Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3137302e38332e34342e302f32322d3234203d3e20323632353935.roa
File: 3137302e38332e34342e302f32322d3234203d3e20323632353935.roa (raw, json)
Hash identifier: WisQ1JL2FAAn8kaZqf230Nksj1G0DtPacu/DRaDBIZA=
Subject key identifier: 6A:39:77:21:87:48:C2:61:F8:2A:09:AA:34:79:29:6B:72:7C:38:CE
Certificate issuer: /CN=4371007B3B7771C6CF4FBE4A71B3B946B841AD63
Certificate serial: 1E78366E9698C4548787BB1549252AA933570DA0
Authority key identifier: 43:71:00:7B:3B:77:71:C6:CF:4F:BE:4A:71:B3:B9:46:B8:41:AD:63
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3137302e38332e34342e302f32322d3234203d3e20323632353935.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 262595
IP address blocks: 170.83.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:78:36:6e:96:98:c4:54:87:87:bb:15:49:25:2a:a9:33:57:0d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4371007B3B7771C6CF4FBE4A71B3B946B841AD63
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=6A3977218748C261F82A09AA3479296B727C38CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:40:e7:78:43:7b:53:be:f0:a6:f8:d6:3c:81:
df:f9:7a:65:3c:d3:ff:f0:20:99:01:93:26:d7:4f:
65:54:f9:0e:cb:f4:ba:38:d1:3d:a7:76:5a:77:46:
0c:8e:27:a2:aa:db:32:c1:b6:2d:45:72:5f:eb:94:
a9:56:d3:5e:5e:1d:0b:d6:d2:7b:a1:bd:3c:e1:3d:
06:7c:9a:bb:42:c4:a4:7d:d6:b5:aa:48:75:2b:1f:
38:1c:af:ed:df:f3:5e:05:c1:7b:93:95:3a:e1:1c:
ae:a6:38:82:a4:82:08:73:9f:ae:52:dd:75:95:b7:
63:1d:e2:ad:86:dc:84:d8:63:24:a4:56:07:b0:80:
4a:92:9c:7c:6b:b7:0c:d2:da:e5:f9:e8:33:d6:0f:
b6:74:e6:b9:c7:1c:9d:dd:c0:de:3a:3b:3b:22:c5:
61:b6:b9:5e:52:83:fb:4c:cf:c1:4b:9f:3f:a7:d2:
94:95:8b:45:08:60:d9:c8:de:67:34:b2:c3:7e:68:
62:3e:f5:08:8d:95:46:28:d1:f3:58:25:77:73:de:
ed:91:20:3c:6b:7b:52:2a:5e:bc:74:fc:5f:21:bb:
88:14:7b:3c:30:be:d6:b5:fb:56:b3:e5:34:2d:1b:
b7:29:d3:e2:59:75:97:fc:6a:d3:7d:90:87:2a:24:
74:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:39:77:21:87:48:C2:61:F8:2A:09:AA:34:79:29:6B:72:7C:38:CE
X509v3 Authority Key Identifier:
keyid:43:71:00:7B:3B:77:71:C6:CF:4F:BE:4A:71:B3:B9:46:B8:41:AD:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4371007B3B7771C6CF4FBE4A71B3B946B841AD63.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DeDcngWXnuqxGK6ofU9T1V75NtodDJrAEhMDcVrzch5g/1/3137302e38332e34342e302f32322d3234203d3e20323632353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.44.0/22
Signature Algorithm: sha256WithRSAEncryption
03:aa:f5:ad:de:c5:0e:ad:28:9f:94:9e:d0:cf:79:4b:14:97:
ef:67:c3:2c:05:8e:24:72:a6:5a:bb:0b:3b:07:7d:03:16:66:
47:36:be:4a:c8:f4:60:0b:d9:d8:dc:ba:7e:5b:eb:70:f0:f3:
39:85:ae:b6:86:2e:89:3a:58:d0:bc:5c:98:f3:26:fc:d5:80:
aa:79:c4:92:dd:88:d1:42:c6:0d:10:90:5f:58:20:be:a7:21:
6b:f9:4a:53:a6:0a:13:f7:19:96:7c:bd:39:5d:91:8c:91:89:
00:a7:25:64:4b:c7:d1:96:96:f5:d1:26:62:70:3e:32:4e:be:
fb:20:db:31:87:f7:bd:a6:fa:19:43:07:38:33:d4:12:4b:14:
ff:59:32:7c:9b:06:b5:58:9e:7c:9a:98:23:ba:69:f4:a1:2b:
de:55:da:a8:bf:ba:42:01:7a:73:02:59:7b:34:1a:34:dd:09:
9f:f6:c9:bc:e0:6a:ec:4b:a9:5c:6a:c2:d3:cd:55:43:6d:d1:
a5:74:c7:19:0a:58:d2:11:ea:b1:a9:1b:48:6c:6f:5a:1f:fa:
ca:f2:fe:49:9e:34:7f:74:2d:b4:d0:74:fc:52:b5:db:a6:2a:
84:9d:74:e1:9f:c6:56:58:25:38:28:e1:8b:82:fd:aa:b6:84:
ad:d7:18:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:29:48 2025 by rpki-client