Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39392e302f32342d3234203d3e20323639333732.roa
File: 34352e3138352e39392e302f32342d3234203d3e20323639333732.roa (raw, json)
Hash identifier: 7HK+qlsK8Dd9l5OLW1IaxPejNBqyYKT5mGCzzrnpqa0=
Subject key identifier: D7:97:F3:53:18:79:A5:04:37:D4:D8:C4:FE:EF:C0:5F:62:AF:BC:26
Certificate issuer: /CN=9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC
Certificate serial: 27D552735DBCFF3C9CC8B70EDA6B043DBA6C8015
Authority key identifier: 9B:C4:43:A0:B4:AF:6F:26:60:F9:E4:B2:2F:BE:6B:FD:F4:EE:E7:CC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39392e302f32342d3234203d3e20323639333732.roa
Signing time: Thu 04 Apr 2024 07:32:21 +0000
ROA not before: Thu 04 Apr 2024 07:27:21 +0000
ROA not after: Thu 03 Apr 2025 07:32:21 +0000
asID: 269372
IP address blocks: 45.185.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d5:52:73:5d:bc:ff:3c:9c:c8:b7:0e:da:6b:04:3d:ba:6c:80:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC
Validity
Not Before: Apr 4 07:27:21 2024 GMT
Not After : Apr 3 07:32:21 2025 GMT
Subject: CN=D797F3531879A50437D4D8C4FEEFC05F62AFBC26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:2b:57:cc:40:f6:1d:a0:5e:96:4c:e0:bb:
28:2c:75:8c:a5:ac:dd:be:64:eb:33:50:9b:fb:aa:
af:e8:87:4d:9d:47:36:ea:55:01:93:bb:db:d1:3d:
47:aa:ff:10:4c:67:db:40:c6:a0:87:21:2b:de:bd:
be:d7:29:92:50:c5:cf:2d:bb:ca:6a:cf:30:57:a7:
91:b5:07:1e:0b:ea:3c:57:c3:6e:1d:e0:21:6b:fd:
6d:14:ee:9c:37:f7:5c:5d:ef:30:4a:e4:3e:eb:ff:
4e:8d:7d:1f:55:3d:2a:c1:80:80:48:f9:da:14:41:
9e:6e:cd:8c:fa:da:73:10:10:41:fe:d3:5f:45:34:
67:e5:a1:aa:de:5e:fe:54:78:e0:f9:1a:e0:9b:3a:
54:da:e5:a0:90:31:9a:82:3e:3e:ad:6a:4b:34:aa:
68:54:b4:1e:d4:1e:a9:ce:b2:16:da:14:07:8d:41:
c6:90:ca:b9:0a:89:37:1e:a0:e8:22:53:6e:3a:92:
4d:07:72:cc:c5:3a:9a:ba:ce:27:57:3c:a1:59:04:
94:b8:b1:b9:56:d7:df:51:a6:7f:6e:dc:ef:72:37:
e6:33:0e:ca:38:3c:74:d4:e5:48:22:dc:9e:91:12:
44:e8:66:69:44:79:6c:cf:cc:86:9f:a0:2e:20:78:
2f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:97:F3:53:18:79:A5:04:37:D4:D8:C4:FE:EF:C0:5F:62:AF:BC:26
X509v3 Authority Key Identifier:
keyid:9B:C4:43:A0:B4:AF:6F:26:60:F9:E4:B2:2F:BE:6B:FD:F4:EE:E7:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9BC443A0B4AF6F2660F9E4B22FBE6BFDF4EEE7CC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Dn78cT7wxzcB97Kdj8BnX7f4QVqvT6eUptHbFw9nworY/1/34352e3138352e39392e302f32342d3234203d3e20323639333732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.185.99.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:d8:df:3f:9c:2a:a2:b2:79:30:89:15:9a:3e:4b:31:68:9d:
c8:74:31:d2:bf:16:6d:b2:d3:aa:dc:99:76:07:0b:07:51:75:
37:93:70:58:5d:8b:e0:b8:c2:3e:8b:fc:78:43:d6:cf:b8:56:
6d:a9:f9:af:23:69:f6:67:30:0b:cc:59:2c:31:1a:ef:c0:5f:
b8:6a:6c:32:3e:66:ec:1c:ec:fb:4e:43:57:74:4e:9c:f0:04:
c4:24:1f:ee:41:16:1f:26:9b:3a:06:98:12:4b:71:90:21:99:
5d:53:00:8a:22:d7:cb:8d:eb:98:2f:07:55:b4:97:5d:79:c7:
59:0a:23:4d:6f:99:a6:16:4b:a5:a3:81:0d:b9:02:9b:bd:a4:
6f:78:19:23:e5:bb:49:56:73:77:1f:4a:01:43:ef:11:f1:31:
3e:03:2c:9c:07:63:8f:bf:16:69:0e:41:a3:3d:5d:9a:7c:8b:
28:dc:09:de:2a:7b:eb:8b:23:a3:32:0e:d5:31:7a:da:1b:50:
0d:40:05:b5:56:bd:0e:49:85:3c:a2:59:99:2d:01:10:0e:25:
e6:57:bd:65:af:ae:77:29:f0:cf:27:34:48:72:70:b7:97:18:
f7:18:7d:a1:c6:58:32:af:39:bf:5b:4b:25:da:21:34:37:f0:
fd:1f:f8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:18:30 2025 by rpki-client