Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33332d3333203d3e20323635303830.roa
File: 323830343a333237383a3a2f33332d3333203d3e20323635303830.roa (raw, json)
Hash identifier: lYNrWTyW+aSabICkTdvF9KT3XGOV00JB6tHnb6qEQR4=
Subject key identifier: D7:16:60:D7:CA:F3:AA:96:5E:36:AA:23:9F:EE:91:39:02:CD:2A:F0
Certificate issuer: /CN=D606CC74EC936AA8ED7F384A9E1B7C0A945C0A38
Certificate serial: 57443C833231CC37FBB0627C677C0EA126FA1227
Authority key identifier: D6:06:CC:74:EC:93:6A:A8:ED:7F:38:4A:9E:1B:7C:0A:94:5C:0A:38
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D606CC74EC936AA8ED7F384A9E1B7C0A945C0A38.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33332d3333203d3e20323635303830.roa
Signing time: Mon 10 Feb 2025 17:25:09 +0000
ROA not before: Mon 10 Feb 2025 17:20:09 +0000
ROA not after: Mon 09 Feb 2026 17:25:09 +0000
asID: 265080
IP address blocks: 2804:3278::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:44:3c:83:32:31:cc:37:fb:b0:62:7c:67:7c:0e:a1:26:fa:12:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D606CC74EC936AA8ED7F384A9E1B7C0A945C0A38
Validity
Not Before: Feb 10 17:20:09 2025 GMT
Not After : Feb 9 17:25:09 2026 GMT
Subject: CN=D71660D7CAF3AA965E36AA239FEE913902CD2AF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ac:d3:56:b4:5d:68:98:65:e9:f0:f1:c6:ee:
04:79:2c:41:ba:35:bf:a8:29:cc:61:95:98:fa:c1:
d6:29:ca:15:df:f2:cb:2d:b2:4f:3e:28:cd:97:5f:
df:ad:bb:0a:1d:6c:13:08:a3:ec:3c:c3:c5:d8:aa:
7d:1b:66:5a:4e:1b:c1:af:ad:f2:b3:1b:34:5f:03:
f2:ba:6f:a1:20:d7:ab:d0:dd:43:d4:97:5b:38:3a:
b8:6c:d6:45:62:6e:e4:b5:2a:29:c0:69:27:25:15:
5b:00:c2:8f:be:25:4c:f3:63:55:e0:a5:dc:c1:95:
31:7f:3b:75:92:73:04:e9:22:97:60:54:ec:06:83:
d6:35:41:07:5c:9e:9c:c2:32:2d:68:85:4d:d4:fa:
e8:71:f1:ec:4d:e5:10:06:26:66:cd:68:04:f5:26:
09:44:20:b3:72:72:5f:51:ae:9a:ca:ca:c8:1d:78:
67:30:c8:65:9c:5f:d3:c8:6a:e5:bb:7b:0e:4f:8a:
7c:9b:78:dc:7d:b2:66:1d:c8:2d:fc:79:76:43:44:
1d:3f:1a:ad:e0:be:36:99:33:ec:ab:56:0f:72:4c:
ee:87:50:27:20:ee:e7:d6:73:ca:58:b3:95:0d:84:
27:d7:b9:1a:3a:01:3f:83:b8:7c:57:1c:0a:bf:a5:
ad:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:16:60:D7:CA:F3:AA:96:5E:36:AA:23:9F:EE:91:39:02:CD:2A:F0
X509v3 Authority Key Identifier:
keyid:D6:06:CC:74:EC:93:6A:A8:ED:7F:38:4A:9E:1B:7C:0A:94:5C:0A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/D606CC74EC936AA8ED7F384A9E1B7C0A945C0A38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D606CC74EC936AA8ED7F384A9E1B7C0A945C0A38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33332d3333203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3278::/33
Signature Algorithm: sha256WithRSAEncryption
60:0f:f4:d5:70:3e:1a:6f:bc:2b:94:ab:cb:a0:95:0c:7f:df:
80:5b:57:99:e3:ba:5d:4d:61:5b:a4:f8:ee:2f:7c:6f:8f:6d:
46:71:80:8b:9b:39:66:de:1a:5f:a0:14:53:d6:85:4b:3b:33:
71:d2:56:ff:e0:52:c4:0e:59:18:b0:cd:3e:b4:e7:23:cd:1e:
d2:79:e2:9e:23:8f:6b:49:e2:bc:3c:01:ad:8f:42:e9:24:9f:
31:e6:0b:4c:7a:24:23:e4:9c:36:a5:e7:0b:47:c1:38:65:0f:
89:4b:d3:a0:b1:d9:4d:9f:27:a1:b2:1a:f5:14:ca:64:94:89:
a4:c0:11:65:db:2b:7a:e1:c4:bf:07:37:ed:a5:99:64:86:76:
78:df:5e:b3:d9:7d:5a:7c:20:78:84:d8:0a:da:7d:cf:c9:8a:
81:b7:b6:82:a0:ad:99:79:59:45:02:2b:0d:d7:c6:1d:5c:56:
12:57:d5:9d:7b:49:f0:54:6e:a6:1d:7c:ca:a1:48:3b:75:f5:
4b:7c:f3:87:c0:3b:1f:aa:63:ce:72:47:4e:4a:9f:9c:c1:3c:
4e:7b:ca:64:25:12:56:cb:c8:1e:fb:be:d4:fd:80:f0:a3:2d:
d3:93:e3:99:23:c9:52:e2:31:78:2b:bc:9d:2e:19:6b:01:f0:
5f:fb:fa:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 03:28:19 2025 by rpki-client