Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa
File: 3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa (raw, json)
Hash identifier: 52qhikkD2GCeEtZxVZi3u6aKEvfUbB35ca60lTxF6uI=
Subject key identifier: 1E:A4:3A:F3:79:E6:43:CF:64:94:28:E9:DA:C4:04:55:C7:AB:01:F9
Certificate issuer: /CN=657731EA8AADBD36707C5C7D6615321C5380EEE0
Certificate serial: 5C9F4B76F8B3C8424E54B189607B01B058492E16
Authority key identifier: 65:77:31:EA:8A:AD:BD:36:70:7C:5C:7D:66:15:32:1C:53:80:EE:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa
Signing time: Thu 04 Apr 2024 08:10:46 +0000
ROA not before: Thu 04 Apr 2024 08:05:46 +0000
ROA not after: Thu 03 Apr 2025 08:10:46 +0000
asID: 265080
IP address blocks: 170.233.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:9f:4b:76:f8:b3:c8:42:4e:54:b1:89:60:7b:01:b0:58:49:2e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=657731EA8AADBD36707C5C7D6615321C5380EEE0
Validity
Not Before: Apr 4 08:05:46 2024 GMT
Not After : Apr 3 08:10:46 2025 GMT
Subject: CN=1EA43AF379E643CF649428E9DAC40455C7AB01F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0e:6c:d4:07:09:c9:93:47:ba:79:d9:03:91:
c9:f0:64:e9:83:fb:7e:c1:b7:c3:18:19:5e:e9:41:
12:cc:88:4c:ba:95:e5:26:aa:26:23:d5:37:31:04:
55:48:f4:12:03:e7:a0:c3:02:0d:d6:db:07:8d:d6:
19:b6:81:a0:59:3b:9a:48:42:ad:d1:3b:1a:b3:bb:
99:ef:3a:77:38:de:6f:08:bd:31:b2:bf:ab:8e:91:
e6:ff:33:fd:32:aa:b2:cc:33:e0:ff:6f:93:7a:0d:
92:85:a9:ec:37:a5:f9:e0:72:21:1b:01:51:ac:93:
27:f0:cc:76:68:ed:c8:39:0e:ff:47:45:f7:85:02:
69:6a:8b:01:07:7d:de:7c:2d:00:00:bc:ea:ae:f5:
81:3c:4e:8e:c6:0b:7f:d0:e7:53:72:c0:6e:7f:97:
4d:8d:2b:81:56:38:2b:32:ec:47:64:7c:e6:6b:a8:
22:cd:b7:10:24:72:84:93:d4:53:67:a6:45:55:5b:
3d:40:b5:be:b5:61:86:34:a4:93:bd:3c:20:a5:88:
cb:55:7a:ec:8f:6f:7f:02:b3:78:96:6f:be:6b:fe:
1a:94:d3:fc:86:38:42:1c:30:bd:7e:94:a5:3b:4f:
e9:23:2f:6d:3b:e7:77:52:e5:60:55:61:7f:6b:27:
ad:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A4:3A:F3:79:E6:43:CF:64:94:28:E9:DA:C4:04:55:C7:AB:01:F9
X509v3 Authority Key Identifier:
keyid:65:77:31:EA:8A:AD:BD:36:70:7C:5C:7D:66:15:32:1C:53:80:EE:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/657731EA8AADBD36707C5C7D6615321C5380EEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/1/3137302e3233332e3132302e302f32342d3234203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.120.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c5:b6:69:14:50:c5:71:c7:55:e6:f6:4f:20:80:bc:1c:3e:
f8:cc:2d:bf:f1:df:f7:79:83:3b:e1:d7:6e:ed:e8:8d:2d:63:
66:36:45:06:e6:98:f5:91:91:5f:6f:62:45:77:8a:83:e9:7c:
d0:09:e2:91:fc:bc:38:6a:4e:7f:94:cf:8e:b3:cd:2a:7b:67:
d7:be:9a:1b:db:db:75:6f:36:ac:d7:44:da:34:7a:b1:83:ce:
4a:d1:97:90:67:dc:97:47:9f:b3:2b:88:7b:37:56:e9:59:f2:
4b:9b:02:0e:a1:26:53:e2:69:ff:72:af:7f:42:1d:8e:f2:eb:
0a:5f:15:01:19:ce:59:ff:39:8b:0c:7b:91:21:8a:fa:09:6a:
cd:09:73:85:02:98:1d:2c:63:be:7c:3e:5e:11:59:df:21:ae:
ce:d3:8a:da:3d:25:28:60:57:1b:4c:c6:5b:0d:8f:d7:6f:7f:
15:c8:2d:59:9a:ea:e3:25:bd:ac:3e:7f:eb:a5:db:b7:85:f3:
c8:b5:5c:46:94:ea:3f:9b:3b:4c:91:ec:17:21:73:fc:66:5f:
5e:9b:d0:d2:36:80:ed:84:b7:3c:e6:49:5f:82:da:87:d1:f7:
0d:ea:c7:45:33:54:fc:dc:da:67:65:97:9d:81:ba:4c:0f:c3:
ed:dc:56:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:58:22 2025 by rpki-client