Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EKMN6VmCnJ3amd8rwRW9fGZZgBK9dBmqbzdBwmmgpeSe/0/3137302e3233392e342e302f32322d3332203d3e20323636333433.roa
File: 3137302e3233392e342e302f32322d3332203d3e20323636333433.roa (raw, json)
Hash identifier: tEbNbYhrhtzV89rm6svUU939Ad1ZhTz+QCl9C9LCVJI=
Subject key identifier: B5:6A:67:62:02:41:C1:4E:26:F6:F9:BE:89:A3:B2:FF:3F:F2:8F:D3
Certificate issuer: /CN=A8C6F7327E34841D9D5C617086EFE9AC109AE305
Certificate serial: 4B4B54DE432C6B167CF83D6B13F02DFA6FA5981A
Authority key identifier: A8:C6:F7:32:7E:34:84:1D:9D:5C:61:70:86:EF:E9:AC:10:9A:E3:05
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C6F7327E34841D9D5C617086EFE9AC109AE305.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EKMN6VmCnJ3amd8rwRW9fGZZgBK9dBmqbzdBwmmgpeSe/0/3137302e3233392e342e302f32322d3332203d3e20323636333433.roa
Signing time: Wed 26 Feb 2025 19:38:23 +0000
ROA not before: Wed 26 Feb 2025 19:33:23 +0000
ROA not after: Wed 25 Feb 2026 19:38:23 +0000
asID: 266343
IP address blocks: 170.239.4.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:4b:54:de:43:2c:6b:16:7c:f8:3d:6b:13:f0:2d:fa:6f:a5:98:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8C6F7327E34841D9D5C617086EFE9AC109AE305
Validity
Not Before: Feb 26 19:33:23 2025 GMT
Not After : Feb 25 19:38:23 2026 GMT
Subject: CN=B56A67620241C14E26F6F9BE89A3B2FF3FF28FD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9c:13:53:a8:24:15:3b:20:c6:44:d0:f6:c0:
e1:e7:7a:dc:62:5a:e1:a3:e2:73:10:85:85:c0:83:
f8:97:3e:4a:01:e6:3e:70:a2:51:1b:ab:97:e7:0b:
a4:59:15:e6:38:2d:b4:33:a8:e9:0e:9a:a4:b2:b5:
f6:c4:0f:1f:d9:e1:14:0d:9f:55:0b:c0:21:43:cd:
4d:a2:11:86:fb:d1:20:55:17:f6:49:29:55:b7:1d:
9f:fc:b2:6d:72:ae:72:76:bf:70:24:f3:a4:d3:84:
8a:84:40:81:12:d3:79:58:d8:ec:45:45:77:d2:30:
52:15:08:6f:9a:03:ea:da:a6:5f:b7:49:b8:f5:fd:
42:1c:14:65:64:49:cf:02:f0:31:d8:d1:b4:a4:4d:
da:ea:a1:41:53:22:99:67:e7:ae:58:16:e0:57:1c:
59:c3:32:f2:e5:aa:ab:4e:02:ff:5b:2b:e1:cc:ca:
a0:c9:fd:9a:2d:88:81:15:c0:8d:ba:f5:99:c3:8d:
23:c7:df:cd:b8:de:12:58:04:4e:31:e9:41:52:92:
09:b9:f4:7a:73:56:15:d1:56:5f:a3:63:cd:26:89:
78:f0:4c:d0:a4:51:23:3a:10:44:31:a7:5a:46:ea:
2b:4c:6a:29:be:c5:51:70:9f:2b:2a:5f:76:6d:5d:
4d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6A:67:62:02:41:C1:4E:26:F6:F9:BE:89:A3:B2:FF:3F:F2:8F:D3
X509v3 Authority Key Identifier:
keyid:A8:C6:F7:32:7E:34:84:1D:9D:5C:61:70:86:EF:E9:AC:10:9A:E3:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EKMN6VmCnJ3amd8rwRW9fGZZgBK9dBmqbzdBwmmgpeSe/0/A8C6F7327E34841D9D5C617086EFE9AC109AE305.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C6F7327E34841D9D5C617086EFE9AC109AE305.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EKMN6VmCnJ3amd8rwRW9fGZZgBK9dBmqbzdBwmmgpeSe/0/3137302e3233392e342e302f32322d3332203d3e20323636333433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.239.4.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:37:33:66:5b:00:80:b9:bb:fb:a3:95:4c:c6:0d:ab:36:05:
5b:15:9e:59:1a:20:dd:a6:af:76:8f:af:2c:ff:a2:29:f7:1a:
32:59:42:0e:5a:35:4c:96:e3:11:30:27:6d:94:3a:50:d3:6a:
e7:9e:b0:4b:dc:e0:a6:17:b4:a8:39:55:13:be:3a:fa:bf:8f:
03:a0:f8:a2:37:4e:d8:86:b9:e2:8e:2c:60:48:30:7f:bd:92:
a2:51:43:b2:4a:85:32:5e:08:a4:db:2f:ee:90:0c:7f:08:0e:
57:fb:57:cc:73:a9:12:7d:3e:6d:26:a9:08:8d:ee:9f:39:9d:
3b:6d:8e:7b:9f:c8:d7:65:0d:a2:c2:04:51:6e:d0:8b:52:ad:
6d:33:e0:44:30:63:82:e8:6e:1f:9b:f1:c6:01:da:1e:ad:e7:
ac:86:f1:77:47:b1:63:f9:8e:b3:b2:0f:b1:3b:b8:77:6a:2b:
7d:38:55:3e:87:3f:ff:5d:a8:d9:20:54:0a:7f:28:0c:32:d5:
0f:fe:97:a5:fe:8c:db:2e:75:c9:3f:bf:a6:a7:b1:23:59:33:
d7:e3:71:8d:a1:44:0b:02:55:b3:e3:4a:72:69:40:d3:c7:5d:
98:fe:b8:9d:4d:25:be:38:86:89:a3:88:72:e7:03:3a:21:43:
c7:08:be:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:03:53 2025 by rpki-client