Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39362e302f32342d3234203d3e20323639333732.roa
File: 34352e3138352e39362e302f32342d3234203d3e20323639333732.roa (raw, json)
Hash identifier: IEdncDoOSDpTtFAAaYsjhQzLpeJSXcmmD3bJ71k19uU=
Subject key identifier: 5D:2A:22:13:EE:66:7A:38:B3:65:AA:C2:89:9D:DC:08:A5:AC:2A:62
Certificate issuer: /CN=9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC
Certificate serial: 5152E533934A99F3BE921AB4A108BF5213577697
Authority key identifier: 9B:C4:43:A0:B4:AF:6F:26:60:F9:E4:B2:2F:BE:6B:FD:F4:EE:E7:CC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39362e302f32342d3234203d3e20323639333732.roa
Signing time: Thu 04 Apr 2024 07:32:21 +0000
ROA not before: Thu 04 Apr 2024 07:27:21 +0000
ROA not after: Thu 03 Apr 2025 07:32:21 +0000
asID: 269372
IP address blocks: 45.185.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:52:e5:33:93:4a:99:f3:be:92:1a:b4:a1:08:bf:52:13:57:76:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC
Validity
Not Before: Apr 4 07:27:21 2024 GMT
Not After : Apr 3 07:32:21 2025 GMT
Subject: CN=5D2A2213EE667A38B365AAC2899DDC08A5AC2A62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:82:3a:d6:22:9f:ca:7c:6f:91:c0:76:1f:b8:
40:ca:0e:2f:0b:ba:03:64:57:66:da:b0:97:8d:08:
4d:37:1e:fe:a4:9a:01:24:0b:30:22:1f:19:4c:21:
3b:77:df:46:9a:6e:0e:6a:f3:b8:8c:1c:a5:8e:ec:
ff:0d:f1:b7:99:5d:4e:8c:1c:8c:82:c1:0d:bc:e9:
1f:12:e8:b9:3d:7c:7b:3e:6b:92:27:8f:9d:7d:8f:
34:f6:a0:2e:22:79:a7:e0:71:38:c8:a0:a7:27:ff:
bb:f7:29:90:22:00:97:00:c2:b9:d8:83:c1:80:50:
ad:29:76:8e:9f:a2:f2:d5:bc:8e:78:6a:3e:e0:95:
ed:cb:5d:40:2d:a9:65:21:47:b4:cb:47:83:a2:be:
5d:89:e4:4b:ed:51:59:3a:e3:c4:7c:10:e1:00:08:
19:80:8b:b0:be:53:e6:4a:37:59:fd:e7:25:87:e2:
2f:6e:2b:82:2d:d8:ee:fb:0b:40:eb:f4:a5:1f:71:
8d:c8:65:0f:60:3a:58:c5:02:34:4b:f1:b4:1b:73:
23:e7:c4:ea:3e:d8:eb:25:0a:65:f2:00:ba:a9:55:
f0:b8:34:28:43:67:c8:7c:a1:a7:bb:85:9c:b2:9b:
de:3a:96:67:ca:b4:c7:19:35:55:91:8c:2c:be:28:
6d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2A:22:13:EE:66:7A:38:B3:65:AA:C2:89:9D:DC:08:A5:AC:2A:62
X509v3 Authority Key Identifier:
keyid:9B:C4:43:A0:B4:AF:6F:26:60:F9:E4:B2:2F:BE:6B:FD:F4:EE:E7:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39362e302f32342d3234203d3e20323639333732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.185.96.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bb:db:e3:22:57:ac:a8:39:b8:60:5e:a9:bf:ef:b9:d9:7b:
47:db:95:06:60:1e:5b:a9:56:36:3b:66:a9:1b:c5:c7:51:2c:
03:44:29:14:a4:e3:eb:a8:11:4d:04:f4:00:60:51:08:5f:b8:
56:4f:30:3b:28:73:86:c6:0d:1f:48:30:ee:f6:e6:63:e7:0d:
12:29:4d:cc:9f:62:55:d1:ce:b0:66:bf:15:89:d0:e7:57:07:
af:f9:5d:4e:42:af:f4:f6:e8:76:0c:f6:72:be:2c:e3:bb:d5:
27:91:4c:08:fd:bf:5a:fb:b8:9c:b4:e1:a8:d6:e4:97:1b:24:
1e:30:23:36:cf:85:0d:a6:4a:58:6b:26:fb:0b:2b:3c:96:cb:
7c:4c:7c:35:0a:0e:30:6b:8e:29:51:4f:b4:24:1d:bb:b9:b2:
db:c7:95:c4:c2:db:17:e1:5a:19:26:4d:82:94:9d:0f:4c:8d:
4a:dd:63:c1:f1:3d:fe:12:12:95:fa:89:f0:c2:15:d7:d5:d0:
71:28:04:73:66:93:c4:49:37:2d:0b:73:71:35:e1:ab:a2:01:
ca:15:61:0b:aa:a9:c8:43:31:0f:1c:f2:d8:dc:77:6a:7c:60:
1f:80:1a:9a:93:01:ec:33:7b:e1:21:b8:ba:f3:c1:11:01:c0:
ae:92:a1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:20:59 2025 by rpki-client