Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3133382e302e34342e302f32322d3234203d3e20323632333639.roa
File: 3133382e302e34342e302f32322d3234203d3e20323632333639.roa (raw, json)
Hash identifier: l898D7IGOnDfaSfbuCtYAWlE3rNzmp0ALEOKeZErLes=
Subject key identifier: 4A:80:23:33:02:60:7B:40:46:B3:F4:5B:F0:59:A3:37:D9:66:64:F2
Certificate issuer: /CN=CF46A132348143E7B60D54AC599BE74868B00829
Certificate serial: 7585B290C8ED0423DE933F51110AA6874283C2E7
Authority key identifier: CF:46:A1:32:34:81:43:E7:B6:0D:54:AC:59:9B:E7:48:68:B0:08:29
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF46A132348143E7B60D54AC599BE74868B00829.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3133382e302e34342e302f32322d3234203d3e20323632333639.roa
Signing time: Tue 12 Nov 2024 17:58:57 +0000
ROA not before: Tue 12 Nov 2024 17:53:57 +0000
ROA not after: Tue 11 Nov 2025 17:58:57 +0000
asID: 262369
IP address blocks: 138.0.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:85:b2:90:c8:ed:04:23:de:93:3f:51:11:0a:a6:87:42:83:c2:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CF46A132348143E7B60D54AC599BE74868B00829
Validity
Not Before: Nov 12 17:53:57 2024 GMT
Not After : Nov 11 17:58:57 2025 GMT
Subject: CN=4A80233302607B4046B3F45BF059A337D96664F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f8:ba:6e:f7:3d:8b:a5:02:21:ca:f1:7b:df:
4c:30:29:4c:b1:c0:79:35:89:aa:c0:2d:74:19:c4:
33:fc:a6:cb:0d:a4:ea:18:21:6d:f7:5e:b8:a3:da:
1f:e7:53:04:d0:0f:5b:b6:8a:a2:6b:c9:2b:c9:29:
2f:ef:a7:19:70:f8:bf:0d:8a:6d:bc:5b:71:1e:3a:
a6:b0:4e:20:17:76:0b:70:61:6d:c3:3c:6e:7e:25:
7e:90:fb:77:29:bc:f3:de:20:b7:44:09:8c:c5:2b:
37:4f:15:ae:16:36:19:6b:d1:21:7f:ec:7a:c1:35:
5f:38:2b:0b:6b:74:f7:ad:a1:ff:cd:65:35:40:90:
18:f4:25:d7:98:18:b6:ba:2b:9d:3d:7c:b9:49:05:
df:ff:48:df:ce:84:c8:f6:00:15:c9:f3:cf:1f:16:
66:9a:1c:7a:2d:14:c1:89:05:52:49:ce:f3:05:71:
94:b1:cb:0d:c0:da:92:ce:76:d1:5b:03:73:46:53:
37:8a:02:e4:c6:89:65:20:52:6a:20:b6:da:1d:8b:
64:8c:16:a2:25:3b:31:0c:fa:25:b9:10:bc:0c:12:
8d:00:35:dc:8f:80:22:f7:c7:52:c5:d7:33:9e:ec:
2a:cc:40:9a:d3:4d:32:9a:b2:af:ce:19:af:60:67:
50:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:80:23:33:02:60:7B:40:46:B3:F4:5B:F0:59:A3:37:D9:66:64:F2
X509v3 Authority Key Identifier:
keyid:CF:46:A1:32:34:81:43:E7:B6:0D:54:AC:59:9B:E7:48:68:B0:08:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/CF46A132348143E7B60D54AC599BE74868B00829.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF46A132348143E7B60D54AC599BE74868B00829.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3133382e302e34342e302f32322d3234203d3e20323632333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.0.44.0/22
Signature Algorithm: sha256WithRSAEncryption
22:68:f8:05:e7:9d:06:37:36:a1:77:72:51:1e:d6:83:c5:e0:
77:7d:55:f7:2c:5b:94:3a:d1:54:32:43:42:12:50:ef:5b:73:
2d:35:f8:25:1b:c2:2b:be:a9:60:5c:96:61:56:5a:39:af:f4:
24:08:22:70:9f:5d:ed:73:70:08:ad:b8:f9:8b:10:60:b7:80:
46:25:3f:7c:cd:48:e9:21:1f:89:57:f6:18:db:d6:8d:ae:39:
69:ec:3d:51:a1:e1:18:49:3b:6e:24:17:b5:4a:11:05:bc:be:
dc:e7:33:c9:d2:28:c1:24:5a:ff:17:90:68:8e:7e:d7:55:12:
24:f0:ed:e1:e9:ac:b6:ed:9f:8c:e9:39:d5:d0:04:2d:20:4e:
50:93:8f:0b:fa:c9:60:e8:0b:f4:af:3a:bb:e1:9a:71:70:37:
c8:0f:5f:f8:22:c0:1a:6d:38:66:fd:5d:4c:96:4f:fc:13:d7:
ea:87:eb:c0:82:48:94:8d:8f:8f:da:e5:39:23:b1:1a:e4:99:
74:a7:5a:27:c9:61:4f:87:ef:83:25:eb:95:f1:f6:41:06:04:
50:ae:82:f4:74:bc:8c:09:f5:81:48:d9:29:08:9f:23:1b:05:
f8:59:a5:2f:75:4c:b9:b7:70:b8:a7:dd:80:a0:81:65:ba:8c:
55:53:c5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:46:50 2025 by rpki-client