Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa
File: 3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa (raw, json)
Hash identifier: ltXPTH5hRN/eXYPov/bKSb7yUHPZvp+cyuxeQBwdjm4=
Subject key identifier: 9E:FD:68:FE:4D:5B:F4:94:1D:C4:E3:C3:36:C9:3B:53:3C:D3:84:95
Certificate issuer: /CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Certificate serial: 15E431F6772C9CF3E208E380C41A495A7E4E9CC5
Authority key identifier: 1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa
Signing time: Wed 05 Mar 2025 21:26:30 +0000
ROA not before: Wed 05 Mar 2025 21:21:30 +0000
ROA not after: Wed 04 Mar 2026 21:26:30 +0000
asID: 263887
IP address blocks: 138.204.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:e4:31:f6:77:2c:9c:f3:e2:08:e3:80:c4:1a:49:5a:7e:4e:9c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Validity
Not Before: Mar 5 21:21:30 2025 GMT
Not After : Mar 4 21:26:30 2026 GMT
Subject: CN=9EFD68FE4D5BF4941DC4E3C336C93B533CD38495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:11:57:98:41:92:25:d2:57:e5:25:75:02:
38:f1:f7:6c:d0:e3:22:f9:aa:1e:08:a1:cd:a8:1a:
c0:c2:4d:ed:e8:eb:63:4a:66:ff:22:49:8d:ef:d6:
f3:e4:be:2f:80:16:2b:c9:b4:54:4f:b2:9e:fc:c1:
17:3b:88:5c:fd:a1:62:66:c9:5f:93:3b:54:aa:9a:
dc:9f:0b:67:6d:83:3d:60:11:fa:67:7c:3f:1b:da:
f3:f4:5e:04:17:23:d4:1f:12:4e:eb:0a:71:16:5a:
a1:4b:fb:a0:85:44:30:b8:2e:b9:e7:6b:cf:eb:25:
3a:6f:73:3c:11:a7:63:fe:c0:b4:f7:47:12:16:4f:
70:2a:7b:9f:bd:f0:3a:d3:8f:6d:2d:01:0c:e5:71:
56:5d:26:18:3b:0a:69:b1:20:e9:3e:4c:02:75:e3:
a2:cd:b3:cf:00:9d:e9:83:6c:ce:b2:d8:ee:1b:09:
49:ca:83:b1:3b:f9:bf:c1:cc:2c:8a:2e:47:36:c3:
15:23:df:17:c6:ac:9f:01:3d:54:c4:47:8f:bf:0d:
21:73:c9:03:36:99:3a:33:c3:a9:00:80:16:31:b1:
21:85:4d:ca:8b:f3:22:05:81:63:a6:83:70:67:63:
2e:03:71:97:e0:6a:6a:9b:df:b1:a9:a4:2a:e0:da:
5d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:FD:68:FE:4D:5B:F4:94:1D:C4:E3:C3:36:C9:3B:53:3C:D3:84:95
X509v3 Authority Key Identifier:
keyid:1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132392e302f32342d3234203d3e20323633383837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.129.0/24
Signature Algorithm: sha256WithRSAEncryption
52:54:58:a8:b2:9b:70:5e:5c:d4:00:f9:63:51:29:fe:f0:14:
c7:7e:5f:be:34:90:df:78:de:84:a5:c0:bc:3f:14:14:f4:f3:
06:e1:57:5f:2d:48:d5:20:8e:a6:64:e2:ba:be:32:99:b9:2b:
ab:c0:2c:ed:c6:16:59:cb:7b:7b:d8:be:4c:3f:a7:6f:b0:80:
