Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/3133382e3132322e3234382e302f32322d3234203d3e20323632353930.roa
File: 3133382e3132322e3234382e302f32322d3234203d3e20323632353930.roa (raw, json)
Hash identifier: QLOGIESzh5sagWlP5tKzmdgeHq897fAK8xR4PIW7YiY=
Subject key identifier: 70:BC:79:3C:E3:D5:73:74:8D:07:8E:A5:B1:21:D9:06:2D:4A:57:31
Certificate issuer: /CN=231C01A4C21B4CA32569E7A61F40CB611354C269
Certificate serial: 6024DD65098617FD382E109D48CD41102D8B7531
Authority key identifier: 23:1C:01:A4:C2:1B:4C:A3:25:69:E7:A6:1F:40:CB:61:13:54:C2:69
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
Subject info access: rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/3133382e3132322e3234382e302f32322d3234203d3e20323632353930.roa
Signing time: Tue 11 Mar 2025 16:10:09 +0000
ROA not before: Tue 11 Mar 2025 16:05:09 +0000
ROA not after: Tue 10 Mar 2026 16:10:09 +0000
asID: 262590
IP address blocks: 138.122.248.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.crl
rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 02:41:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:24:dd:65:09:86:17:fd:38:2e:10:9d:48:cd:41:10:2d:8b:75:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=231C01A4C21B4CA32569E7A61F40CB611354C269
Validity
Not Before: Mar 11 16:05:09 2025 GMT
Not After : Mar 10 16:10:09 2026 GMT
Subject: CN=70BC793CE3D573748D078EA5B121D9062D4A5731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:96:02:aa:7d:a5:5e:30:c8:7c:7d:94:b1:
24:0d:bb:f8:35:a5:e5:e4:f8:3b:30:0b:4a:e7:42:
02:05:65:d6:98:4f:5a:b8:65:5b:0a:49:ac:55:25:
f6:6e:31:a4:e1:4b:2e:eb:5d:7f:f1:b0:2b:0e:0a:
f1:b4:82:2c:a9:2b:de:21:b3:c5:2a:60:f2:80:46:
f5:65:5e:e7:a5:46:01:ad:2b:25:23:75:fd:5d:39:
d2:34:8c:85:9c:e0:ae:e0:84:8d:ec:1b:4c:71:62:
45:a4:74:b4:f0:c7:ec:fe:25:5b:4e:e7:a4:8d:82:
c4:95:06:3c:ac:68:27:e6:94:42:d3:0c:ed:02:d0:
5e:67:e9:12:34:84:52:4a:6f:58:52:cf:e3:11:90:
f5:60:42:bf:11:56:5c:93:ae:70:16:70:89:9c:f1:
29:77:0b:c9:70:ba:bc:65:ce:70:72:58:4e:fe:2f:
78:e5:eb:e8:99:6c:66:b8:ce:4d:8e:6d:e0:3d:9a:
bb:08:93:07:39:ee:32:93:80:65:63:f7:08:95:ca:
a6:24:79:dd:ae:d4:e0:3d:9e:43:77:2e:2b:e5:53:
59:a3:d4:90:29:aa:02:f7:aa:69:4c:9c:66:eb:9f:
36:e7:d3:85:f6:b4:3b:4e:ba:a8:4f:b4:35:bd:58:
a0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BC:79:3C:E3:D5:73:74:8D:07:8E:A5:B1:21:D9:06:2D:4A:57:31
X509v3 Authority Key Identifier:
keyid:23:1C:01:A4:C2:1B:4C:A3:25:69:E7:A6:1F:40:CB:61:13:54:C2:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/3133382e3132322e3234382e302f32322d3234203d3e20323632353930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.122.248.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:95:2e:dd:9a:ab:f4:d9:bb:09:32:ac:70:ef:bf:52:c5:5f:
61:52:b5:f6:10:da:8c:e7:20:3c:39:8a:da:d2:9c:a0:47:ca:
1c:09:43:a0:aa:97:e0:74:23:69:dd:33:32:b9:02:5e:30:a8:
52:fe:5e:0e:44:ab:90:b1:f1:bb:29:e2:57:83:46:5f:ac:c3:
ff:26:45:e1:99:be:84:41:36:a0:b9:db:b7:8e:b8:f8:7b:6b:
8a:73:76:cd:c5:c6:70:0d:a0:81:6f:ea:45:ab:9e:69:90:00:
37:66:4d:17:94:df:88:d8:36:7a:2f:81:be:35:30:6c:d9:0f:
9d:bd:89:bd:d4:a8:b9:bb:01:70:6e:b8:53:db:86:a3:5b:2f:
5f:a5:a5:a8:fd:f0:5b:de:ae:42:d9:fd:9f:fa:7f:88:88:36:
ac:a7:d3:67:0a:a2:49:a8:1e:7a:b7:8f:cf:5d:08:18:24:cd:
b3:de:6e:99:a2:4d:89:07:ef:70:73:40:3f:ed:8f:fc:cb:48:
86:3f:e4:8a:d8:f8:37:1b:c6:e8:e9:66:74:33:5a:5a:c0:c5:
f3:48:44:73:ed:c3:36:6d:a7:80:0b:bc:66:a0:1b:62:3e:29:
9e:f0:3d:92:f9:65:3a:05:2f:9d:7d:46:d0:5b:5e:40:50:37:
cc:23:be:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:16:52 2025 by rpki-client