Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa
File: 323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa (raw, json)
Hash identifier: BlGgdYok+KBo9Y1tGf8n3QdOt+ZStf7MUgAuIl+U1aI=
Subject key identifier: F4:2A:C0:D5:52:34:D8:98:26:A9:32:61:46:61:92:48:9A:53:DE:25
Certificate issuer: /CN=E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5
Certificate serial: 31D93EC933B83987E2C124EF8D09BF8B19A89345
Authority key identifier: E3:BD:40:1A:6D:36:7E:82:1B:7A:C7:E5:AB:B5:10:B6:DE:66:49:A5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa
Signing time: Thu 13 Mar 2025 18:18:37 +0000
ROA not before: Thu 13 Mar 2025 18:13:37 +0000
ROA not after: Thu 12 Mar 2026 18:18:37 +0000
asID: 268726
IP address blocks: 2804:59cc:c000::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.crl
rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 09:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:d9:3e:c9:33:b8:39:87:e2:c1:24:ef:8d:09:bf:8b:19:a8:93:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5
Validity
Not Before: Mar 13 18:13:37 2025 GMT
Not After : Mar 12 18:18:37 2026 GMT
Subject: CN=F42AC0D55234D89826A93261466192489A53DE25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5e:70:82:60:21:1c:d4:08:84:6c:b9:a1:9c:
1e:bc:34:68:63:a4:65:a5:8d:89:04:67:ee:88:d3:
bd:98:25:bc:35:cb:cd:ea:5a:78:35:95:f9:e6:6b:
85:e9:82:8e:1a:61:f3:10:2e:f9:48:34:55:68:42:
4e:18:2d:6c:59:77:5b:5d:ab:e8:3c:36:e2:31:a3:
ad:3b:20:a1:45:53:63:9e:93:d1:b2:58:5d:a9:a3:
0d:eb:76:ac:a2:e9:94:46:c5:7b:cf:c0:22:9b:de:
60:53:36:fc:cb:9f:f1:8d:e4:6b:ba:32:1e:f5:54:
42:3e:4f:f7:b4:34:e7:dc:da:65:7f:44:b6:c7:a1:
ac:a6:3a:3c:2d:c9:f5:50:66:6c:54:57:57:80:29:
55:ff:92:db:5a:b4:ca:98:9b:2c:04:14:1d:82:2e:
75:9c:4c:06:38:38:03:29:57:bc:f8:09:19:33:13:
8b:b8:22:d3:6a:cc:f7:5b:0f:e7:29:f0:98:3a:eb:
27:da:4a:ac:d5:f4:33:65:43:b5:c0:b6:0b:f4:15:
36:40:83:3b:7a:cb:39:b7:ea:6a:f1:34:aa:40:98:
c8:1f:f1:01:59:04:9c:f4:97:55:4c:d3:ee:8c:c0:
6a:70:14:3f:bf:f7:e5:44:99:53:86:5a:3d:2e:a9:
c2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2A:C0:D5:52:34:D8:98:26:A9:32:61:46:61:92:48:9A:53:DE:25
X509v3 Authority Key Identifier:
keyid:E3:BD:40:1A:6D:36:7E:82:1B:7A:C7:E5:AB:B5:10:B6:DE:66:49:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E3BD401A6D367E821B7AC7E5ABB510B6DE6649A5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EXtbdXeeRzkfG9hkNFd2vqddQwT4RdvoFwm7ZvHtau2A/0/323830343a353963633a633030303a3a2f33342d3334203d3e20323638373236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:59cc:c000::/34
Signature Algorithm: sha256WithRSAEncryption
