Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3136372e3235302e32302e302f32322d3234203d3e20323632353935.roa
File: 3136372e3235302e32302e302f32322d3234203d3e20323632353935.roa (raw, json)
Hash identifier: Pcjq5j9L01oqldGDpHJ1/0Fhghry022+OEJwmG3qykg=
Subject key identifier: 89:66:20:0D:55:7A:83:C9:8F:92:20:5F:0D:97:39:53:80:7F:C4:29
Certificate issuer: /CN=4371007B3B7771C6CF4FBE4A71B3B946B841AD63
Certificate serial: 1925895D410F5CF5E881AE993EF5A79FEE428C63
Authority key identifier: 43:71:00:7B:3B:77:71:C6:CF:4F:BE:4A:71:B3:B9:46:B8:41:AD:63
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3136372e3235302e32302e302f32322d3234203d3e20323632353935.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 262595
IP address blocks: 167.250.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.crl
rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 12 Apr 2025 09:49:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:25:89:5d:41:0f:5c:f5:e8:81:ae:99:3e:f5:a7:9f:ee:42:8c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4371007B3B7771C6CF4FBE4A71B3B946B841AD63
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=8966200D557A83C98F92205F0D973953807FC429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7f:60:ff:4f:dd:13:91:9d:fd:87:ba:79:1d:
27:43:ab:35:fb:8d:8a:b7:95:0b:58:1c:c9:69:2a:
f8:4f:5a:65:6c:b5:fe:38:c8:4d:49:7c:67:c2:47:
2e:bc:05:aa:53:59:31:33:7a:0e:b0:38:b5:ff:fc:
b9:58:e8:b9:66:ba:32:aa:fa:3c:13:20:ae:08:4b:
5d:5d:e9:a5:e6:16:55:fe:7a:bf:9f:52:c6:79:ae:
02:c5:6f:04:98:39:7c:4e:66:ae:99:65:e0:ae:fd:
21:05:d4:b8:23:ed:37:8a:35:e7:30:1b:46:c8:f6:
ab:ee:7d:f7:9b:05:91:bb:33:31:93:6f:7d:ea:3b:
14:70:bd:34:3a:61:83:72:5a:df:c6:d4:08:d2:ce:
5d:59:47:b4:a0:c9:88:8d:47:cb:b4:e7:50:55:94:
0e:10:0c:88:80:93:3f:04:e8:6d:af:95:97:d9:b5:
02:e1:24:af:09:38:fe:f5:ed:4c:c5:5c:55:a1:c9:
73:45:e5:d7:c3:95:20:ee:d6:aa:0b:9e:6c:fa:18:
af:b3:44:9b:3d:81:95:24:33:af:5e:16:b3:ee:0f:
7c:18:fb:9a:54:52:25:82:79:aa:ee:fc:ca:2f:42:
fe:48:ce:3b:5a:a6:84:9d:af:78:36:4b:81:a7:fb:
49:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:66:20:0D:55:7A:83:C9:8F:92:20:5F:0D:97:39:53:80:7F:C4:29
X509v3 Authority Key Identifier:
keyid:43:71:00:7B:3B:77:71:C6:CF:4F:BE:4A:71:B3:B9:46:B8:41:AD:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3136372e3235302e32302e302f32322d3234203d3e20323632353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.250.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:ad:c3:a6:bb:b8:ee:59:d9:ec:bb:04:7a:14:98:65:25:15:
41:b3:76:57:30:d8:09:d2:86:67:41:af:21:85:4f:c0:7e:19:
