Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/3133382e3131382e33352e302f32342d3234203d3e20323634323437.roa
File: 3133382e3131382e33352e302f32342d3234203d3e20323634323437.roa (raw, json)
Hash identifier: dT04SxtoIfHKNgfRnmS8wDU/y3BbzN7ryg9QMjXB4dQ=
Subject key identifier: 5A:85:70:C0:47:60:A6:94:97:62:E3:E1:E8:59:0F:88:F5:39:6F:E5
Certificate issuer: /CN=12FE16FACD299316FCEF73CFEA782844D7C2E698
Certificate serial: 41AF849C970F75DE5C1333B9349023B5D7CB24FD
Authority key identifier: 12:FE:16:FA:CD:29:93:16:FC:EF:73:CF:EA:78:28:44:D7:C2:E6:98
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/3133382e3131382e33352e302f32342d3234203d3e20323634323437.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 264247
IP address blocks: 138.118.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.crl
rsync://rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 12 Apr 2025 07:21:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:af:84:9c:97:0f:75:de:5c:13:33:b9:34:90:23:b5:d7:cb:24:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12FE16FACD299316FCEF73CFEA782844D7C2E698
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=5A8570C04760A6949762E3E1E8590F88F5396FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9f:50:a4:dd:8c:28:20:bc:c5:50:15:f8:0c:
19:9f:d1:32:3a:50:85:02:b2:69:c2:5c:9d:e6:91:
cd:4d:97:02:da:d9:07:12:60:bb:2b:4c:b7:ed:a4:
60:5d:2a:78:6b:09:c7:31:f6:cc:b3:fa:65:2b:d4:
11:e5:2a:90:4f:7e:ed:c6:69:7c:ab:65:5f:0c:99:
69:f2:9e:98:03:a8:74:3c:da:4b:7b:9d:3d:f5:a8:
31:b0:70:c0:c0:35:ea:d3:4d:26:f9:68:72:dc:44:
65:2e:f7:87:0a:40:30:a2:96:44:a7:de:6f:a3:86:
75:f8:73:05:fe:1e:ea:0b:53:ad:66:bb:38:b3:cf:
69:f3:a8:ba:1e:f4:d2:a5:2d:4f:2a:50:5a:65:59:
2d:97:80:39:a6:dd:ce:6a:93:36:2b:cf:e8:66:e8:
4a:6d:59:0a:b9:e5:c6:73:d0:0f:50:a0:83:01:70:
9a:d0:62:d9:05:8a:e5:96:40:58:cf:5b:86:37:3b:
60:a6:63:69:4f:93:43:3c:fc:af:52:a7:5c:fe:7b:
d5:6e:82:1e:bd:df:05:f4:d1:39:a8:fc:63:e4:8e:
f7:bf:46:65:1d:11:5a:ca:2f:cc:7c:8d:17:5c:62:
88:cc:ff:7b:42:fa:80:1b:ec:9f:57:4f:d1:04:b7:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:85:70:C0:47:60:A6:94:97:62:E3:E1:E8:59:0F:88:F5:39:6F:E5
X509v3 Authority Key Identifier:
keyid:12:FE:16:FA:CD:29:93:16:FC:EF:73:CF:EA:78:28:44:D7:C2:E6:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/12FE16FACD299316FCEF73CFEA782844D7C2E698.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DiAttLiDLirDR32qgefNhL3svHSaHtUym3GqhuZXV4ts/1/3133382e3131382e33352e302f32342d3234203d3e20323634323437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.118.35.0/24
Signature Algorithm: sha256WithRSAEncryption
65:cb:fa:8c:50:fb:f0:4a:c1:98:eb:a2:8b:b7:5d:7a:1f:02:
50:59:62:16:44:28:75:d7:6e:63:0c:4f:09:41:dd:06:63:62:
95:a7:b6:af:61:2d:e5:7d:27:22:6d:27:ae:9b:f6:88:16:01:
09:0d:2d:9b:f8:28:7b:fc:dd:3b:31:9b:6d:9e:bb:c1:f1:cf:
53:91:a0:f0:8b:1d:81:75:3c:9a:7b:82:93:01:05:17:46:c8:
5e:9d:f3:da:a4:8f:7f:10:80:59:7c:a7:75:29:15:4d:b3:70:
c9:dd:69:7d:95:dd:9a:78:4b:68:e5:3e:a3:04:6f:94:cf:27:
61:04:e3:ec:e5:e0:f6:e1:49:3e:48:6b:8b:56:03:e0:52:99:
2b:05:5f:33:57:22:97:54:b8:7b:2c:3d:2a:7d:df:2c:5e:d5:
f6:d8:00:de:4d:5e:6b:e9:07:f8:9b:c5:0f:16:97:27:d1:83:
73:d6:1d:2e:c5:05:64:2a:a3:63:48:3d:5c:4b:9c:6e:4f:20:
6b:f0:6a:4b:09:e8:e7:1d:8f:93:24:8a:bd:b8:5e:08:55:8b:
19:92:b6:98:bc:51:35:12:cc:74:43:4f:39:b4:21:35:35:27:
8c:49:9f:83:9f:3d:ae:82:c1:ce:75:ae:64:22:87:4c:6d:d4:
41:db:26:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:10:04 2025 by rpki-client