Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FD9J94KV9XA3gRxXkzdDujWEBonY2ZNdfy1wwaVTKZ8K/1/323830343a376264303a383030303a3a2f33332d3333203d3e20323731343536.roa
File: 323830343a376264303a383030303a3a2f33332d3333203d3e20323731343536.roa (raw, json)
Hash identifier: subYYX/cgAT5UowT7JGJj/FiXtq221Ul+2MFwUX4vMs=
Subject key identifier: 35:31:B9:F9:E7:01:1F:3B:E4:2F:98:02:40:FC:51:0C:3D:3F:54:A6
Certificate issuer: /CN=2B701A0900880E50F13E6749C2889988811EC8C1
Certificate serial: 37EDD5247897C9D0C34EE06AE049EB266BBA1CEE
Authority key identifier: 2B:70:1A:09:00:88:0E:50:F1:3E:67:49:C2:88:99:88:81:1E:C8:C1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2B701A0900880E50F13E6749C2889988811EC8C1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FD9J94KV9XA3gRxXkzdDujWEBonY2ZNdfy1wwaVTKZ8K/1/323830343a376264303a383030303a3a2f33332d3333203d3e20323731343536.roa
Signing time: Thu 06 Mar 2025 18:40:58 +0000
ROA not before: Thu 06 Mar 2025 18:35:58 +0000
ROA not after: Thu 05 Mar 2026 18:40:58 +0000
asID: 271456
IP address blocks: 2804:7bd0:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:ed:d5:24:78:97:c9:d0:c3:4e:e0:6a:e0:49:eb:26:6b:ba:1c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B701A0900880E50F13E6749C2889988811EC8C1
Validity
Not Before: Mar 6 18:35:58 2025 GMT
Not After : Mar 5 18:40:58 2026 GMT
Subject: CN=3531B9F9E7011F3BE42F980240FC510C3D3F54A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:ee:b0:8c:54:3a:d2:84:b1:37:e0:44:04:
1c:6f:1d:bc:0d:21:73:c2:a7:60:40:a7:2a:ea:90:
47:42:d5:36:ea:61:2a:b7:29:db:82:e9:ea:c7:01:
64:8a:e1:1f:d6:4d:4f:cc:0f:3c:60:8f:bc:75:45:
ed:19:65:56:de:6b:db:f5:d6:29:f3:30:0c:12:71:
16:59:af:a2:15:10:f1:ea:36:90:ff:18:94:de:2d:
ef:eb:a1:39:7c:e7:5b:91:6e:e1:5a:cb:2b:66:15:
a8:94:87:78:4c:ce:ba:8d:0a:e0:9e:ac:c8:9f:23:
68:0e:8e:3a:77:11:ee:23:2d:9c:16:ec:08:7c:a1:
c0:1a:9b:6a:b7:61:13:12:79:e5:d8:6f:83:45:fa:
02:f8:82:0a:c3:20:97:28:19:c6:cc:9c:67:42:fa:
08:78:c8:7c:ae:59:c2:d2:24:4c:a6:05:ed:17:59:
4e:ff:6b:b7:79:ff:a0:bc:19:a4:d7:be:96:7b:36:
9b:2a:9f:97:79:33:7c:29:b5:e6:1d:5e:60:66:aa:
cc:ce:00:74:23:3e:bc:bb:1f:dd:a7:24:8c:85:79:
3b:79:ae:dd:30:de:0e:9c:9f:cb:45:3d:30:43:1e:
d2:44:28:16:20:f0:eb:35:d6:33:3c:09:3b:e6:c3:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:31:B9:F9:E7:01:1F:3B:E4:2F:98:02:40:FC:51:0C:3D:3F:54:A6
X509v3 Authority Key Identifier:
keyid:2B:70:1A:09:00:88:0E:50:F1:3E:67:49:C2:88:99:88:81:1E:C8:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FD9J94KV9XA3gRxXkzdDujWEBonY2ZNdfy1wwaVTKZ8K/1/2B701A0900880E50F13E6749C2889988811EC8C1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2B701A0900880E50F13E6749C2889988811EC8C1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FD9J94KV9XA3gRxXkzdDujWEBonY2ZNdfy1wwaVTKZ8K/1/323830343a376264303a383030303a3a2f33332d3333203d3e20323731343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:7bd0:8000::/33