85:cc:b3:09:a9:c3:80:33:98:0a:83:35:95:ba:3d:e4:d9:76:
88:a5:8f:25:e6:a1:1f:2c:57:f9:23:48:42:3e:a5:fa:35:9a:
ea:47:f8:47:60:2c:24:f1:71:99:5e:14:95:57:a1:fc:9d:cc:
bd:c2:f2:7f:80:4e:05:78:b4:52:fa:c1:7d:dd:65:b0:89:35:
c2:ce:de:3d:07:38:c0:6e:7a:63:29:0a:ae:0c:ec:af:92:54:
40:51:4d:eb:a3:34:c8:3b:8e:16:cf:bb:fc:91:17:81:df:31:
84:bd:80:4d:2e:3f:67:5a:e4:da:c8:00:be:ee:54:41:87:55:
5b:3f:a2:ef:f8:58:2d:f6:88:5d:ad:ac:e2:df:44:f0:82:27:
b8:08:36:25:25:62:c2:05:79:fd:8b:79:d5:8e:e3:cc:44:86:
1d:33:ff:5f:67:88:38:22:19:b5:1f:af:bb:47:e8:cf:a3:8c:
3e:99:51:3c:4d:3b:88:bb:03:68:60:19:ec:80:b5:d3:d2:31:
3a:7a:38:d0:72:d7:b8:37:29:e6:18:97:50:79:03:45:67:c6:
89:27:a5:e3
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUGSWJXUEPXPXoga6ZPvWnn+5CjGMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDM3MTAwN0IzQjc3NzFDNkNGNEZCRTRBNzFCM0I5NDZC
ODQxQUQ2MzAeFw0yNTAzMDUxODU1MDBaFw0yNjAzMDQxOTAwMDBaMDMxMTAvBgNV
BAMTKDg5NjYyMDBENTU3QTgzQzk4RjkyMjA1RjBEOTczOTUzODA3RkM0MjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/f2D/T90TkZ39h7p5HSdDqzX7
jYq3lQtYHMlpKvhPWmVstf44yE1JfGfCRy68BapTWTEzeg6wOLX//LlY6LlmujKq
+jwTIK4IS11d6aXmFlX+er+fUsZ5rgLFbwSYOXxOZq6ZZeCu/SEF1Lgj7TeKNecw
G0bI9qvuffebBZG7MzGTb33qOxRwvTQ6YYNyWt/G1AjSzl1ZR7SgyYiNR8u051BV
lA4QDIiAkz8E6G2vlZfZtQLhJK8JOP717UzFXFWhyXNF5dfDlSDu1qoLnmz6GK+z
RJs9gZUkM69eFrPuD3wY+5pUUiWCearu/MovQv5IzjtapoSdr3g2S4Gn+0l5AgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUiWYgDVV6g8mPkiBfDZc5U4B/xCkwHwYDVR0j
BBgwFoAUQ3EAezt3ccbPT75KcbO5RrhBrWMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRGVEY25nV1hudXF4R0s2b2ZVOVQxVjc1TnRvZERKckFFaE1EY1ZyemNo
NWcvMS80MzcxMDA3QjNCNzc3MUM2Q0Y0RkJFNEE3MUIzQjk0NkI4NDFBRDYzLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQzNzEwMDdCM0I3NzcxQzZD
RjRGQkU0QTcxQjNCOTQ2Qjg0MUFENjMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0RlRGNuZ1dYbnVxeEdLNm9mVTlUMVY3NU50b2RESnJBRWhNRGNWcnpjaDVnLzEv
MzEzNjM3MmUzMjM1MzAyZTMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2
MzIzNTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAKn+hQwDQYJKoZIhvcNAQELBQADggEBAMmtw6a7
uO5Z2ey7BHoUmGUlFUGzdlcw2AnShmdBryGFT8B+GYXMswmpw4AzmAqDNZW6PeTZ
doiljyXmoR8sV/kjSEI+pfo1mupH+EdgLCTxcZleFJVXofydzL3C8n+ATgV4tFL6
wX3dZbCJNcLO3j0HOMBuemMpCq4M7K+SVEBRTeujNMg7jhbPu/yRF4HfMYS9gE0u
P2da5NrIAL7uVEGHVVs/ou/4WC32iF2trOLfRPCCJ7gINiUlYsIFef2LedWO48xE
hh0z/19niDgiGbUfr7tH6M+jjD6ZUTxNO4i7A2hgGeyAtdPSMTp6ONBy17g3KeYY
l1B5A0VnxoknpeM=
-----END CERTIFICATE-----
Generated at Fri Apr 11 11:57:12 2025 by rpki-client