Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa
File: 3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa (raw, json)
Hash identifier: h+E102k9xPKF4Sz21FxAc+BV+uhgL3Z/j1CdcRvlZHY=
Subject key identifier: A0:00:68:E5:0D:04:E7:D2:6D:77:29:CC:93:FA:E8:E1:DB:BC:A6:F4
Certificate issuer: /CN=657731EA8AADBD36707C5C7D6615321C5380EEE0
Certificate serial: 2E5B09D00728AB24BDC1C8673A3FEB1ABCCB9502
Authority key identifier: 65:77:31:EA:8A:AD:BD:36:70:7C:5C:7D:66:15:32:1C:53:80:EE:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa
Signing time: Thu 04 Apr 2024 08:10:46 +0000
ROA not before: Thu 04 Apr 2024 08:05:46 +0000
ROA not after: Thu 03 Apr 2025 08:10:46 +0000
asID: 265080
IP address blocks: 170.233.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:5b:09:d0:07:28:ab:24:bd:c1:c8:67:3a:3f:eb:1a:bc:cb:95:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=657731EA8AADBD36707C5C7D6615321C5380EEE0
Validity
Not Before: Apr 4 08:05:46 2024 GMT
Not After : Apr 3 08:10:46 2025 GMT
Subject: CN=A00068E50D04E7D26D7729CC93FAE8E1DBBCA6F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:92:a3:b0:96:bd:52:1e:a7:5b:e6:4e:88:c6:
53:ab:57:08:fd:4e:f8:45:b5:67:65:68:90:04:d3:
30:08:87:2f:88:5d:d1:5a:50:2e:57:a8:e8:17:fb:
71:0b:e1:b6:86:3d:ee:41:e7:8b:ab:4d:1b:3d:c3:
fe:a6:e2:50:26:bd:0f:8d:f2:cf:62:00:f9:af:67:
83:2e:58:46:33:29:82:43:c7:bc:50:d3:ae:c0:32:
c0:a6:fb:7e:a3:66:c5:31:00:41:1f:b9:24:68:70:
cb:3e:96:f0:44:15:af:6c:ec:63:7b:77:13:b3:fb:
ea:7d:e7:b9:0f:e2:5b:2e:13:13:63:71:a3:a6:d0:
96:f0:79:c4:e5:0a:61:8a:8e:d2:3f:4d:46:ab:f9:
47:74:89:1e:cb:c4:d4:d4:e1:02:d0:a1:1f:e3:d8:
49:4f:7c:35:07:81:0a:4c:bb:24:e2:11:2c:de:50:
0d:c9:67:b4:c1:3f:06:11:3b:5b:df:70:6e:54:bb:
86:fe:b6:9d:b8:47:1e:3d:3b:a5:e3:3d:35:5e:dd:
f3:8c:5c:0c:d6:9f:13:50:fd:c9:7a:da:18:cb:fb:
9e:3f:cf:b0:1a:6f:7b:11:fa:83:78:cd:eb:19:dd:
76:c3:e4:d2:33:b6:c6:b0:5c:09:4f:cc:5b:7a:2c:
33:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:00:68:E5:0D:04:E7:D2:6D:77:29:CC:93:FA:E8:E1:DB:BC:A6:F4
X509v3 Authority Key Identifier:
keyid:65:77:31:EA:8A:AD:BD:36:70:7C:5C:7D:66:15:32:1C:53:80:EE:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32322d3232203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:40:a1:8f:b8:05:97:e1:a1:47:ca:a8:71:84:09:f5:a3:92:
7e:fa:9c:d4:1a:90:6d:a0:aa:fd:87:60:00:2b:fa:f8:d4:97:
51:d4:55:53:c2:9d:78:2a:3d:9a:7b:96:f3:72:f3:c6:cc:ce:
6c:3c:fc:2f:4a:e5:0c:f2:69:65:4f:af:ec:38:d6:a0:54:37:
14:44:75:13:e7:16:84:2d:b1:11:08:ff:bd:2b:a3:f8:26:d4:
ec:0d:2f:2c:2c:4c:f6:ec:ed:12:15:9d:64:dc:92:30:5d:d1:
b2:6e:30:88:7b:32:a9:3b:a0:4c:8a:2b:41:f5:64:0b:37:3e:
7f:b2:4b:b7:c1:1b:0b:7a:6f:39:4a:ef:47:4d:61:57:02:a2:
e1:c2:ee:64:bf:e1:7c:a0:2d:8c:84:42:8c:81:c8:12:41:2e:
ab:00:43:4a:42:1d:b0:0f:d4:fb:4f:cf:cc:1f:c0:9a:63:eb:
a3:d1:fe:4f:30:bc:ad:dc:86:a3:b5:72:ce:33:04:3c:c6:ca:
9a:bd:87:38:30:fb:f1:5a:dd:42:4b:fe:8a:fb:1d:b6:f2:f7:
24:cb:b9:fa:c6:8a:4f:68:c2:c9:00:a3:31:7c:69:05:36:16:
5a:65:ef:5c:77:89:1d:4c:cd:9f:59:69:64:f7:2a:0a:46:4e:
d2:08:32:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:15:03 2025 by rpki-client