1f:73:54:b3:d0:a2:35:71:e4:01:81:30:4f:e8:c1:4b:0e:45:
34:7c:a0:a9:07:10:02:e8:65:7d:f0:6c:09:46:2a:66:3f:4f:
37:ee:6b:f5:85:d7:21:d2:6b:9c:cd:38:09:12:e0:64:4b:01:
37:45:a7:f4:f1:d4:88:7a:19:46:df:66:65:6d:2a:da:fe:a1:
69:ed:06:55:2e:80:ce:4f:f1:bd:17:7e:9d:d3:d9:45:9d:e9:
a6:5d:77:49:44:48:32:90:5a:fa:78:51:2b:81:23:00:ac:de:
8b:55:47:0c:5a:6a:c5:10:11:cd:46:ab:c4:9c:f9:9b:e8:91:
32:db:a1:35:3c:3b:1b:ee:bb:66:ce:25:fe:2a:4f:f6:aa:96:
a7:da:f8:97:6b:f6:03:03:92:a5:be:cf:df:41:a2:51:99:d0:
49:c6:b2:6a:b1:49:47:a8:2f:03:80:97:34:14:57:f1:60:a7:
bf:37:f7:02
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUFeQx9ncsnPPiCOOAxBpJWn5OnMUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUI0QTlGNjY5MjRFMDQ4MEIzNUM1MTNBRjIwRDBDNUQx
MjA0QkM5QTAeFw0yNTAzMDUyMTIxMzBaFw0yNjAzMDQyMTI2MzBaMDMxMTAvBgNV
BAMTKDlFRkQ2OEZFNEQ1QkY0OTQxREM0RTNDMzM2QzkzQjUzM0NEMzg0OTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC28hFXmEGSJdJX5SV1Ajjx92zQ
4yL5qh4Ioc2oGsDCTe3o62NKZv8iSY3v1vPkvi+AFivJtFRPsp78wRc7iFz9oWJm
yV+TO1SqmtyfC2dtgz1gEfpnfD8b2vP0XgQXI9QfEk7rCnEWWqFL+6CFRDC4Lrnn
a8/rJTpvczwRp2P+wLT3RxIWT3Aqe5+98DrTj20tAQzlcVZdJhg7CmmxIOk+TAJ1
46LNs88AnemDbM6y2O4bCUnKg7E7+b/BzCyKLkc2wxUj3xfGrJ8BPVTER4+/DSFz
yQM2mTozw6kAgBYxsSGFTcqL8yIFgWOmg3BnYy4DcZfgamqb37GppCrg2l2tAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUnv1o/k1b9JQdxOPDNsk7UzzThJUwHwYDVR0j
BBgwFoAUG0qfZpJOBICzXFE68g0MXRIEvJowDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRlFLU3Rta1NFTUZzZGdiTFlIeHNWSkVhRmtmb1pFVkxSeTQ5eDNHb3dE
SDIvMC8xQjRBOUY2NjkyNEUwNDgwQjM1QzUxM0FGMjBEMEM1RDEyMDRCQzlBLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFCNEE5RjY2OTI0RTA0ODBC
MzVDNTEzQUYyMEQwQzVEMTIwNEJDOUEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZRS1N0bWtTRU1Gc2RnYkxZSHhzVkpFYUZrZm9aRVZMUnk0OXgzR293REgyLzAv
MzEzMzM4MmUzMjMwMzQyZTMxMzIzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzMzM4MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIrMgTANBgkqhkiG9w0BAQsFAAOCAQEAUlRY
qLKbcF5c1AD5Y1Ep/vAUx35fvjSQ33jehKXAvD8UFPTzBuFXXy1I1SCOpmTiur4y
mbkrq8As7cYWWct7e9i+TD+nb7CAH3NUs9CiNXHkAYEwT+jBSw5FNHygqQcQAuhl
ffBsCUYqZj9PN+5r9YXXIdJrnM04CRLgZEsBN0Wn9PHUiHoZRt9mZW0q2v6hae0G
VS6Azk/xvRd+ndPZRZ3ppl13SURIMpBa+nhRK4EjAKzei1VHDFpqxRARzUarxJz5
m+iRMtuhNTw7G+67Zs4l/ipP9qqWp9r4l2v2AwOSpb7P30GiUZnQScayarFJR6gv
A4CXNBRX8WCnvzf3Ag==
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:11 2025 by rpki-client