Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DvxrUCmnYeTkh1QDjProGtBP33EWnAWi4BEFBKtMxruE/1/34352e3136382e3130302e302f32322d3234203d3e20323638303838.roa
File: 34352e3136382e3130302e302f32322d3234203d3e20323638303838.roa (raw, json)
Hash identifier: zpFVU2JyNixUQ+YxjjgO40fzQNfvEkI2K++30j4xM48=
Subject key identifier: BD:84:B3:5F:45:54:D1:4D:43:AF:A7:B5:75:FE:C7:CF:F2:31:76:4D
Certificate issuer: /CN=9CDD5ED9F381FA7C7CF55870AB5AC71FABD4ADA1
Certificate serial: 25FFC61074FDC04E3DB7DD6E6607049881B96713
Authority key identifier: 9C:DD:5E:D9:F3:81:FA:7C:7C:F5:58:70:AB:5A:C7:1F:AB:D4:AD:A1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CDD5ED9F381FA7C7CF55870AB5AC71FABD4ADA1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DvxrUCmnYeTkh1QDjProGtBP33EWnAWi4BEFBKtMxruE/1/34352e3136382e3130302e302f32322d3234203d3e20323638303838.roa
Signing time: Wed 05 Mar 2025 19:42:18 +0000
ROA not before: Wed 05 Mar 2025 19:37:18 +0000
ROA not after: Wed 04 Mar 2026 19:42:18 +0000
asID: 268088
IP address blocks: 45.168.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:ff:c6:10:74:fd:c0:4e:3d:b7:dd:6e:66:07:04:98:81:b9:67:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9CDD5ED9F381FA7C7CF55870AB5AC71FABD4ADA1
Validity
Not Before: Mar 5 19:37:18 2025 GMT
Not After : Mar 4 19:42:18 2026 GMT
Subject: CN=BD84B35F4554D14D43AFA7B575FEC7CFF231764D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f5:c2:06:29:7a:df:1c:4a:e2:92:2d:f5:ab:
39:7d:3b:a0:84:be:fd:e4:ef:12:0d:37:67:78:7a:
df:b7:a0:db:65:91:1b:07:e8:d1:06:b8:05:f6:c4:
b3:e3:3f:d6:41:ef:33:30:0f:6b:bf:95:19:2f:db:
69:be:ed:65:11:fa:38:a5:6a:8c:28:1a:02:05:72:
f3:58:ab:6c:9d:9c:d2:c3:16:0b:ee:c3:2b:9a:a7:
23:4a:43:1c:fd:59:61:46:84:29:5c:d6:63:04:8f:
a8:0a:09:09:37:71:43:3b:85:6e:ff:4d:85:28:dc:
c2:5a:a4:79:b3:26:81:47:3b:16:b3:c1:60:02:55:
f1:4d:3a:58:92:a3:45:6b:a7:5a:bc:1c:14:51:89:
b8:d3:4a:70:54:60:7b:ec:ce:fb:2d:98:04:75:d4:
17:0a:05:f4:f3:b7:e2:53:e1:59:f2:70:f8:2e:a3:
2e:51:89:c3:e7:0c:4e:82:e2:36:af:5a:72:4f:0a:
62:c4:43:bf:e2:11:46:fd:56:29:d0:c4:3e:2a:d1:
e7:04:ec:28:59:df:8b:1b:f1:9f:55:f0:cb:3f:5e:
e7:1c:e4:74:ea:ff:43:ee:27:a0:6a:50:0f:47:06:
be:6e:ca:49:92:70:68:18:2a:3a:e2:39:a4:c7:98:
0f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:84:B3:5F:45:54:D1:4D:43:AF:A7:B5:75:FE:C7:CF:F2:31:76:4D
X509v3 Authority Key Identifier:
keyid:9C:DD:5E:D9:F3:81:FA:7C:7C:F5:58:70:AB:5A:C7:1F:AB:D4:AD:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DvxrUCmnYeTkh1QDjProGtBP33EWnAWi4BEFBKtMxruE/1/9CDD5ED9F381FA7C7CF55870AB5AC71FABD4ADA1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CDD5ED9F381FA7C7CF55870AB5AC71FABD4ADA1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DvxrUCmnYeTkh1QDjProGtBP33EWnAWi4BEFBKtMxruE/1/34352e3136382e3130302e302f32322d3234203d3e20323638303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.100.0/22