Signature Algorithm: sha256WithRSAEncryption
76:06:6e:92:51:f1:9b:d1:7d:34:df:14:04:e1:61:a4:82:34:
38:0c:31:7a:79:3e:70:f1:76:a5:1d:d1:0b:17:d7:ff:cc:5e:
1d:c6:ab:20:ef:c3:e8:53:f7:5c:3b:1f:04:57:8b:e3:e6:65:
b3:30:45:ba:35:2c:a5:7f:5c:ff:c6:ef:bc:19:2d:d2:bb:28:
ef:04:4e:1c:69:ec:d6:e3:8a:4b:81:d8:b8:71:0d:e1:44:b0:
5a:14:19:b2:cb:be:2c:ad:71:3a:76:50:83:ef:bf:64:49:1e:
d1:d1:1c:b7:24:be:0c:e1:be:0e:48:91:a1:d8:9b:53:f7:e1:
46:3f:9f:19:84:3a:f9:ae:c8:f7:54:40:07:5f:cf:ae:6e:bc:
ad:e8:4e:ec:5c:b6:01:28:8e:55:a9:73:d9:d6:bb:63:7e:a2:
a1:91:7e:10:ad:e4:08:22:68:54:8c:76:7b:94:8a:06:09:24:
5e:c3:5d:6c:7e:01:4a:81:8b:7e:69:02:c6:c9:bb:a8:db:93:
10:d9:19:d7:fa:a7:e3:66:1d:ca:9c:cc:9c:62:a5:16:64:80:
59:43:26:bc:2e:9c:95:fa:05:a6:a6:81:6e:6e:38:ed:95:3d:
83:aa:f7:a6:c1:a2:2d:25:81:85:41:9a:f6:5e:75:9c:47:78:
90:24:2a:fe
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUN+3VJHiXydDDTuBq4EnrJmu6HO4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkI3MDFBMDkwMDg4MEU1MEYxM0U2NzQ5QzI4ODk5ODg4
MTFFQzhDMTAeFw0yNTAzMDYxODM1NThaFw0yNjAzMDUxODQwNThaMDMxMTAvBgNV
BAMTKDM1MzFCOUY5RTcwMTFGM0JFNDJGOTgwMjQwRkM1MTBDM0QzRjU0QTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyqe6wjFQ60oSxN+BEBBxvHbwN
IXPCp2BApyrqkEdC1TbqYSq3KduC6erHAWSK4R/WTU/MDzxgj7x1Re0ZZVbea9v1
1inzMAwScRZZr6IVEPHqNpD/GJTeLe/roTl851uRbuFayytmFaiUh3hMzrqNCuCe
rMifI2gOjjp3Ee4jLZwW7Ah8ocAam2q3YRMSeeXYb4NF+gL4ggrDIJcoGcbMnGdC
+gh4yHyuWcLSJEymBe0XWU7/a7d5/6C8GaTXvpZ7Npsqn5d5M3wpteYdXmBmqszO
AHQjPry7H92nJIyFeTt5rt0w3g6cn8tFPTBDHtJEKBYg8Os11jM8CTvmw8ihAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUNTG5+ecBHzvkL5gCQPxRDD0/VKYwHwYDVR0j
BBgwFoAUK3AaCQCIDlDxPmdJwoiZiIEeyMEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRkQ5Sjk0S1Y5WEEzZ1J4WGt6ZER1aldFQm9uWTJaTmRmeTF3d2FWVEta
OEsvMS8yQjcwMUEwOTAwODgwRTUwRjEzRTY3NDlDMjg4OTk4ODgxMUVDOEMxLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJCNzAxQTA5MDA4ODBFNTBG
MTNFNjc0OUMyODg5OTg4ODExRUM4QzEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZEOUo5NEtWOVhBM2dSeFhremREdWpXRUJvblkyWk5kZnkxd3dhVlRLWjhLLzEv
MzIzODMwMzQzYTM3NjI2NDMwM2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk
M2UyMDMyMzczMTM0MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEe9CAMA0GCSqGSIb3DQEBCwUA
A4IBAQB2Bm6SUfGb0X003xQE4WGkgjQ4DDF6eT5w8XalHdELF9f/zF4dxqsg78Po
U/dcOx8EV4vj5mWzMEW6NSylf1z/xu+8GS3SuyjvBE4caezW44pLgdi4cQ3hRLBa
FBmyy74srXE6dlCD779kSR7R0Ry3JL4M4b4OSJGh2JtT9+FGP58ZhDr5rsj3VEAH
X8+ubryt6E7sXLYBKI5VqXPZ1rtjfqKhkX4QreQIImhUjHZ7lIoGCSRew11sfgFK
gYt+aQLGybuo25MQ2RnX+qfjZh3KnMycYqUWZIBZQya8LpyV+gWmpoFubjjtlT2D
qvemwaItJYGFQZr2XnWcR3iQJCr+
-----END CERTIFICATE-----
Generated at Fri Apr 11 14:00:30 2025 by rpki-client