Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
File: 3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa (raw, json)
Hash identifier: ndmhExQzP3gFehfz55Td4ZBggTuX/o/gIrAZd4gVpM0=
Subject key identifier: 69:B5:B7:79:AE:D6:6E:EB:4B:D1:EB:9B:32:B4:BB:CE:46:03:E8:30
Certificate issuer: /CN=D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF
Certificate serial: 5FC6B326DE332200BED00E860CAC2D65D7F5E3A3
Authority key identifier: D5:41:B9:E1:C0:D6:AC:17:BF:11:5B:B1:B7:A8:7B:29:BE:DD:B0:DF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
Signing time: Wed 30 Apr 2025 17:17:52 +0000
ROA not before: Wed 30 Apr 2025 17:12:52 +0000
ROA not after: Wed 29 Apr 2026 17:17:52 +0000
asID: 265080
IP address blocks: 170.233.122.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:c6:b3:26:de:33:22:00:be:d0:0e:86:0c:ac:2d:65:d7:f5:e3:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF
Validity
Not Before: Apr 30 17:12:52 2025 GMT
Not After : Apr 29 17:17:52 2026 GMT
Subject: CN=69B5B779AED66EEB4BD1EB9B32B4BBCE4603E830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:23:db:04:93:81:10:22:64:c8:0a:9e:b8:29:
39:54:8e:6f:51:29:50:70:dd:2e:18:b1:70:b2:f7:
3c:91:54:b2:47:a3:70:fc:60:cd:88:8d:9d:bc:f3:
9c:8e:e0:0f:df:87:f9:be:84:ed:da:75:77:c1:63:
03:5d:79:6d:ab:df:7f:3c:a7:29:d7:d3:c9:cb:20:
74:f6:39:8b:9e:4f:f6:3c:61:d0:2d:60:bc:bc:e2:
e9:57:0b:29:83:f0:69:e1:70:b7:d7:4d:27:1c:58:
15:b9:83:60:46:53:c8:36:33:0a:d4:61:90:b3:fb:
f9:b1:3c:60:4c:41:1f:83:d7:55:5b:2d:a9:1a:0e:
28:d7:e3:40:53:89:3b:b5:53:53:4f:46:31:b6:e7:
f1:78:71:07:f7:2f:95:54:49:fa:b4:45:6c:14:8a:
0e:5b:ea:3a:04:97:99:7f:44:0f:3f:d8:ac:80:5d:
e1:27:83:ce:d7:48:67:69:cb:b9:e9:b2:20:a2:87:
25:04:dc:74:a1:ac:b7:a8:13:6b:cd:95:72:93:55:
12:2c:07:96:71:91:7d:6c:ae:12:13:c9:35:50:ea:
6b:44:a0:66:e0:ed:52:a8:fc:73:5e:78:fc:ea:0f:
8c:72:e4:5b:0e:5e:bf:04:16:37:9d:b4:f1:1b:32:
24:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B5:B7:79:AE:D6:6E:EB:4B:D1:EB:9B:32:B4:BB:CE:46:03:E8:30
X509v3 Authority Key Identifier:
keyid:D5:41:B9:E1:C0:D6:AC:17:BF:11:5B:B1:B7:A8:7B:29:BE:DD:B0:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D541B9E1C0D6AC17BF115BB1B7A87B29BEDDB0DF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.122.0/23
Signature Algorithm: sha256WithRSAEncryption
11:32:49:ca:8b:71:67:d8:53:69:5c:0d:2b:60:48:19:91:4e:
86:f3:96:e5:3f:4f:5f:1d:50:8b:24:93:33:9b:11:8c:a3:1e:
9d:12:9e:80:95:5b:05:95:7a:4e:15:01:a5:b6:51:ce:20:f8:
64:b0:38:d7:ac:49:8d:3f:c4:5f:ab:5a:e1:f2:04:d1:9e:2e:
93:2d:b7:70:d3:76:62:d0:e8:6b:f5:32:93:1e:92:87:06:e6:
56:b1:2b:24:ef:92:63:27:a8:64:6f:62:39:11:ae:37:55:e2:
5c:cc:7c:5e:95:78:51:c8:71:01:85:5b:b1:98:0b:b3:cd:a2:
f9:13:a2:9f:f0:04:40:94:92:f2:d2:2d:60:af:db:66:e3:84:
c1:81:43:1c:94:a9:e1:bb:b0:29:04:48:8d:23:82:5a:78:fd:
02:79:02:79:85:00:04:a9:ac:5e:c7:59:f7:df:5f:5b:2a:dc:
66:81:67:54:6e:a6:f5:3a:cf:a8:cf:ad:9a:d3:8d:a7:8b:1e:
33:b1:4f:a1:59:f7:36:ef:b4:6c:e0:ed:60:05:a7:98:90:9e:
85:d5:c6:32:18:25:51:45:62:70:11:9e:a8:42:c1:a4:b8:e8:
99:0d:fb:ae:5b:ea:0a:f5:d6:04:98:fe:56:b5:39:80:a7:a3:
f6:5d:48:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:50:54 2025 by rpki-client