Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Ejsw7b4xpEaFLMQtUZP2MvxNFX4FecShXpkiabtab19D/0/3136382e3139352e33322e302f32342d3234203d3e203238313238.roa
File: 3136382e3139352e33322e302f32342d3234203d3e203238313238.roa (raw, json)
Hash identifier: G2oZnHbQU7GsJlPkCYB/e8gglxTKgFbewpQkJPoKdCQ=
Subject key identifier: 6D:F6:12:74:F0:0C:77:57:78:93:53:1E:4C:23:3A:57:9F:73:09:38
Certificate issuer: /CN=57E35169EA4E86E7F7413AD6D74F24D1DA753320
Certificate serial: 47A0E3C5C152CBB4304F8F0547140F7033F2981F
Authority key identifier: 57:E3:51:69:EA:4E:86:E7:F7:41:3A:D6:D7:4F:24:D1:DA:75:33:20
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57E35169EA4E86E7F7413AD6D74F24D1DA753320.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Ejsw7b4xpEaFLMQtUZP2MvxNFX4FecShXpkiabtab19D/0/3136382e3139352e33322e302f32342d3234203d3e203238313238.roa
Signing time: Tue 20 Aug 2024 18:07:11 +0000
ROA not before: Tue 20 Aug 2024 18:02:11 +0000
ROA not after: Tue 19 Aug 2025 18:07:11 +0000
asID: 28128
IP address blocks: 168.195.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:a0:e3:c5:c1:52:cb:b4:30:4f:8f:05:47:14:0f:70:33:f2:98:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57E35169EA4E86E7F7413AD6D74F24D1DA753320
Validity
Not Before: Aug 20 18:02:11 2024 GMT
Not After : Aug 19 18:07:11 2025 GMT
Subject: CN=6DF61274F00C77577893531E4C233A579F730938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:9c:b4:1e:49:5b:07:f3:21:27:a5:3a:7d:
8d:a0:76:7c:4c:2e:33:ac:ff:22:e7:98:c5:37:15:
35:21:32:fc:b9:d5:23:98:e1:19:5d:6e:07:cc:5d:
81:25:ed:29:12:5a:0e:75:d0:09:df:3d:92:05:b2:
3a:82:6f:94:e0:fa:c8:33:21:ec:09:de:c6:e9:2f:
5f:df:24:8d:1d:cc:e9:14:07:ef:2a:8d:ab:4e:58:
b7:63:d1:bd:b6:eb:e1:39:8b:a6:ed:69:85:75:68:
7a:f7:e2:51:29:7b:63:9a:80:d9:93:58:77:dd:6b:
42:5c:09:c8:da:ec:ca:24:93:37:1c:e2:8c:af:4f:
16:87:7c:86:73:5e:fb:fb:f1:63:6c:5c:90:4c:36:
11:84:df:95:e3:f6:97:ba:da:24:cd:0e:76:cb:d1:
3c:55:ae:5b:74:f8:bb:3c:bd:a8:35:c6:81:67:07:
56:06:11:18:dc:5b:f7:0b:ef:60:2c:6b:74:4b:a8:
eb:44:a9:df:9a:86:f6:8a:d9:44:71:b4:16:63:5d:
82:ce:81:a6:64:2a:3d:0d:5e:93:d2:58:51:cb:41:
fe:71:92:df:ec:30:09:bd:41:ca:d4:ed:9b:77:bc:
04:9e:fc:b4:90:98:30:0b:53:d8:5f:66:a6:34:d4:
bd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F6:12:74:F0:0C:77:57:78:93:53:1E:4C:23:3A:57:9F:73:09:38
X509v3 Authority Key Identifier:
keyid:57:E3:51:69:EA:4E:86:E7:F7:41:3A:D6:D7:4F:24:D1:DA:75:33:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Ejsw7b4xpEaFLMQtUZP2MvxNFX4FecShXpkiabtab19D/0/57E35169EA4E86E7F7413AD6D74F24D1DA753320.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57E35169EA4E86E7F7413AD6D74F24D1DA753320.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Ejsw7b4xpEaFLMQtUZP2MvxNFX4FecShXpkiabtab19D/0/3136382e3139352e33322e302f32342d3234203d3e203238313238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.195.32.0/24
Signature Algorithm: sha256WithRSAEncryption
81:2e:cb:4b:10:fc:e5:72:72:d9:ea:d1:c4:48:97:7b:47:a9:
be:38:87:44:9e:5b:c2:85:a7:2b:7c:07:23:2e:4e:90:f0:b6:
5f:ad:85:e4:33:a3:b4:02:2d:2d:4a:42:aa:b7:59:69:d8:64:
85:18:f5:fe:c2:ea:f8:f0:b2:32:22:0f:e6:c5:b0:e0:5e:a3:
42:98:6a:4e:1d:5e:ec:46:0b:f8:a8:00:07:95:bc:fb:27:2f:
3c:aa:2d:51:0c:d5:fa:b3:33:90:77:d4:a6:f3:75:88:51:92:
76:fd:82:63:09:b4:dc:f5:06:85:63:12:3f:f1:ca:65:24:1b:
48:40:71:c5:79:86:08:17:ae:62:41:86:da:1e:a7:93:10:4b:
e2:ff:4d:d4:06:3e:63:0e:f4:47:d6:9a:6b:7c:79:85:09:3c:
9d:e5:76:03:41:a6:a8:b9:87:87:45:cb:43:e7:4e:5c:a4:b8:
89:05:dd:31:44:a8:43:e5:a4:53:f0:f4:6e:13:4a:01:8a:35:
f9:15:c1:55:a4:1b:d0:2f:01:8f:02:dc:6f:8f:34:66:af:d0:
62:c4:a1:dc:f9:d5:a2:ed:d7:10:7f:af:2f:4c:40:7b:ce:be:
86:ff:7e:30:16:5a:48:b5:2b:c0:c2:ec:66:fa:1e:29:9a:a2:
b0:46:86:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 04:29:36 2025 by rpki-client