Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
File: 3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa (raw, json)
Hash identifier: Qo8V7STD9pBMiUGUibbYE+yn8Kosi6mvjv8+Z566OPY=
Subject key identifier: 56:6A:F1:6D:57:50:B0:2D:43:4D:F8:5D:DF:AA:6D:F5:F6:13:61:69
Certificate issuer: /CN=209EFCD0E737A4897116B0C61EAC64613B3DD25C
Certificate serial: 590616DAE044F37035013C6303106E8E1FAC990E
Authority key identifier: 20:9E:FC:D0:E7:37:A4:89:71:16:B0:C6:1E:AC:64:61:3B:3D:D2:5C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
Signing time: Thu 14 Dec 2023 12:52:35 +0000
ROA not before: Thu 14 Dec 2023 12:47:35 +0000
ROA not after: Thu 12 Dec 2024 12:52:35 +0000
asID: 265080
IP address blocks: 170.233.122.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:06:16:da:e0:44:f3:70:35:01:3c:63:03:10:6e:8e:1f:ac:99:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=209EFCD0E737A4897116B0C61EAC64613B3DD25C
Validity
Not Before: Dec 14 12:47:35 2023 GMT
Not After : Dec 12 12:52:35 2024 GMT
Subject: CN=566AF16D5750B02D434DF85DDFAA6DF5F6136169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1e:04:50:9c:88:81:a2:c2:12:9d:ac:26:4a:
dc:15:79:5a:8b:0a:05:88:dd:d5:ce:9b:72:e7:9f:
bc:6c:66:9d:20:02:de:d5:db:17:46:e8:34:32:71:
e7:32:21:7d:37:91:ab:fc:5d:a3:8e:c6:db:0d:f8:
ed:de:0e:76:10:d9:49:aa:a3:b8:0c:b6:a1:82:8e:
6d:5b:62:c3:b1:7a:4f:9c:c0:c1:fe:8c:0b:d1:fb:
bf:38:b6:93:24:18:14:fb:ba:ee:74:80:2f:be:b9:
0a:20:d4:89:dd:4d:6d:13:d2:41:a3:d0:bc:3e:e7:
fc:cf:02:59:e3:21:51:15:eb:6b:3a:ad:80:dc:b3:
ee:44:b2:2d:4a:e9:cb:dc:59:1f:6a:f5:6a:0b:53:
51:10:50:8a:14:87:37:8c:8f:54:d2:ef:91:90:b8:
dc:b9:5b:5c:23:ed:d5:41:4e:41:4f:f1:8b:7a:b4:
03:0a:85:44:19:91:1a:39:0c:da:5c:4f:e9:46:d4:
bb:2a:b7:7e:01:f7:12:69:9b:02:45:83:44:5a:c2:
ed:ca:94:e6:d9:96:01:7d:7b:6f:25:4b:e7:e1:51:
db:4e:bc:98:db:9b:1a:f4:b0:cb:e8:3f:5e:8d:20:
db:c8:0c:76:f6:04:fa:c8:79:8a:03:aa:93:1c:97:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6A:F1:6D:57:50:B0:2D:43:4D:F8:5D:DF:AA:6D:F5:F6:13:61:69
X509v3 Authority Key Identifier:
keyid:20:9E:FC:D0:E7:37:A4:89:71:16:B0:C6:1E:AC:64:61:3B:3D:D2:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/209EFCD0E737A4897116B0C61EAC64613B3DD25C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132322e302f32332d3233203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.122.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:9d:42:11:c7:3f:1b:29:68:cb:ac:eb:b0:6c:42:c1:4c:55:
0b:f0:fe:22:4f:df:df:ca:f5:5c:3a:b0:35:c3:c0:70:6a:67:
e9:c7:36:84:95:05:66:de:04:4b:f4:9c:48:e1:37:81:7d:1d:
1b:89:ef:54:42:41:0a:15:99:4d:93:13:37:df:0e:13:7e:77:
37:63:5e:bc:4b:ca:f6:8f:a8:26:78:7a:82:34:d0:2e:d6:91:
d1:a1:bc:26:34:52:f6:63:2c:38:81:33:9c:37:46:7a:86:f8:
7d:52:3f:34:3f:01:6d:79:43:56:a3:15:09:74:0f:7f:01:2e:
25:3c:67:26:cf:56:e1:3f:d7:44:8e:59:53:29:36:b1:1e:92:
0f:ec:55:ad:0c:90:d9:07:7c:4f:22:36:dc:63:cf:41:1d:ad:
32:60:c6:6a:50:98:9c:58:d4:7d:5e:5d:26:5d:42:61:47:f2:
29:d9:f7:7c:64:ff:88:ae:4d:31:84:52:ff:87:a4:11:c4:9d:
3a:49:72:7d:8a:9a:f4:9e:f1:29:9a:87:44:93:69:b9:a6:c5:
db:5d:37:19:15:15:73:2e:c4:d5:cc:d1:80:d4:55:f8:bb:e6:
7c:2e:16:f1:e5:7c:a6:2e:6a:73:c1:c2:5a:72:a0:b2:7d:9b:
7b:6e:f1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:03 2024 by rpki-client on console-ams.rpki-client.org