Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3137302e3234372e3234342e302f32322d3234203d3e20323632333639.roa
File: 3137302e3234372e3234342e302f32322d3234203d3e20323632333639.roa (raw, json)
Hash identifier: jl+0su74W0b6u+BIAuCeDaZ8ZQq8KdRTGbuO+vh0ADM=
Subject key identifier: 98:DC:9F:50:FC:8F:4E:EA:8B:F0:CB:7F:27:BF:3E:68:83:AF:22:61
Certificate issuer: /CN=CF46A132348143E7B60D54AC599BE74868B00829
Certificate serial: 231E1F2104AB9D90EE8491E2406D083F89F5DF76
Authority key identifier: CF:46:A1:32:34:81:43:E7:B6:0D:54:AC:59:9B:E7:48:68:B0:08:29
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF46A132348143E7B60D54AC599BE74868B00829.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3137302e3234372e3234342e302f32322d3234203d3e20323632333639.roa
Signing time: Tue 12 Nov 2024 18:00:19 +0000
ROA not before: Tue 12 Nov 2024 17:55:19 +0000
ROA not after: Tue 11 Nov 2025 18:00:19 +0000
asID: 262369
IP address blocks: 170.247.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:1e:1f:21:04:ab:9d:90:ee:84:91:e2:40:6d:08:3f:89:f5:df:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CF46A132348143E7B60D54AC599BE74868B00829
Validity
Not Before: Nov 12 17:55:19 2024 GMT
Not After : Nov 11 18:00:19 2025 GMT
Subject: CN=98DC9F50FC8F4EEA8BF0CB7F27BF3E6883AF2261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b5:f9:3f:69:e6:72:fa:4d:18:43:6d:e8:fd:
4f:eb:2c:53:db:ff:5f:1e:6c:9f:64:f8:dc:d3:ed:
e4:f4:c7:91:49:60:b6:5f:be:f2:7a:48:aa:cc:44:
31:29:c4:2f:21:4e:74:d1:48:98:31:b7:a5:ea:bd:
a0:44:8b:7a:d4:46:61:9f:ef:54:d9:9e:60:84:06:
97:50:2c:b7:72:f2:a7:26:e2:27:67:ea:76:d5:3e:
40:60:1f:8d:02:5c:65:ba:3f:bf:13:ae:d9:31:c9:
6b:51:2d:46:bd:0c:bf:d1:e7:74:39:63:3c:1d:6d:
71:0f:ae:23:1f:ed:42:54:26:fe:cd:34:e8:1c:08:
50:58:cf:11:af:d1:ae:19:1d:76:ce:31:d4:35:82:
69:aa:93:a9:47:b1:5a:f7:a4:44:aa:7a:eb:2a:06:
8b:6a:ec:03:1e:74:fe:8c:eb:8c:13:ed:38:45:3c:
61:cc:64:4e:75:43:60:d0:ca:62:93:c8:cb:dd:1f:
d5:01:de:23:09:20:f1:73:c0:63:ff:97:ad:94:e2:
d4:7a:b3:ed:44:ab:33:6a:8a:4a:36:4e:52:94:b7:
50:02:ff:3a:6c:4f:36:61:f1:26:57:07:d3:96:a3:
3c:63:2c:5c:4f:1c:b6:74:4d:a1:51:ce:ac:c9:a4:
28:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:DC:9F:50:FC:8F:4E:EA:8B:F0:CB:7F:27:BF:3E:68:83:AF:22:61
X509v3 Authority Key Identifier:
keyid:CF:46:A1:32:34:81:43:E7:B6:0D:54:AC:59:9B:E7:48:68:B0:08:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/CF46A132348143E7B60D54AC599BE74868B00829.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CF46A132348143E7B60D54AC599BE74868B00829.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EarafFgnRaY5LiaXNGaViuiFStVwGoKWj1K57r5w2wur/1/3137302e3234372e3234342e302f32322d3234203d3e20323632333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.244.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:57:1d:31:e5:35:53:3e:e2:a8:ce:14:09:92:08:29:63:db:
8a:7a:c9:54:e1:03:13:38:36:22:57:d4:cc:de:b1:0b:17:ac:
9d:c5:ac:14:18:c8:d1:ae:7d:28:44:d9:71:da:b1:9d:5e:77:
ba:f2:2e:09:a7:ed:23:c3:9c:4c:7b:80:f2:0c:70:a7:82:29:
39:4e:91:e0:b3:36:20:1a:d1:08:d7:06:26:22:bd:c5:13:d6:
3d:c3:38:b9:99:30:e2:c0:a0:a4:e5:8f:b7:82:dc:7d:84:70:
f3:af:9f:39:b5:2e:ee:cf:50:18:fa:95:21:2d:6a:55:89:39:
57:14:21:dd:b3:35:95:a7:28:a8:1c:28:5a:ff:24:ea:75:53:
d7:d3:ba:91:6a:88:ed:5d:5f:7e:39:95:4a:fb:db:00:7a:a8:
31:95:58:8d:8e:96:4b:b4:33:b5:be:4b:15:9a:d1:79:e3:2f:
58:e7:36:5c:40:1f:d1:37:bc:85:42:2a:dd:6f:fe:8a:6f:cc:
15:28:45:e9:6d:0d:65:23:be:34:98:14:da:20:b1:e8:2f:5a:
54:62:3f:30:22:23:f6:e9:de:97:13:da:f1:80:ec:96:18:72:
4a:99:d0:01:1c:91:85:1e:3f:86:22:56:6b:af:90:72:3f:f4:
da:1d:73:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:45:12 2025 by rpki-client