Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/323830343a343a3a2f33322d3438203d3e203238363637.roa
File: 323830343a343a3a2f33322d3438203d3e203238363637.roa (raw, json)
Hash identifier: 5IP76zojZXn4vktZsPC1cYNiLjFVzFLro5EzKHTjA0k=
Subject key identifier: 11:CE:8B:46:A2:F5:73:60:79:9A:5A:AF:C1:AD:9A:53:C8:CA:13:2A
Certificate issuer: /CN=9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3
Certificate serial: 203E3D1F0325844E67274641399449C73A3C94C2
Authority key identifier: 9C:0B:4F:E2:8E:0B:B8:DF:CB:32:FF:27:FD:74:EE:DE:F3:63:42:D3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/323830343a343a3a2f33322d3438203d3e203238363637.roa
Signing time: Fri 03 May 2024 20:08:21 +0000
ROA not before: Fri 03 May 2024 20:03:21 +0000
ROA not after: Fri 02 May 2025 20:08:21 +0000
asID: 28667
IP address blocks: 2804:4::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:3e:3d:1f:03:25:84:4e:67:27:46:41:39:94:49:c7:3a:3c:94:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3
Validity
Not Before: May 3 20:03:21 2024 GMT
Not After : May 2 20:08:21 2025 GMT
Subject: CN=11CE8B46A2F57360799A5AAFC1AD9A53C8CA132A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:47:95:77:cd:64:42:b5:b3:33:48:27:ce:dc:
bf:e5:f4:de:1f:79:d6:2d:fc:43:7e:20:7e:e2:73:
9d:25:f3:b9:8b:f2:27:c0:76:03:d9:76:0a:ca:a2:
04:d9:3a:27:78:fc:61:3d:fc:1b:8c:36:5f:c2:0e:
5c:5f:15:46:51:37:dc:ed:9e:af:95:6e:9b:6a:b5:
f6:93:28:4f:e9:1d:80:83:4f:76:a6:ee:72:4d:e2:
da:d9:1f:62:4a:8e:09:41:dc:5c:15:d3:51:29:ab:
97:8f:d1:a2:db:1c:61:06:b4:66:79:82:68:de:03:
7d:4f:25:f2:58:71:33:36:7a:b4:29:a1:16:c2:e4:
d6:02:ae:20:4a:a1:8d:63:34:78:47:29:99:a3:fd:
d5:15:72:69:1b:12:fc:6b:7e:89:9b:93:33:89:2b:
9c:ef:0a:8c:69:7a:f6:34:d4:68:4a:f2:6a:06:e3:
b4:a0:b0:c4:30:df:18:7c:4c:89:76:2a:e4:d0:0f:
c8:5d:fc:6b:78:4d:66:9a:49:51:3d:20:ca:64:9b:
db:5e:7b:fe:f6:ab:f0:d8:1d:e7:4b:39:18:c1:99:
68:8f:c8:b0:d7:1b:0b:6e:57:e3:1c:eb:50:99:7a:
df:42:92:c5:13:d3:ce:73:83:aa:2f:ae:03:66:42:
29:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:CE:8B:46:A2:F5:73:60:79:9A:5A:AF:C1:AD:9A:53:C8:CA:13:2A
X509v3 Authority Key Identifier:
keyid:9C:0B:4F:E2:8E:0B:B8:DF:CB:32:FF:27:FD:74:EE:DE:F3:63:42:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/323830343a343a3a2f33322d3438203d3e203238363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:4::/32
Signature Algorithm: sha256WithRSAEncryption
91:c3:9c:8f:ed:8b:fc:23:28:e1:80:d6:24:47:77:d5:b8:c4:
55:b4:54:57:56:a8:8e:6e:ba:62:d8:b4:f9:5f:93:e6:01:68:
b3:67:79:34:e0:51:a7:c4:49:7a:24:79:b2:c8:82:4e:d3:0d:
1d:d2:b5:ec:ac:a0:97:0a:29:a7:d2:5c:c2:44:1d:fb:42:1b:
2c:d1:15:32:54:38:cf:b8:39:08:5f:7a:e8:9e:56:be:89:c1:
99:80:51:31:37:66:c0:eb:88:e2:95:30:f3:72:56:3f:83:ec:
7e:85:23:cd:ce:bf:53:14:86:77:c6:ea:ba:1d:8c:38:6d:49:
70:55:7d:ed:b9:c3:3c:3d:c2:fb:de:20:89:4f:14:4d:87:46:
5c:12:3d:fb:7b:72:dc:da:09:21:55:42:5e:6d:8c:3f:3a:f9:
ee:31:24:60:fd:71:9a:96:99:c9:4f:45:71:d7:8b:ac:aa:d9:
51:6f:be:d5:aa:fe:02:65:cc:e7:e9:08:fb:6c:3c:23:3f:5b:
1b:24:be:a5:bd:57:8e:b5:f3:6b:10:18:70:bd:52:82:91:9a:
36:28:02:6a:cf:a5:00:87:6b:74:5e:e0:b9:97:b1:c0:b2:46:
8b:c0:72:33:7d:5d:bb:a0:c0:e3:58:3f:43:7c:eb:07:cb:16:
47:2d:6f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:28 2024 by rpki-client on console-ams.rpki-client.org