12:dd:a4:3f:cb:36:97:5c:b3:53:02:34:14:8b:d7:aa:b3:b5:
09:ee:7c:e4:6e:03:66:a2:d0:33:73:65:06:e6:64:e0:f9:f8:
62:e9:d2:eb:a9:d4:3b:ed:33:68:3c:7e:c3:3d:02:dc:72:55:
44:e9:ab:97:e7:a6:58:d2:ba:8c:ff:00:bf:90:4c:67:eb:53:
e9:94:a1:55:ba:84:d7:15:3c:bd:86:3c:0a:52:c0:ab:0e:96:
4e:fe:d7:90:95:25:19:9f:6e:3c:5c:13:00:bd:33:37:e6:fd:
c6:4c:3e:e7:75:7b:3e:78:99:9c:c8:18:41:c2:ef:0e:28:7f:
f9:20:ec:e7:67:99:6b:9e:27:38:ed:8e:44:81:c2:cb:63:d3:
98:00:48:00:8b:ac:0a:0c:d7:47:36:de:fb:03:79:ab:fd:30:
20:8c:6a:91:c1:be:8c:de:79:0d:11:38:30:78:b4:ef:b7:9f:
af:fb:70:bb:03:65:51:97:15:2a:1f:8f:c7:8c:10:10:29:d1:
38:20:26:38:03:c3:48:02:a6:2d:d2:fe:f6:c1:92:70:a3:a7:
b5:b4:a0:a0:8a:ca:68:d3:4e:5a:18:f7:25:c3:3c:e1:e3:3c:
23:dc:31:d2:00:89:74:a7:f5:70:6f:f7:b5:6d:47:a6:2f:f5:
f9:e4:38:94
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUMdk+yTO4OYfiwSTvjQm/ixmok0UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTNCRDQwMUE2RDM2N0U4MjFCN0FDN0U1QUJCNTEwQjZE
RTY2NDlBNTAeFw0yNTAzMTMxODEzMzdaFw0yNjAzMTIxODE4MzdaMDMxMTAvBgNV
BAMTKEY0MkFDMEQ1NTIzNEQ4OTgyNkE5MzI2MTQ2NjE5MjQ4OUE1M0RFMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtXnCCYCEc1AiEbLmhnB68NGhj
pGWljYkEZ+6I072YJbw1y83qWng1lfnma4Xpgo4aYfMQLvlINFVoQk4YLWxZd1td
q+g8NuIxo607IKFFU2Oek9GyWF2pow3rdqyi6ZRGxXvPwCKb3mBTNvzLn/GN5Gu6
Mh71VEI+T/e0NOfc2mV/RLbHoaymOjwtyfVQZmxUV1eAKVX/kttatMqYmywEFB2C
LnWcTAY4OAMpV7z4CRkzE4u4ItNqzPdbD+cp8Jg66yfaSqzV9DNlQ7XAtgv0FTZA
gzt6yzm36mrxNKpAmMgf8QFZBJz0l1VM0+6MwGpwFD+/9+VEmVOGWj0uqcLlAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQU9CrA1VI02JgmqTJhRmGSSJpT3iUwHwYDVR0j
BBgwFoAU471AGm02foIbesflq7UQtt5mSaUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRVh0YmRYZWVSemtmRzloa05GZDJ2cWRkUXdUNFJkdm9Gd203WnZIdGF1
MkEvMC9FM0JENDAxQTZEMzY3RTgyMUI3QUM3RTVBQkI1MTBCNkRFNjY0OUE1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0UzQkQ0MDFBNkQzNjdFODIx
QjdBQzdFNUFCQjUxMEI2REU2NjQ5QTUuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0VYdGJkWGVlUnprZkc5aGtORmQydnFkZFF3VDRSZHZvRndtN1p2SHRhdTJBLzAv
MzIzODMwMzQzYTM1Mzk2MzYzM2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk
M2UyMDMyMzYzODM3MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEWczAMA0GCSqGSIb3DQEBCwUA
A4IBAQAS3aQ/yzaXXLNTAjQUi9eqs7UJ7nzkbgNmotAzc2UG5mTg+fhi6dLrqdQ7
7TNoPH7DPQLcclVE6auX56ZY0rqM/wC/kExn61PplKFVuoTXFTy9hjwKUsCrDpZO
/teQlSUZn248XBMAvTM35v3GTD7ndXs+eJmcyBhBwu8OKH/5IOznZ5lrnic47Y5E
gcLLY9OYAEgAi6wKDNdHNt77A3mr/TAgjGqRwb6M3nkNETgweLTvt5+v+3C7A2VR
lxUqH4/HjBAQKdE4ICY4A8NIAqYt0v72wZJwo6e1tKCgispo005aGPclwzzh4zwj
3DHSAIl0p/Vwb/e1bUemL/X55DiU
-----END CERTIFICATE-----
Generated at Thu Apr 10 13:32:47 2025 by rpki-client