Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/323830343a3638343a3a2f34382d3438203d3e203533313037.roa
File: 323830343a3638343a3a2f34382d3438203d3e203533313037.roa (raw, json)
Hash identifier: DMJ4gvjHMEswBboYwIrK3h1AGpiDd/BrfRugqwCic9U=
Subject key identifier: AE:AE:59:A5:BD:F6:50:14:4F:51:C9:73:00:33:35:BD:01:97:90:05
Certificate issuer: /CN=231C01A4C21B4CA32569E7A61F40CB611354C269
Certificate serial: 4B26BF6F4605EB34BAD55DD84B17E9F55ACCCF28
Authority key identifier: 23:1C:01:A4:C2:1B:4C:A3:25:69:E7:A6:1F:40:CB:61:13:54:C2:69
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
Subject info access: rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/323830343a3638343a3a2f34382d3438203d3e203533313037.roa
Signing time: Tue 11 Mar 2025 16:09:50 +0000
ROA not before: Tue 11 Mar 2025 16:04:50 +0000
ROA not after: Tue 10 Mar 2026 16:09:50 +0000
asID: 53107
IP address blocks: 2804:684::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.crl
rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 02:41:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:26:bf:6f:46:05:eb:34:ba:d5:5d:d8:4b:17:e9:f5:5a:cc:cf:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=231C01A4C21B4CA32569E7A61F40CB611354C269
Validity
Not Before: Mar 11 16:04:50 2025 GMT
Not After : Mar 10 16:09:50 2026 GMT
Subject: CN=AEAE59A5BDF650144F51C973003335BD01979005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:af:49:af:b2:e1:01:75:cc:64:14:56:cb:bb:
16:20:2a:cb:76:0b:3a:9c:21:5d:e7:59:09:f9:e3:
8a:2e:45:6e:bf:d6:60:3a:80:83:26:3b:54:2b:35:
16:02:7d:f3:19:5d:78:7d:99:58:91:67:14:82:81:
db:b3:47:65:44:e6:6c:af:21:01:c5:9a:d0:83:f2:
d8:fd:35:69:dd:ce:c1:99:b8:96:b0:56:a3:ec:58:
fb:25:f3:70:82:39:27:be:87:6d:7e:9e:86:b2:26:
07:85:89:9d:61:38:9a:1d:dc:f6:59:17:03:b8:67:
21:8c:0b:5b:0d:db:98:d1:cd:a9:df:09:c5:33:04:
2a:d0:81:8d:d7:0a:4a:29:c9:a6:a2:95:e0:84:f6:
aa:fc:4b:3d:37:22:6b:c1:10:21:5c:e1:f9:ed:12:
2d:a8:53:63:b2:8b:60:b3:5c:48:ae:fe:f0:b7:99:
30:0a:38:90:e5:fb:94:07:25:9e:2b:7e:2d:f0:b3:
57:a3:c9:3f:d1:3a:34:b0:6e:04:c7:0a:37:5c:52:
40:7a:3d:6e:a5:0d:bd:97:d4:37:ae:bd:8d:58:e1:
43:70:1f:36:58:08:d6:ed:32:fd:09:b0:41:62:82:
03:99:38:33:15:a6:26:57:f4:2a:b7:ef:38:5c:36:
97:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AE:59:A5:BD:F6:50:14:4F:51:C9:73:00:33:35:BD:01:97:90:05
X509v3 Authority Key Identifier:
keyid:23:1C:01:A4:C2:1B:4C:A3:25:69:E7:A6:1F:40:CB:61:13:54:C2:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/231C01A4C21B4CA32569E7A61F40CB611354C269.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/231C01A4C21B4CA32569E7A61F40CB611354C269.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/E1L1grakzfreepv5Ydoqn2JBrWyyRPvYUJ1v1XmrzA1G/0/323830343a3638343a3a2f34382d3438203d3e203533313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:684::/48
Signature Algorithm: sha256WithRSAEncryption
07:1f:8f:d5:4d:30:13:b5:2a:e9:3b:5d:c8:b3:11:d2:ce:05:
07:e3:3e:34:a5:9d:58:f8:bd:46:42:c3:32:25:e4:bc:da:76:
38:83:d7:14:6d:24:ca:19:c0:cd:08:f7:4b:a7:6a:fc:8f:7f:
c7:2b:6f:28:c6:de:c6:11:fc:18:49:ad:18:58:8b:b1:ce:35:
4f:cb:81:1c:30:e3:9b:54:65:93:65:f0:50:b0:f2:f2:cf:1f:
f9:a4:e3:08:c4:fc:41:71:2f:ff:1b:63:0b:45:68:43:68:d2:
55:3f:20:fa:56:1a:3d:31:7a:8b:b0:d6:d9:d4:a8:29:af:5a:
55:ff:d9:44:7f:29:fb:73:53:4f:89:77:11:55:a3:75:b2:7a:
6c:ba:5e:c4:31:58:25:65:07:3e:3e:77:f7:36:76:54:32:e4:
9e:55:3c:ef:e0:3b:fa:b3:9a:41:83:5f:03:d5:29:f4:db:57:
b6:ff:d7:ad:99:c9:a3:b2:a0:23:f1:b2:05:e1:e2:b4:a6:ac:
1f:36:b2:5a:fe:e5:51:2e:b1:ac:d7:50:1c:12:4c:0a:07:6b:
bf:3e:e2:1f:98:42:28:fb:c4:88:0d:0f:eb:fd:db:46:cc:d9:
66:42:42:27:89:89:98:05:85:31:33:b6:db:6f:9a:6d:cb:7c:
9b:b5:3a:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:28:55 2025 by rpki-client