![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa
File: 34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa (raw, json)
Hash identifier: nWQluWFN3pliS/fvNFYp2UJ9UHu1+BY3y6xtnjP0ytk=
Subject key identifier: D7:F7:84:38:82:8D:60:8A:C0:D6:78:0A:EB:30:F0:4A:3B:6E:67:F7
Certificate issuer: /CN=FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB
Certificate serial: 2E0ECE4034E571214AA2AAE22E7E11BE20F5ED7F
Authority key identifier: FA:32:1B:BC:67:AA:82:64:80:7B:FB:31:73:CC:E7:C3:CE:5B:96:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa
Signing time: Tue 06 Feb 2024 12:05:59 +0000
ROA not before: Tue 06 Feb 2024 12:00:59 +0000
ROA not after: Tue 04 Feb 2025 12:05:59 +0000
asID: 268057
IP address blocks: 45.168.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:0e:ce:40:34:e5:71:21:4a:a2:aa:e2:2e:7e:11:be:20:f5:ed:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB
Validity
Not Before: Feb 6 12:00:59 2024 GMT
Not After : Feb 4 12:05:59 2025 GMT
Subject: CN=D7F78438828D608AC0D6780AEB30F04A3B6E67F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a4:cb:c8:04:1e:08:d9:a4:64:90:0c:d7:35:
26:b9:2b:17:e2:f7:7a:cd:ec:15:d2:ce:32:44:a0:
e7:08:86:0c:e8:52:b2:32:52:0b:d7:08:c4:76:12:
9c:7b:59:5b:77:55:9d:0a:00:2c:dc:0c:37:4b:19:
69:64:5d:7e:34:2f:41:0c:fe:74:88:63:ef:6f:ec:
29:f5:a1:0d:c2:df:06:6b:18:c4:d8:1a:a7:56:da:
d6:9d:72:7e:86:4f:36:b9:98:a8:1a:51:e5:1c:a2:
5f:1f:ef:df:ce:63:89:0f:25:f3:6f:a9:50:3b:26:
e2:46:c6:33:09:0c:f4:17:81:fc:2f:e7:19:83:e7:
48:eb:21:c1:43:34:a5:8d:e4:a0:9a:3c:d7:f9:af:
94:19:71:13:9f:cd:5e:10:1b:e5:61:78:f7:4e:ac:
b8:4b:ae:96:d3:bd:40:aa:79:81:f6:3e:c0:13:5c:
3b:b7:50:b2:99:b4:82:99:90:3b:63:e5:50:bd:23:
9d:a3:78:f6:61:e5:6f:e2:05:10:03:e1:cf:17:0c:
83:11:ad:c2:90:66:d2:af:5f:b8:05:9c:44:ba:46:
8c:05:05:08:60:c8:4e:d7:90:0e:69:5d:5d:05:30:
9a:92:ab:bc:60:38:fd:af:d9:3b:7a:34:f5:99:60:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F7:84:38:82:8D:60:8A:C0:D6:78:0A:EB:30:F0:4A:3B:6E:67:F7
X509v3 Authority Key Identifier:
keyid:FA:32:1B:BC:67:AA:82:64:80:7B:FB:31:73:CC:E7:C3:CE:5B:96:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/FA321BBC67AA8264807BFB3173CCE7C3CE5B96AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/EnHREsNpLviKCwb5LAAeyLEaDWKWSYc2kBanYLqW794v/0/34352e3136382e3130392e302f32342d3234203d3e20323638303537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.109.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6c:35:28:4c:5b:12:d7:2e:76:4e:e9:07:d4:d0:bf:1e:07:
b4:22:82:dd:36:91:bd:1e:eb:7d:9f:f0:78:3b:6c:08:5b:5a:
52:4e:10:9c:a1:40:73:a7:41:61:52:b9:e7:c6:fe:b1:da:ab:
e7:09:74:e6:2e:b6:09:c6:4b:16:dc:98:3b:64:9c:a3:35:de:
cc:88:8c:b4:5f:2c:57:a2:74:16:a6:72:7b:f6:8f:9a:6d:32:
7d:36:4d:bf:dd:78:29:8e:8f:6a:4f:00:79:1c:d8:c8:51:b3:
a4:a5:19:7f:9b:c3:69:03:8f:f8:ac:c5:f1:86:22:d9:d0:e9:
2f:49:4f:21:6b:6c:6c:53:67:3a:4f:54:de:0d:83:6e:f9:79:
63:30:fc:d2:1a:91:6f:3f:20:14:2b:a1:2e:2a:44:ff:10:38:
e3:ef:79:33:4a:4e:1e:9e:24:3f:6a:2a:b2:f5:57:06:5d:f0:
76:b5:a8:08:43:1a:bc:56:94:50:ce:22:37:a4:ee:85:df:cf:
c4:f6:26:8f:83:58:36:b8:09:d9:79:c9:ab:52:b4:2c:06:d2:
3b:21:ab:c5:57:37:a3:25:cc:a2:40:f4:8d:82:ce:c0:69:67:
5e:23:cd:0c:6b:80:05:41:9c:bd:96:e5:c1:f6:69:92:bc:7d:
05:78:f6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:42:52 2024 by rpki-client on console-ams.rpki-client.org