Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e34302e302f32322d3232203d3e203238333039.roa
File: 3138392e33382e34302e302f32322d3232203d3e203238333039.roa (raw, json)
Hash identifier: CEWACxupDqkD4xw56z2YP7AXRF+MKEhO2HP0nZZ2k3Q=
Subject key identifier: 77:9A:47:6B:4A:1E:20:8E:42:CA:50:A3:D9:2B:5A:FA:23:6F:8F:B2
Certificate issuer: /CN=9DBE91F4052164F5A855416538937BFB759078E0
Certificate serial: 3C05A56C28BA31350E6FFF78A8F43D91DFF476E2
Authority key identifier: 9D:BE:91:F4:05:21:64:F5:A8:55:41:65:38:93:7B:FB:75:90:78:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9DBE91F4052164F5A855416538937BFB759078E0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e34302e302f32322d3232203d3e203238333039.roa
Signing time: Wed 03 Apr 2024 21:02:27 +0000
ROA not before: Wed 03 Apr 2024 20:57:27 +0000
ROA not after: Wed 02 Apr 2025 21:02:27 +0000
asID: 28309
IP address blocks: 189.38.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:05:a5:6c:28:ba:31:35:0e:6f:ff:78:a8:f4:3d:91:df:f4:76:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DBE91F4052164F5A855416538937BFB759078E0
Validity
Not Before: Apr 3 20:57:27 2024 GMT
Not After : Apr 2 21:02:27 2025 GMT
Subject: CN=779A476B4A1E208E42CA50A3D92B5AFA236F8FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a8:82:4a:c5:bb:3a:39:b4:5f:f4:05:d9:a6:
a1:5a:37:9a:d2:03:68:b3:68:67:ca:55:9c:13:58:
88:0e:4a:f3:d6:fc:04:8c:f9:04:72:74:5c:ef:a7:
d7:b8:0c:d2:c0:05:4c:00:36:73:3a:50:87:55:f3:
24:c3:56:22:a2:9b:74:d4:f2:8f:66:30:28:27:a4:
63:95:dd:c2:7a:eb:c7:57:91:43:f8:b1:83:1e:87:
ad:15:e7:48:23:96:65:7d:31:bf:f6:25:1b:a3:7a:
54:f5:d3:87:35:a9:76:0e:5f:b4:44:a7:21:0e:39:
c8:a2:46:6f:09:3c:37:6e:5a:8d:be:ea:f9:5a:06:
c4:5d:fa:a2:f3:17:44:c6:08:c8:d6:6e:93:c6:6a:
af:57:4f:ce:0c:e5:3d:b5:8c:06:6f:8a:21:68:c4:
d8:80:5a:b9:26:4f:70:84:88:bb:fb:29:ed:75:d5:
07:de:31:da:3a:73:c4:2e:56:8b:78:44:b5:20:fd:
65:51:5e:54:e7:8e:7b:de:f9:af:dd:dd:68:c9:5c:
f3:26:77:cb:e9:6d:0e:d5:86:26:d1:8c:cb:40:82:
4f:af:2c:82:18:e5:ed:d2:07:1e:0c:50:a1:06:64:
81:7c:d4:91:87:78:b5:41:82:ce:bf:66:5e:c3:27:
92:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9A:47:6B:4A:1E:20:8E:42:CA:50:A3:D9:2B:5A:FA:23:6F:8F:B2
X509v3 Authority Key Identifier:
keyid:9D:BE:91:F4:05:21:64:F5:A8:55:41:65:38:93:7B:FB:75:90:78:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/9DBE91F4052164F5A855416538937BFB759078E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9DBE91F4052164F5A855416538937BFB759078E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EPiNpSvxFuaVhoZzLwXDuh2zkPtcUxEt5Ub4aGCfZyH4/1/3138392e33382e34302e302f32322d3232203d3e203238333039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.38.40.0/22
Signature Algorithm: sha256WithRSAEncryption
97:da:dc:0a:55:c3:e9:69:8a:7a:27:7b:55:2a:36:47:07:65:
4d:50:17:64:9c:b6:90:e8:3b:dd:03:75:87:40:89:ef:ee:45:
86:0f:9a:9d:bd:fa:9b:ec:12:f0:7b:fc:99:46:11:e7:0d:83:
59:b7:a8:e0:2c:5b:d0:c8:20:87:7c:80:44:2f:77:4c:df:3c:
e2:f6:f9:5f:83:29:ee:4d:c7:a0:bb:ab:93:90:cb:77:dc:f7:
1e:69:a9:87:c5:09:b0:c9:66:fd:1f:21:4f:83:7f:05:5b:7d:
18:39:6c:3c:38:df:83:f2:09:b6:79:7a:e9:d6:82:19:bf:12:
19:26:93:b9:9f:5e:1b:ff:68:77:d8:53:b0:e7:3f:88:74:7a:
e6:e2:c2:a9:7e:74:f9:97:14:7e:66:05:c5:00:a7:14:c3:ed:
73:17:91:e1:74:a4:60:54:56:60:53:68:ca:74:ee:22:22:39:
6d:9e:ea:8a:3c:2a:78:23:b7:28:4b:b3:da:8e:3f:0f:55:0d:
09:76:a3:fb:f2:35:b7:66:de:52:c6:b5:0b:2e:c5:5f:79:d7:
87:e2:da:aa:84:a5:58:67:b7:ea:e5:6c:1a:9b:24:ec:fa:a1:
7a:74:c1:d0:e7:a9:4f:11:b6:89:61:f0:a1:95:99:ad:ae:03:
a9:c0:bf:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:24:47 2025 by rpki-client