Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e33352e302f32342d3234203d3e203238333039.roa
File: 3138392e33382e33352e302f32342d3234203d3e203238333039.roa (raw, json)
Hash identifier: NOMxcH+mRVZ1wKG00IcnNVinXsxv8Q6qY2EEzu3kS7Q=
Subject key identifier: 2C:58:B8:C2:6B:21:27:0C:18:27:F1:2D:46:5A:32:94:35:0F:BD:79
Certificate issuer: /CN=9DBE91F4052164F5A855416538937BFB759078E0
Certificate serial: 318C6600786151FD92A295598E2BA0BC1D9DBDC6
Authority key identifier: 9D:BE:91:F4:05:21:64:F5:A8:55:41:65:38:93:7B:FB:75:90:78:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9DBE91F4052164F5A855416538937BFB759078E0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e33352e302f32342d3234203d3e203238333039.roa
Signing time: Wed 03 Apr 2024 21:02:25 +0000
ROA not before: Wed 03 Apr 2024 20:57:25 +0000
ROA not after: Wed 02 Apr 2025 21:02:25 +0000
asID: 28309
IP address blocks: 189.38.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:8c:66:00:78:61:51:fd:92:a2:95:59:8e:2b:a0:bc:1d:9d:bd:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DBE91F4052164F5A855416538937BFB759078E0
Validity
Not Before: Apr 3 20:57:25 2024 GMT
Not After : Apr 2 21:02:25 2025 GMT
Subject: CN=2C58B8C26B21270C1827F12D465A3294350FBD79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b3:e7:02:86:b0:b3:fb:d3:3a:a0:c2:b5:30:
80:73:47:91:ab:df:67:5d:dc:6e:da:a4:d6:9a:d1:
99:bb:73:d4:20:8e:9e:d4:5b:36:d7:6d:b1:85:fe:
ee:eb:a2:2c:19:a7:a6:1f:a9:c4:39:3f:5d:93:3e:
0d:ee:5d:18:53:c4:7e:81:01:20:ee:85:c7:43:b8:
08:29:c4:13:4c:8e:60:96:db:6e:e8:b4:29:59:bc:
60:b7:80:92:01:bf:28:1b:2f:9e:52:9d:bd:73:76:
ec:3c:c5:e7:c1:42:48:64:e9:3d:9d:f3:b2:87:cc:
84:54:8c:c4:e5:6c:f5:f2:95:f1:50:c7:d6:da:77:
70:b1:19:be:1a:be:b9:ae:5b:c6:e2:13:9f:08:20:
b2:ca:0b:00:fc:a6:b3:cd:61:ee:99:d8:1a:a8:2e:
4b:0c:0a:fd:8b:58:91:9a:8f:20:1d:8f:de:8c:7f:
96:cb:cd:ec:06:09:96:bd:a4:ed:e2:d8:b1:33:1d:
e9:ee:cc:aa:c0:21:37:b3:8e:f8:7b:31:58:42:bc:
6a:8c:f1:a9:e6:a6:bc:4a:df:5f:ca:8c:57:fe:88:
ad:ef:1f:04:de:a2:05:a8:75:23:36:7d:2d:c5:d9:
20:8f:65:8d:fc:ca:64:a4:b4:34:00:a2:07:8c:b2:
b2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:58:B8:C2:6B:21:27:0C:18:27:F1:2D:46:5A:32:94:35:0F:BD:79
X509v3 Authority Key Identifier:
keyid:9D:BE:91:F4:05:21:64:F5:A8:55:41:65:38:93:7B:FB:75:90:78:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/9DBE91F4052164F5A855416538937BFB759078E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9DBE91F4052164F5A855416538937BFB759078E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e33352e302f32342d3234203d3e203238333039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.38.35.0/24
Signature Algorithm: sha256WithRSAEncryption
82:62:22:a2:f4:81:01:fb:5c:95:dd:b5:0b:c8:1a:56:fa:65:
2d:74:0d:ef:b4:aa:80:d3:58:87:37:06:f4:19:f8:97:6a:ad:
62:23:12:96:69:4e:ff:b4:7b:bd:e1:80:21:f5:7b:84:0f:28:
dc:5b:cd:40:ea:a4:b8:5f:84:c7:fe:c3:56:5c:06:69:22:fe:
51:38:be:c5:b7:d0:32:ea:aa:08:20:0e:3f:17:0f:73:63:06:
00:44:8d:22:3e:fc:9b:4e:7e:d7:80:1b:10:f1:79:d3:d8:32:
3a:a8:8f:fb:af:32:ea:23:d4:15:21:06:f7:30:c7:f9:6c:ee:
10:22:d5:96:a7:85:07:df:0a:0c:84:5e:c0:cd:d6:95:68:02:
c6:2e:de:30:32:67:6c:a5:62:59:46:e2:ad:7c:63:20:af:c5:
89:32:16:91:8e:46:52:f3:f8:2e:53:5e:b6:73:1d:e7:5f:34:
3f:8f:45:b7:49:2e:34:1d:9c:c2:e0:78:27:04:6e:17:9b:a7:
65:a3:2d:d6:c1:46:e6:c5:46:91:53:a5:67:ce:3b:1c:1c:4e:
e4:1b:7f:26:5d:ab:f7:a2:bd:96:46:71:ae:ae:d5:2a:b5:a4:
ca:92:b3:d3:ad:ba:ab:87:18:20:72:12:9e:dd:7e:4e:57:ca:
8a:c5:ee:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:45:51 2025 by rpki-client