Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa
File: 3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa (raw, json)
Hash identifier: kmIRGj1fhf03MXuw1hdXcrBQ3h5XYAbyeuMqLkDoVOQ=
Subject key identifier: 56:17:2D:6A:27:A4:D3:CD:0C:36:79:F4:48:29:EA:AC:D9:1F:37:FB
Certificate issuer: /CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Certificate serial: 114350A61AF57E95A6FABA4CF67E99EAD6AA3B7B
Authority key identifier: 1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa
Signing time: Wed 05 Mar 2025 21:26:30 +0000
ROA not before: Wed 05 Mar 2025 21:21:30 +0000
ROA not after: Wed 04 Mar 2026 21:26:30 +0000
asID: 263887
IP address blocks: 138.204.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:43:50:a6:1a:f5:7e:95:a6:fa:ba:4c:f6:7e:99:ea:d6:aa:3b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Validity
Not Before: Mar 5 21:21:30 2025 GMT
Not After : Mar 4 21:26:30 2026 GMT
Subject: CN=56172D6A27A4D3CD0C3679F44829EAACD91F37FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:ca:f2:cd:06:b7:36:0f:76:90:19:9d:88:
cb:b1:72:7a:9b:a7:f7:ed:19:61:b5:c0:b7:45:5f:
f3:12:ba:36:9e:5b:94:a9:be:25:5f:da:dc:e1:b7:
38:07:03:17:e8:52:27:26:bc:06:ef:17:69:a8:52:
f9:34:1c:c3:e4:34:41:99:4e:c8:73:aa:51:ef:40:
0f:53:99:9d:89:63:76:5f:f8:e4:50:32:98:97:39:
d3:0f:3c:e2:83:2b:f5:3d:93:4e:ca:4a:0b:92:59:
28:9b:ce:6a:11:1f:9a:2f:5c:4d:22:8f:72:03:1d:
70:40:4a:30:19:0e:ae:93:7f:58:69:f0:4e:40:0a:
fd:f1:b6:d9:1b:8b:6b:5d:32:5f:be:0c:f3:51:c9:
3a:9d:30:57:41:e5:84:ad:85:9b:b2:82:91:c3:e9:
43:07:e4:77:a3:65:4d:a9:fe:22:8d:a2:ee:ad:55:
2b:a5:e6:04:60:9d:a2:4f:e7:4a:5b:e7:df:2d:49:
96:9b:bf:0e:30:ce:42:2c:8c:f0:40:17:de:fe:95:
ec:00:7f:f1:7f:ee:64:12:c1:aa:ec:eb:05:1c:01:
13:89:b5:cc:23:d0:0f:e8:52:4a:45:70:83:69:e3:
31:c9:10:d2:c0:60:58:54:8b:a9:df:62:db:df:5a:
bb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:17:2D:6A:27:A4:D3:CD:0C:36:79:F4:48:29:EA:AC:D9:1F:37:FB
X509v3 Authority Key Identifier:
keyid:1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3133312e302f32342d3234203d3e20323633383837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.131.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:fe:6b:4b:63:0b:6b:56:06:46:f0:ce:f9:86:ad:66:7b:24:
2f:97:11:32:c1:a0:db:b7:77:8a:ee:9f:66:2e:4c:64:05:d3:
52:91:49:f3:35:22:e5:b0:11:70:12:8e:e3:e6:6f:40:92:0d:
21:56:e0:59:57:f7:2a:0e:f9:40:5a:4e:e3:20:c4:cf:f7:cf:
bb:10:2b:13:18:d5:d2:5f:d8:0d:08:42:dd:16:0d:57:33:f6:
6d:f7:f3:fd:ab:cc:de:e6:2b:9d:b0:06:97:ff:c0:21:b0:41:
69:fc:3a:7c:4e:57:0a:ac:25:52:bb:c4:66:a6:f8:48:ae:19:
34:84:50:0c:95:6f:97:bd:06:0b:45:ee:68:a5:27:02:d2:90:
0d:ba:39:47:94:80:33:64:e0:e3:f6:b9:23:a1:55:6e:59:5c:
d3:1d:4f:ab:66:e6:ac:a2:9e:5a:b8:24:17:17:12:c8:2f:5d:
f3:c2:8f:c7:46:28:87:92:1f:b4:62:77:6a:a1:06:e7:0c:43:
80:d7:58:ec:8b:c0:95:bb:fe:bd:9b:2d:49:ca:90:b5:6e:90:
bd:4f:aa:84:d9:94:4e:48:bd:ca:c9:1d:33:27:38:33:f5:53:
8b:21:c7:43:dc:f3:61:0b:3b:92:ea:60:3e:37:f1:92:fc:86:
a1:15:12:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:19:09 2025 by rpki-client