Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DhY3YCDX37x9vLTGSM4xm8pSqnF5gUZ58wu5QHJCqRT8/0/3137372e3135322e3130392e302f32342d3234203d3e20323730353935.roa
File: 3137372e3135322e3130392e302f32342d3234203d3e20323730353935.roa (raw, json)
Hash identifier: 2J+OoXa6EA8sy+b8tgl3pJA+47w3yfQj1J61m0j3UXU=
Subject key identifier: 64:D2:34:69:E7:0C:CC:75:33:E8:2D:0A:4B:90:17:3B:D6:64:CA:1A
Certificate issuer: /CN=32511338FC4EB1C67F8A3C1EFE0E693913272E1F
Certificate serial: 1789D951CEAD89CFD9EFDC3FE0E3DB1590438567
Authority key identifier: 32:51:13:38:FC:4E:B1:C6:7F:8A:3C:1E:FE:0E:69:39:13:27:2E:1F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/32511338FC4EB1C67F8A3C1EFE0E693913272E1F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DhY3YCDX37x9vLTGSM4xm8pSqnF5gUZ58wu5QHJCqRT8/0/3137372e3135322e3130392e302f32342d3234203d3e20323730353935.roa
Signing time: Tue 30 Jan 2024 12:05:44 +0000
ROA not before: Tue 30 Jan 2024 12:00:44 +0000
ROA not after: Tue 28 Jan 2025 12:05:44 +0000
asID: 270595
IP address blocks: 177.152.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:89:d9:51:ce:ad:89:cf:d9:ef:dc:3f:e0:e3:db:15:90:43:85:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32511338FC4EB1C67F8A3C1EFE0E693913272E1F
Validity
Not Before: Jan 30 12:00:44 2024 GMT
Not After : Jan 28 12:05:44 2025 GMT
Subject: CN=64D23469E70CCC7533E82D0A4B90173BD664CA1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:e1:4b:04:b9:f2:7c:69:5d:82:b6:9b:6b:
02:48:59:a8:70:2e:56:22:3e:dd:8a:4b:3b:8d:98:
4f:87:a9:da:51:28:c9:2b:a2:f9:8e:ca:19:f8:74:
1b:81:1f:ae:de:58:ca:1e:61:b9:bd:fc:b7:9d:25:
44:c3:09:9e:3f:86:ae:75:c3:58:39:8d:21:c0:ff:
e5:f7:09:12:a8:8b:08:46:8c:db:5f:3b:00:b9:d4:
85:a2:08:91:91:b3:62:d8:70:2a:90:c1:df:fa:c4:
db:ff:07:57:8d:9f:b3:68:27:5d:70:27:1a:e6:b6:
d3:29:b0:13:ce:5f:57:6b:8e:f9:5c:a6:35:56:f5:
ed:5e:54:7d:98:ef:45:91:ea:00:72:76:32:74:7b:
4e:4c:45:42:49:58:1d:c0:ef:e3:3b:33:20:e6:15:
f8:c6:a7:e8:86:a9:00:9c:8a:33:bf:80:8e:08:82:
9c:4d:6e:5d:63:37:14:1c:e7:bb:b7:c6:73:a6:f2:
62:f4:03:e2:2f:9b:91:0f:b8:dd:08:c7:3c:be:a4:
bc:21:b3:f5:aa:0c:a7:ab:af:2c:c5:cf:41:2e:ef:
88:5f:7e:cc:8c:8b:d7:2b:b5:20:42:62:b3:49:61:
cc:80:ce:fb:62:98:99:82:ae:a4:b8:48:18:c9:e7:
10:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D2:34:69:E7:0C:CC:75:33:E8:2D:0A:4B:90:17:3B:D6:64:CA:1A
X509v3 Authority Key Identifier:
keyid:32:51:13:38:FC:4E:B1:C6:7F:8A:3C:1E:FE:0E:69:39:13:27:2E:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DhY3YCDX37x9vLTGSM4xm8pSqnF5gUZ58wu5QHJCqRT8/0/32511338FC4EB1C67F8A3C1EFE0E693913272E1F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/32511338FC4EB1C67F8A3C1EFE0E693913272E1F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DhY3YCDX37x9vLTGSM4xm8pSqnF5gUZ58wu5QHJCqRT8/0/3137372e3135322e3130392e302f32342d3234203d3e20323730353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.152.109.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f5:45:1a:ce:75:cc:a9:de:22:f2:0a:c8:ab:6f:93:5b:22:
9c:99:b3:cb:c6:47:76:6c:71:44:6f:95:10:8b:28:b1:b5:72:
83:9b:34:25:ee:36:03:e1:b8:19:9e:1b:14:37:20:28:5c:13:
32:cd:a3:86:67:e6:22:52:1d:36:1d:62:e7:14:62:68:16:08:
97:7a:e0:ec:b4:41:58:4c:05:e5:2f:93:ca:c5:8b:55:b3:a5:
bd:be:f4:c1:94:30:88:31:ad:15:c0:a7:7a:a7:c1:02:c9:10:
0e:69:7d:d4:e8:cb:4a:be:76:49:1a:05:5d:79:5d:65:de:de:
29:d7:03:66:da:93:20:fc:d7:b1:1a:dc:80:97:c7:26:b2:3d:
0d:33:49:89:6a:86:a7:8b:a8:79:78:af:a0:ac:bf:40:c3:5d:
13:40:06:a8:b7:f7:ea:ed:c2:66:ef:a0:24:6e:82:38:46:d3:
11:96:75:fd:43:38:bd:b0:42:78:67:b0:9a:4b:74:19:84:7b:
c0:f1:b6:3a:96:42:f9:48:01:36:2a:f2:0b:9e:38:0d:df:9e:
67:55:3f:9a:eb:ca:d8:3d:4f:45:1d:30:52:d8:b9:f4:00:44:
7c:d6:da:9a:10:6e:16:e4:1f:ea:08:7a:ad:0c:c9:6c:46:c3:
e9:9c:44:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:28:02 2024 by rpki-client on console-fra.rpki-client.org