Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a323030303a3a2f34382d3438203d3e20323632363137.roa
File: 323830343a3930633a323030303a3a2f34382d3438203d3e20323632363137.roa (raw, json)
Hash identifier: OJL2mWdihSkomF/W4DMNBiclLZPOUGVmCKITBjNv2gQ=
Subject key identifier: 95:03:5A:AB:21:2E:65:3D:12:39:08:97:3C:A2:A4:AA:84:81:75:90
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 3B61425105B8FED49EB2E8C7852AAC3F162F6631
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a323030303a3a2f34382d3438203d3e20323632363137.roa
Signing time: Wed 05 Mar 2025 20:36:03 +0000
ROA not before: Wed 05 Mar 2025 20:31:03 +0000
ROA not after: Wed 04 Mar 2026 20:36:03 +0000
asID: 262617
IP address blocks: 2804:90c:2000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:61:42:51:05:b8:fe:d4:9e:b2:e8:c7:85:2a:ac:3f:16:2f:66:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 5 20:31:03 2025 GMT
Not After : Mar 4 20:36:03 2026 GMT
Subject: CN=95035AAB212E653D123908973CA2A4AA84817590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:5a:f2:21:01:04:12:68:26:78:a0:4a:da:
ef:d8:ba:64:e3:b5:39:4d:8a:12:6a:b1:2a:b5:72:
dc:5c:b6:7e:2e:cc:3f:3d:e5:fe:3e:f9:bc:3c:61:
de:e7:ed:7c:b7:ac:25:36:ae:35:7b:47:e0:7f:0f:
0c:7a:7d:d8:85:2f:9d:26:d3:59:4a:df:9b:9b:4f:
b1:e1:27:0b:3d:41:87:e0:44:55:db:31:74:63:29:
d2:5e:76:7e:1c:28:23:f1:1f:92:61:11:1e:34:65:
38:e8:8f:2b:ec:cb:c8:9e:5b:9a:09:31:3d:19:d4:
79:c3:b0:13:78:c7:97:4b:29:bc:4e:43:93:51:35:
43:3e:05:14:c9:77:a0:90:14:ef:a0:78:69:32:da:
42:1a:dd:6a:8d:8b:48:6a:b6:87:86:89:1c:91:1f:
83:94:a5:52:e4:bb:61:00:95:ca:03:19:98:99:5a:
ef:66:7a:e2:30:37:de:85:bf:f5:a8:0c:a9:28:05:
50:aa:53:4c:c0:08:de:e3:c2:cd:8c:b5:ab:3b:39:
d9:72:27:93:e3:ca:4f:12:2e:2a:c2:8c:b0:7e:ea:
90:fd:86:7a:e0:26:f1:1b:15:9e:59:2e:50:b0:64:
61:34:70:35:82:ae:ec:b3:ed:a0:f2:b9:32:64:da:
32:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:03:5A:AB:21:2E:65:3D:12:39:08:97:3C:A2:A4:AA:84:81:75:90
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a323030303a3a2f34382d3438203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:90c:2000::/48
Signature Algorithm: sha256WithRSAEncryption
03:1c:19:24:a3:1a:8f:ae:1c:d5:f9:11:57:56:ce:c5:8f:2d:
95:f7:cd:40:41:00:5e:c8:8f:06:37:c6:71:f3:de:c0:6f:6a:
69:42:d8:3d:74:79:ee:1c:f8:14:6f:33:e4:d6:ad:32:94:e0:
b6:de:05:f3:8a:0f:86:9f:be:d0:63:89:39:09:d3:25:1c:00:
b9:cb:c2:e5:fc:af:f9:4b:0e:d1:0a:42:79:8a:50:ab:03:0d:
1b:d0:8c:10:1c:a1:be:cd:07:f4:c9:c0:43:e0:e8:81:52:8c:
44:46:96:e9:b0:cd:d0:af:73:ee:75:29:b9:65:ed:a1:67:72:
00:db:ba:b9:33:54:73:30:c0:7b:b3:e4:ea:bf:46:ec:69:0e:
b3:74:64:ed:1c:55:58:37:87:b5:2d:7d:b4:75:0d:59:d5:c3:
08:67:46:4a:70:7e:72:68:2b:e7:a9:3b:33:22:70:08:ad:54:
3d:a2:fb:75:2d:ea:e7:7d:d2:db:32:49:5a:db:1e:a4:a6:cf:
51:ea:18:5a:b9:00:67:07:ca:aa:fe:1b:b5:a7:77:92:22:42:
18:09:a9:0a:19:bd:18:4b:4f:da:3c:e5:88:7a:c9:fd:85:d1:
78:d6:15:64:54:ea:58:42:e0:0b:d4:6c:f4:5d:e7:d7:c9:82:
9f:30:db:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:34:22 2025 by rpki-client