Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38372e392e302f32342d3234203d3e20323632363137.roa
File: 3137372e38372e392e302f32342d3234203d3e20323632363137.roa (raw, json)
Hash identifier: 9Rl/GbkW5uLr43Bjw5tQ5JFOZSA7eS/4JFTYIQ6nLJk=
Subject key identifier: 21:71:F6:43:47:72:A6:02:83:23:A4:35:EE:6D:0F:1E:AC:34:07:AC
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 53417D562F6C22CBD2FDD0B5A18175ECE86017B9
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38372e392e302f32342d3234203d3e20323632363137.roa
Signing time: Wed 05 Mar 2025 20:36:08 +0000
ROA not before: Wed 05 Mar 2025 20:31:08 +0000
ROA not after: Wed 04 Mar 2026 20:36:08 +0000
asID: 262617
IP address blocks: 177.87.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 12:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:41:7d:56:2f:6c:22:cb:d2:fd:d0:b5:a1:81:75:ec:e8:60:17:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 5 20:31:08 2025 GMT
Not After : Mar 4 20:36:08 2026 GMT
Subject: CN=2171F6434772A6028323A435EE6D0F1EAC3407AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:88:d3:e2:59:09:2e:3f:fc:a9:f6:82:f5:81:
41:47:5c:57:19:0a:bb:9c:a3:66:c7:83:91:df:c6:
99:e3:06:fd:18:2d:68:85:c3:0a:c0:f8:16:c2:59:
18:26:bc:13:c1:07:c5:43:ee:9a:76:66:37:18:8a:
13:4e:cf:3f:ad:b8:7f:fd:9e:f3:b3:c2:06:76:19:
78:d0:5c:0b:66:09:9f:82:7e:a0:15:4a:69:22:5a:
39:fa:4b:5c:57:07:e0:24:b7:9a:bf:cf:b0:cc:69:
47:74:d5:37:ab:51:72:bc:f5:fd:92:dd:c7:2e:28:
7e:20:f9:78:81:78:76:57:2a:b2:c6:f7:d0:5c:6d:
06:02:f1:95:19:05:75:51:1d:11:0a:95:16:9e:62:
14:c3:03:21:61:4b:92:41:ae:94:77:ea:84:9f:de:
d1:5f:79:67:6f:d7:4c:51:1f:fd:57:83:d5:e7:c2:
29:37:dc:e2:64:84:99:3c:08:ce:bb:fe:b7:2e:b9:
bc:f8:46:0b:36:5c:1f:6c:5b:e2:39:f4:84:23:2f:
2f:6c:5d:81:38:2c:ce:70:f8:52:cf:b3:9b:60:28:
15:c4:d1:0d:9f:e1:e8:76:2a:43:32:ab:35:9e:10:
a1:b9:b6:9d:b0:28:86:21:65:84:45:76:6a:25:61:
65:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:71:F6:43:47:72:A6:02:83:23:A4:35:EE:6D:0F:1E:AC:34:07:AC
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38372e392e302f32342d3234203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.87.9.0/24
Signature Algorithm: sha256WithRSAEncryption
45:63:9b:e2:bb:8d:20:d8:24:41:5a:aa:b2:74:41:fb:a1:b9:
6f:5b:4b:ed:3c:08:fe:f1:36:98:36:c7:a0:48:e5:25:77:5f:
0b:dc:66:7e:9f:62:42:cb:50:52:9e:ea:50:b7:66:9d:e2:a6:
cc:98:ab:d6:70:4c:b4:c3:d5:3e:3a:fb:00:45:41:fb:e0:be:
ff:c4:24:27:b5:85:1c:da:7b:ec:5b:af:88:67:b9:86:12:39:
4e:e5:27:bf:66:5e:cf:95:e9:fb:ed:2b:3c:f0:f3:ba:c7:2f:
91:65:95:95:a2:fa:c9:b9:06:15:4c:f0:1a:85:17:8d:d2:f7:
41:0f:d3:75:32:c6:0a:de:ff:15:d2:5e:6b:3d:2e:ae:4e:48:
ac:f8:76:3e:a5:4c:54:0d:11:21:c9:bf:2b:16:86:11:08:8c:
6f:2b:e1:ae:f7:cd:bc:ff:3a:9f:bb:82:66:bc:58:59:bc:62:
ae:41:1b:ff:4d:9a:9f:c7:69:1b:1e:3f:a9:cc:6f:06:41:c9:
15:b6:65:b0:74:87:7c:8a:af:c0:43:d6:17:f8:7e:43:29:08:
30:9f:53:69:9d:ad:3e:a7:66:91:80:f6:23:d3:fe:26:d7:ea:
03:7d:16:03:a6:69:44:02:ae:db:ef:76:0e:62:db:66:d9:f4:
d2:28:95:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:20:39 2025 by rpki-client