Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FQAqyYyGLWxxRbH5Kcphz5179dwcBq8hYNc1QsiakML2/1/3230302e3136302e39362e302f32302d3234203d3e203238353733.roa
File: 3230302e3136302e39362e302f32302d3234203d3e203238353733.roa (raw, json)
Hash identifier: 9FLQHnjp3h1180camV3GHd8xREKlJMn5pMBp1SAPwEs=
Subject key identifier: 68:C7:97:67:07:AA:3F:CB:72:7A:FE:4D:E2:E5:54:A5:EA:28:8D:5D
Certificate issuer: /CN=5FA02B6F8F4DBBD98AC9A9D0C77B0521D5A6BD0A
Certificate serial: 3787DE88839C7CC4231761613D40072ECE4C2D90
Authority key identifier: 5F:A0:2B:6F:8F:4D:BB:D9:8A:C9:A9:D0:C7:7B:05:21:D5:A6:BD:0A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5FA02B6F8F4DBBD98AC9A9D0C77B0521D5A6BD0A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FQAqyYyGLWxxRbH5Kcphz5179dwcBq8hYNc1QsiakML2/1/3230302e3136302e39362e302f32302d3234203d3e203238353733.roa
Signing time: Wed 05 Mar 2025 19:00:09 +0000
ROA not before: Wed 05 Mar 2025 18:55:09 +0000
ROA not after: Wed 04 Mar 2026 19:00:09 +0000
asID: 28573
IP address blocks: 200.160.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:87:de:88:83:9c:7c:c4:23:17:61:61:3d:40:07:2e:ce:4c:2d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FA02B6F8F4DBBD98AC9A9D0C77B0521D5A6BD0A
Validity
Not Before: Mar 5 18:55:09 2025 GMT
Not After : Mar 4 19:00:09 2026 GMT
Subject: CN=3082010A0282010100D2AEAB6F7D2CB03F451A4E724F390E4425377691D820A646C6D40ABA83FC3AE9A3FC8D96DCFA334809A80073EA58B34B25B67FE200012BD14724F07036C12AE8361566977370FA4EF678BBD5ADF42240A1BD444E0B6B5581C2EAC6EA7159B5ED8116E2F0A943968DA5AD0E22622526A88E1344E16D97B7EE25578EE1CC88FFBE1687D0E67EEF42E6D15E9F954CDA8BD61AA2FA6413CCD6B77306C2FB0D96009CB1660A81C5EEE8D97217FD3E331E68DDEB714639FA15947D15F0507F4EB0530A46F5294225494CCF02CD575A6ABDBA45E2CB7965B525E566FBD64BE22869CF7DFBA96A7F6DA0A1BEBE0C424509784B3540531F767BE9C275C7190980016AACD90203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ae:ab:6f:7d:2c:b0:3f:45:1a:4e:72:4f:39:
0e:44:25:37:76:91:d8:20:a6:46:c6:d4:0a:ba:83:
fc:3a:e9:a3:fc:8d:96:dc:fa:33:48:09:a8:00:73:
ea:58:b3:4b:25:b6:7f:e2:00:01:2b:d1:47:24:f0:
70:36:c1:2a:e8:36:15:66:97:73:70:fa:4e:f6:78:
bb:d5:ad:f4:22:40:a1:bd:44:4e:0b:6b:55:81:c2:
ea:c6:ea:71:59:b5:ed:81:16:e2:f0:a9:43:96:8d:
a5:ad:0e:22:62:25:26:a8:8e:13:44:e1:6d:97:b7:
ee:25:57:8e:e1:cc:88:ff:be:16:87:d0:e6:7e:ef:
42:e6:d1:5e:9f:95:4c:da:8b:d6:1a:a2:fa:64:13:
cc:d6:b7:73:06:c2:fb:0d:96:00:9c:b1:66:0a:81:
c5:ee:e8:d9:72:17:fd:3e:33:1e:68:dd:eb:71:46:
39:fa:15:94:7d:15:f0:50:7f:4e:b0:53:0a:46:f5:
29:42:25:49:4c:cf:02:cd:57:5a:6a:bd:ba:45:e2:
cb:79:65:b5:25:e5:66:fb:d6:4b:e2:28:69:cf:7d:
fb:a9:6a:7f:6d:a0:a1:be:be:0c:42:45:09:78:4b:
35:40:53:1f:76:7b:e9:c2:75:c7:19:09:80:01:6a:
ac:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C7:97:67:07:AA:3F:CB:72:7A:FE:4D:E2:E5:54:A5:EA:28:8D:5D
X509v3 Authority Key Identifier:
keyid:5F:A0:2B:6F:8F:4D:BB:D9:8A:C9:A9:D0:C7:7B:05:21:D5:A6:BD:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FQAqyYyGLWxxRbH5Kcphz5179dwcBq8hYNc1QsiakML2/1/5FA02B6F8F4DBBD98AC9A9D0C77B0521D5A6BD0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5FA02B6F8F4DBBD98AC9A9D0C77B0521D5A6BD0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQAqyYyGLWxxRbH5Kcphz5179dwcBq8hYNc1QsiakML2/1/3230302e3136302e39362e302f32302d3234203d3e203238353733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.160.96.0/20
Signature Algorithm: sha256WithRSAEncryption
50:9a:42:6f:fb:1f:d1:dd:4d:6f:97:02:86:2b:00:7d:10:7f:
1e:72:14:aa:01:7b:9d:67:01:52:24:b2:b1:9a:bf:f1:24:f9:
9a:0b:37:fe:c7:87:22:47:42:55:fe:3e:5c:d8:91:55:36:a9:
25:2c:41:8e:ad:85:4f:d2:6a:11:be:1a:ff:50:43:80:05:38:
71:9c:4b:84:c3:74:87:24:93:0b:c3:c3:d2:7b:38:3b:4a:7e:
5a:3a:62:65:f7:18:e8:74:af:1e:d2:be:8c:5e:3e:f4:d7:02:
e3:c3:08:5b:f5:4a:84:3a:36:ce:fb:f7:19:ca:94:9c:9c:92:
6e:02:2b:bc:a5:96:ed:84:df:a8:53:2a:bc:15:43:db:47:48:
c5:ba:e8:86:8a:7a:e0:30:3b:12:43:26:ac:4b:7c:7b:5d:f7:
82:eb:68:c7:4a:ac:9c:c7:d0:ca:fd:33:fe:23:58:16:e5:26:
16:21:08:d3:64:4f:6f:f2:d2:be:f7:a9:04:ce:6e:9e:27:a1:
85:b1:08:31:48:35:1d:ee:2c:d5:6f:3b:91:89:c0:2e:08:fa:
49:60:9d:50:d4:2d:0d:65:94:bc:6f:f6:e5:8e:6f:a8:01:64:
b0:27:0a:d1:49:32:2b:86:6e:46:a3:f5:1d:57:a6:c5:ec:66:
98:f0:cf:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:40:27 2025 by rpki-client