Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa
File: 323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa (raw, json)
Hash identifier: Ah07orKgVzDoYa5CaCWWikIO6WoBgUo5jExwPntTlqc=
Subject key identifier: 34:2D:4D:8E:40:DD:8F:A9:0A:67:D4:6C:E8:FB:75:1C:F5:88:6B:D4
Certificate issuer: /CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Certificate serial: 45896B3DB667B5F56652D6F288FF52162056BC4D
Authority key identifier: 1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa
Signing time: Wed 05 Mar 2025 21:26:30 +0000
ROA not before: Wed 05 Mar 2025 21:21:30 +0000
ROA not after: Wed 04 Mar 2026 21:26:30 +0000
asID: 263887
IP address blocks: 2804:2740:8000::/33 maxlen: 33
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl
rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 11:28:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:89:6b:3d:b6:67:b5:f5:66:52:d6:f2:88:ff:52:16:20:56:bc:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A
Validity
Not Before: Mar 5 21:21:30 2025 GMT
Not After : Mar 4 21:26:30 2026 GMT
Subject: CN=342D4D8E40DD8FA90A67D46CE8FB751CF5886BD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f7:91:58:03:48:ff:f4:f4:4e:53:2d:5e:c0:
79:6a:a5:2a:d8:54:3f:a2:bd:e1:53:0d:7e:cc:c9:
d8:8e:16:69:a6:4b:5b:c2:b0:87:e6:da:8c:02:ea:
3b:b4:f6:3f:86:7e:d5:31:cf:23:d8:98:b4:aa:99:
2e:9e:6c:7f:13:3f:e6:4b:ad:ed:01:83:46:fb:c3:
37:2f:5c:89:50:6e:c4:89:49:b6:89:fb:9f:9a:3b:
5a:a4:7d:b2:8d:41:89:e8:d8:03:7c:9d:1e:40:58:
da:a7:96:91:0c:8c:66:08:b4:c8:e6:b5:63:30:52:
e3:60:ce:60:6d:c4:2e:58:ee:3b:a9:e7:f4:9c:8b:
3a:1c:1c:b5:07:44:a8:03:a5:be:da:2e:be:f6:bb:
c6:ee:fb:5b:42:fe:5f:77:43:5c:b2:67:da:41:ff:
d0:e2:6c:03:5f:c1:7b:8a:ad:3c:52:05:bc:5b:32:
48:71:c0:05:46:9c:e9:02:a1:84:01:91:74:1e:20:
41:65:f9:07:f6:b8:86:9d:4a:3b:5e:f5:24:f5:6e:
3e:f0:3b:37:ab:7f:f6:a6:80:38:ae:89:9e:64:e2:
b9:28:43:04:e8:d2:b1:88:28:fa:92:99:8f:b2:b6:
01:b5:c3:30:ec:3b:0c:a0:38:88:06:6a:a8:b0:81:
35:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2D:4D:8E:40:DD:8F:A9:0A:67:D4:6C:E8:FB:75:1C:F5:88:6B:D4
X509v3 Authority Key Identifier:
keyid:1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/323830343a323734303a383030303a3a2f33332d3333203d3e20323633383837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2740:8000::/33
Signature Algorithm: sha256WithRSAEncryption
06:be:a6:35:ef:eb:94:af:70:65:da:f9:91:11:77:ad:59:86:
84:40:12:66:ff:24:96:76:dd:db:68:37:32:0a:2e:84:96:7c:
63:89:5e:a4:8c:11:03:83:a7:27:05:2c:af:c5:03:3d:7b:01:
f5:1d:33:4f:02:23:67:6d:72:86:e7:f2:a8:82:c0:37:9c:2a:
33:0e:b5:34:8c:bc:ca:d0:6c:21:c5:60:12:86:9c:44:ca:56:
ff:83:29:dc:d3:89:57:76:6d:ef:14:ae:ef:d6:48:9c:03:6c:
ff:f2:d0:da:90:8d:67:b4:8b:ce:70:b9:e2:59:bb:8a:20:a8:
30:fa:06:a1:8d:4f:1e:a3:1a:65:44:74:e6:e6:01:8f:4f:c3:
81:98:70:a1:85:76:b2:70:ba:0f:17:0d:65:97:61:aa:5c:85:
51:3d:fc:9e:88:7b:c2:96:2f:31:08:d6:b1:03:29:6b:88:57:
9d:69:19:d0:a1:37:b0:9f:f1:22:6d:d7:da:71:d2:fe:5d:4d:
5c:24:ff:18:b5:c3:99:5a:cb:c8:dd:9a:23:56:38:70:78:d1:
aa:c2:14:f3:a6:1a:06:4c:77:79:6a:4c:91:69:c3:c6:de:43:
1b:ef:ae:31:a5:39:d0:e6:f1:6a:aa:3f:95:71:ba:cf:0a:b8:
d3:9e:f9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 00:06:39 2025 by rpki-client