Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa
File: 3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa (raw, json)
Hash identifier: GlJ3RM2jDrN8FGyIQKG2qzMlH496TLIlHTWBMTt/ilo=
Subject key identifier: D2:F3:D7:2E:FA:02:04:CD:FF:7D:FF:88:63:84:35:70:EE:54:DE:87
Certificate issuer: /CN=209EFCD0E737A4897116B0C61EAC64613B3DD25C
Certificate serial: 449D39715EB3F5E83C65FC789FE17823EFEC3239
Authority key identifier: 20:9E:FC:D0:E7:37:A4:89:71:16:B0:C6:1E:AC:64:61:3B:3D:D2:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa
Signing time: Thu 14 Dec 2023 12:52:35 +0000
ROA not before: Thu 14 Dec 2023 12:47:35 +0000
ROA not after: Thu 12 Dec 2024 12:52:35 +0000
asID: 265080
IP address blocks: 170.233.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:9d:39:71:5e:b3:f5:e8:3c:65:fc:78:9f:e1:78:23:ef:ec:32:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=209EFCD0E737A4897116B0C61EAC64613B3DD25C
Validity
Not Before: Dec 14 12:47:35 2023 GMT
Not After : Dec 12 12:52:35 2024 GMT
Subject: CN=D2F3D72EFA0204CDFF7DFF8863843570EE54DE87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:90:13:cc:da:13:12:c3:45:79:bb:20:f1:0a:
80:ed:1a:93:da:24:ae:89:54:95:53:a5:4b:5a:26:
29:b0:84:f0:f7:03:2b:3b:34:66:81:1f:42:76:01:
41:dc:a6:ae:10:58:1a:32:d2:71:6c:69:42:aa:0a:
eb:9d:d2:d0:7d:ff:a3:ea:69:79:da:98:7e:17:b1:
b2:7a:af:16:52:fc:69:68:e5:ed:bd:7f:ae:99:ce:
04:db:73:89:a3:46:1f:8a:d2:69:14:e2:93:94:00:
77:b9:fd:1a:48:52:70:76:87:6e:ae:7c:70:20:78:
52:1a:f5:0f:5c:92:d8:97:24:89:6a:5a:a1:3a:14:
0d:c3:aa:c2:f9:37:28:b9:da:83:42:5b:7a:18:92:
c7:2c:63:05:4d:a6:9a:18:9c:74:28:55:c0:06:09:
ae:8f:99:42:90:81:69:e2:94:86:90:f3:18:d1:1c:
f0:16:d9:8c:c4:49:86:7f:4b:fd:ab:c8:e4:c9:84:
75:dc:d6:ae:42:21:28:d0:b0:93:cb:52:a3:89:1c:
ad:6a:a3:9a:75:e6:b2:c4:8a:46:6d:ca:99:50:b9:
2e:ee:bc:44:65:ec:30:ab:b9:a1:26:b5:b2:7b:56:
3c:21:8f:e2:fd:8c:25:e3:6e:db:34:3a:77:c5:be:
2f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F3:D7:2E:FA:02:04:CD:FF:7D:FF:88:63:84:35:70:EE:54:DE:87
X509v3 Authority Key Identifier:
keyid:20:9E:FC:D0:E7:37:A4:89:71:16:B0:C6:1E:AC:64:61:3B:3D:D2:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.121.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:8b:eb:bd:58:e6:ae:ee:2c:4c:c1:1c:11:3a:e7:6a:75:fe:
00:97:32:b3:1b:78:93:12:fc:84:8c:1a:84:a8:59:91:3b:80:
48:92:b3:79:2f:60:b5:e8:8e:e3:c8:1f:47:98:bb:e9:38:0c:
46:26:16:30:94:51:13:32:c1:30:73:ce:ec:b7:e4:7f:da:0e:
2e:a9:db:88:a1:ab:4d:76:d7:1f:c6:b7:8f:70:4b:89:02:38:
2a:e5:e0:37:16:5f:b0:58:ab:1c:a8:26:e6:46:b1:d9:80:d2:
fb:59:b0:ad:e6:1f:2e:55:aa:bf:f0:00:39:93:5a:3a:eb:17:
38:ee:ca:3a:ae:dd:ab:e1:22:f4:dc:52:75:bf:9c:9e:f5:71:
b7:ae:7d:8d:7b:49:55:0c:bd:a4:47:54:59:ec:a0:60:5c:41:
9c:4d:e0:d3:ab:8d:83:d0:04:37:45:66:e6:4e:e5:f0:ea:09:
59:d8:b8:e4:a6:26:0e:08:f3:3c:2c:b6:7d:a1:dc:ef:b1:3c:
c6:12:05:e9:9e:29:5a:01:f3:98:6a:8a:8b:93:81:66:56:9a:
30:d4:fe:c3:b2:9f:92:d3:c7:d0:53:43:c9:30:b9:21:1c:87:
bf:40:b9:32:78:a5:03:7f:ba:ba:a2:06:92:3a:c5:67:e1:70:
9a:af:4b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:39:45 2024 by rpki-client on console-fra.rpki-client.org