Signature Algorithm: sha256WithRSAEncryption
73:41:08:7a:24:ae:1d:3e:f5:9e:9e:ad:f8:40:2a:c7:ba:59:
82:ce:a5:7f:7a:fc:81:86:df:7d:15:d3:3b:51:4d:5d:29:2f:
0a:64:2c:27:09:b5:06:4f:3c:0f:a0:1f:76:45:ab:ec:9f:df:
cb:a0:5c:4b:ec:18:01:91:90:f4:52:9d:e1:b6:be:11:1e:f8:
d9:99:eb:a2:2b:87:06:62:d3:73:b4:ac:db:7e:89:72:dd:27:
07:90:db:48:3c:cf:e5:9a:ac:b6:b2:51:e7:04:45:49:a9:35:
6f:74:38:ea:69:1a:fc:09:2c:de:98:6e:ae:4b:9c:26:6e:49:
07:1a:64:c4:c3:f8:18:ae:c3:75:ac:99:6f:7c:92:0f:1b:3e:
f0:ac:e7:a4:54:51:6b:3f:75:4e:02:d6:0b:58:31:93:e5:fa:
72:94:0b:6e:99:af:db:3c:28:9d:e9:39:33:ca:99:22:d8:3c:
e8:d6:77:d6:ee:b3:3d:53:74:d0:1b:62:8e:a0:35:18:29:8a:
92:5b:9a:78:85:42:cc:93:58:54:fc:dd:02:20:25:20:06:6d:
68:04:67:b1:8e:87:55:69:1b:c1:a2:70:98:b3:6d:47:b2:76:
35:ef:cc:10:4b:87:40:63:9f:6e:b7:35:26:c9:27:fa:33:32:
7a:a2:cf:aa
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUJf/GEHT9wE49t91uZgcEmIG5ZxMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUNERDVFRDlGMzgxRkE3QzdDRjU1ODcwQUI1QUM3MUZB
QkQ0QURBMTAeFw0yNTAzMDUxOTM3MThaFw0yNjAzMDQxOTQyMThaMDMxMTAvBgNV
BAMTKEJEODRCMzVGNDU1NEQxNEQ0M0FGQTdCNTc1RkVDN0NGRjIzMTc2NEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd9cIGKXrfHEriki31qzl9O6CE
vv3k7xINN2d4et+3oNtlkRsH6NEGuAX2xLPjP9ZB7zMwD2u/lRkv22m+7WUR+jil
aowoGgIFcvNYq2ydnNLDFgvuwyuapyNKQxz9WWFGhClc1mMEj6gKCQk3cUM7hW7/
TYUo3MJapHmzJoFHOxazwWACVfFNOliSo0Vrp1q8HBRRibjTSnBUYHvszvstmAR1
1BcKBfTzt+JT4VnycPguoy5RicPnDE6C4javWnJPCmLEQ7/iEUb9VinQxD4q0ecE
7ChZ34sb8Z9V8Ms/Xucc5HTq/0PuJ6BqUA9HBr5uykmScGgYKjriOaTHmA8DAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUvYSzX0VU0U1Dr6e1df7Hz/Ixdk0wHwYDVR0j
BBgwFoAUnN1e2fOB+nx89Vhwq1rHH6vUraEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRHZ4clVDbW5ZZVRraDFRRGpQcm9HdEJQMzNFV25BV2k0QkVGQkt0TXhy
dUUvMS85Q0RENUVEOUYzODFGQTdDN0NGNTU4NzBBQjVBQzcxRkFCRDRBREExLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzlDREQ1RUQ5RjM4MUZBN0M3
Q0Y1NTg3MEFCNUFDNzFGQUJENEFEQTEuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0R2eHJVQ21uWWVUa2gxUURqUHJvR3RCUDMzRVduQVdpNEJFRkJLdE14cnVFLzEv
MzQzNTJlMzEzNjM4MmUzMTMwMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2
MzgzMDM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAItqGQwDQYJKoZIhvcNAQELBQADggEBAHNBCHok
rh0+9Z6erfhAKse6WYLOpX96/IGG330V0ztRTV0pLwpkLCcJtQZPPA+gH3ZFq+yf
38ugXEvsGAGRkPRSneG2vhEe+NmZ66IrhwZi03O0rNt+iXLdJweQ20g8z+WarLay
UecERUmpNW90OOppGvwJLN6Ybq5LnCZuSQcaZMTD+Biuw3WsmW98kg8bPvCs56RU
UWs/dU4C1gtYMZPl+nKUC26Zr9s8KJ3pOTPKmSLYPOjWd9busz1TdNAbYo6gNRgp
ipJbmniFQsyTWFT83QIgJSAGbWgEZ7GOh1VpG8GicJizbUeydjXvzBBLh0Bjn263
NSbJJ/ozMnqiz6o=
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:08:26 2025 by rpki-client