd:3f:11:9b:86:4b:b0:0a:
8b:f8:55:cf:a0:74:57:88:db:d3:4f:dc:cf:08:78:
aa:61:b1:ae:54:30:59:e4:15:dd:34:70:f4:5a:18:
ea:bd:17:3e:55:de:cf:f0:34:d1:52:0d:e4:d1:c8:
95:b8:56:01:3f:a4:86:df:bd:e3:d1:c5:fa:a1:32:
63:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B9:13:07:FE:CE:AF:36:38:35:A9:87:9B:3F:6B:4C:D9:D4:32:CD
X509v3 Authority Key Identifier:
keyid:2D:59:90:5C:3F:CA:5B:DA:34:D7:10:1B:08:8D:80:45:1D:02:6C:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DTSraUdAWWLhUYX9ud3cynyXH6ZeWcAVC8zcGoFhP9AH/1/2D59905C3FCA5BDA34D7101B088D80451D026C47.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2D59905C3FCA5BDA34D7101B088D80451D026C47.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DTSraUdAWWLhUYX9ud3cynyXH6ZeWcAVC8zcGoFhP9AH/1/323830343a323439633a3a2f33322d3438203d3e20323634323333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:249c::/32
Signature Algorithm: sha256WithRSAEncryption
a0:56:6a:b0:72:65:b9:39:42:ae:f6:98:0e:8b:26:4d:03:aa:
3e:15:53:61:d0:e7:5a:16:47:bb:79:4b:ce:70:ca:d9:4b:bc:
7f:f6:50:f0:d4:4e:b5:ef:a2:6b:5a:db:f1:26:33:d0:ea:0a:
b8:ef:af:f9:1f:60:5d:12:b6:fe:61:32:12:91:11:74:52:c8:
cf:73:6a:15:34:c3:7e:84:09:d4:20:a4:1b:39:8e:cf:52:e6:
cb:98:65:21:f9:d3:76:b1:d3:76:61:46:8b:b1:b6:ed:88:17:
13:8b:61:8c:6c:a9:58:6f:89:0c:fa:96:5d:d5:66:f1:e8:33:
b5:70:44:58:73:e5:6b:12:a3:cb:b1:b9:db:35:59:d0:e7:71:
26:78:a3:71:c1:28:30:5c:1d:14:34:60:5c:96:0f:2b:8a:dd:
44:99:3d:54:88:6e:71:4a:f7:50:eb:ab:92:f3:e8:4d:8c:7d:
65:1c:b5:11:ee:3e:37:ad:e5:c9:7c:99:3e:19:23:e1:b2:20:
5b:87:17:7e:27:ad:20:2e:2c:0b:d8:bc:67:7f:55:3b:b4:34:
26:97:b4:ae:33:82:4b:9c:59:77:25:6e:cb:e8:50:3d:61:70:
b7:32:62:07:6b:37:b2:4f:bf:19:90:90:d1:51:7e:0c:02:43:
0a:55:3f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:18:28 2025 by rpki-client