Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DwWFi4gHNefR79hus69DSk9Cu3FA5Hu8wtvSL8rQJTWM/0/3133382e39392e35322e302f32322d3232203d3e203238353737.roa
File: 3133382e39392e35322e302f32322d3232203d3e203238353737.roa (raw, json)
Hash identifier: yFU1hafXSJPGyYwKn4GEUK+zEC3G2VMNIGwuSPrj/IU=
Subject key identifier: E1:9E:EC:EF:FE:42:F6:8C:4F:7E:CC:B7:E5:3E:3E:68:EF:42:D8:97
Certificate issuer: /CN=8CAA8B2D24A1845906846F8F9FEF9D5CF6AAC191
Certificate serial: 18F33BAA65925AFAE1AA6176514E0C062DF06A99
Authority key identifier: 8C:AA:8B:2D:24:A1:84:59:06:84:6F:8F:9F:EF:9D:5C:F6:AA:C1:91
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8CAA8B2D24A1845906846F8F9FEF9D5CF6AAC191.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DwWFi4gHNefR79hus69DSk9Cu3FA5Hu8wtvSL8rQJTWM/0/3133382e39392e35322e302f32322d3232203d3e203238353737.roa
Signing time: Tue 30 Jul 2024 18:57:06 +0000
ROA not before: Tue 30 Jul 2024 18:52:06 +0000
ROA not after: Tue 29 Jul 2025 18:57:06 +0000
asID: 28577
IP address blocks: 138.99.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:f3:3b:aa:65:92:5a:fa:e1:aa:61:76:51:4e:0c:06:2d:f0:6a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8CAA8B2D24A1845906846F8F9FEF9D5CF6AAC191
Validity
Not Before: Jul 30 18:52:06 2024 GMT
Not After : Jul 29 18:57:06 2025 GMT
Subject: CN=E19EECEFFE42F68C4F7ECCB7E53E3E68EF42D897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:41:9d:46:d7:5c:e4:83:c9:16:49:20:80:
f8:e4:19:7d:3c:32:4d:1b:4e:0b:96:73:e9:56:15:
2d:be:eb:00:8a:50:1d:bb:d6:5f:6a:74:76:ba:1c:
c2:de:3f:3a:2a:cf:a7:42:0e:47:fd:57:d3:e5:8f:
fe:7e:0b:b1:90:73:78:71:39:07:56:fe:5f:e0:97:
a7:ab:68:9d:d7:a7:f0:ad:9c:31:a5:e2:73:b5:79:
59:b4:dd:e8:f7:c8:05:9b:92:b5:73:7b:72:a5:15:
c8:1e:47:c0:da:cc:4d:70:c0:8a:d1:94:5d:f7:22:
e6:58:c7:40:cc:97:a0:f7:56:c9:1b:ab:a6:c7:58:
c1:9a:44:1b:ad:07:12:4f:a2:00:56:71:49:5e:f9:
65:49:e6:b1:dd:8d:16:13:a8:03:15:ee:93:f2:fc:
e1:a7:6b:e2:eb:36:70:bc:a9:c5:3d:18:e0:47:c3:
a6:22:de:18:91:f7:82:a6:84:ce:d9:04:73:3c:d6:
78:a5:87:95:7c:89:b3:c1:fc:8a:17:12:e7:4f:a4:
65:b9:94:9e:e9:24:c6:35:7e:23:09:a5:2b:d8:cf:
66:ca:47:ee:4b:75:36:5e:96:b4:d8:3f:b3:3e:14:
03:de:66:c2:4d:52:2c:1f:3e:87:f6:fb:c0:d5:cf:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:9E:EC:EF:FE:42:F6:8C:4F:7E:CC:B7:E5:3E:3E:68:EF:42:D8:97
X509v3 Authority Key Identifier:
keyid:8C:AA:8B:2D:24:A1:84:59:06:84:6F:8F:9F:EF:9D:5C:F6:AA:C1:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DwWFi4gHNefR79hus69DSk9Cu3FA5Hu8wtvSL8rQJTWM/0/8CAA8B2D24A1845906846F8F9FEF9D5CF6AAC191.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8CAA8B2D24A1845906846F8F9FEF9D5CF6AAC191.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DwWFi4gHNefR79hus69DSk9Cu3FA5Hu8wtvSL8rQJTWM/0/3133382e39392e35322e302f32322d3232203d3e203238353737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.52.0/22
Signature Algorithm: sha256WithRSAEncryption
75:22:86:f9:03:94:b4:f3:78:ff:75:0d:35:9c:9f:92:2b:b7:
10:17:ed:28:3b:42:d6:d5:f3:c2:b4:0c:63:0e:b3:00:c1:89:
fd:58:0e:54:32:37:dc:b9:13:f4:3d:0e:4c:9e:fb:0d:62:7a:
98:d1:3f:de:87:29:61:fb:60:0f:b5:09:79:14:14:ec:aa:96:
da:58:35:cc:40:8f:53:c4:81:4f:f3:69:f9:cc:8c:7a:ac:ad:
90:05:3d:2c:26:2e:95:de:fb:14:c3:e3:f9:ab:4a:8b:9a:bf:
96:6e:f4:e6:ed:dd:ba:4b:c2:4c:7a:f5:10:1a:13:2a:26:65:
ed:6b:10:ea:7e:e3:57:a8:03:74:3a:f2:65:25:22:6d:9e:e8:
2b:6b:79:44:81:3b:fd:ff:41:d0:ca:e5:55:91:68:cd:63:15:
df:a8:9c:d7:9c:6f:9d:b0:77:7d:79:02:f6:ba:d8:7d:c1:f6:
8e:e6:4e:9e:ac:88:3d:f1:34:c6:9a:56:48:cd:8a:10:3c:03:
74:f9:09:6e:b8:08:ec:a8:b2:ac:7c:17:4f:0e:32:3f:8a:f5:
57:f4:30:07:cf:1f:dc:f4:d7:32:f3:b4:5e:e8:14:36:93:b4:
fc:8c:32:3a:7b:6e:75:d6:51:1c:dc:58:5f:1f:20:25:cd:d9:
99:a6:c3:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 10:47:59 2025 by rpki-client