Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FQzWMHW4dL8srzo7aH1Fn3seZQLqRss72W4r8UbRRQG9/0/3138372e34392e302e302f32312d3332203d3e203238313338.roa
File: 3138372e34392e302e302f32312d3332203d3e203238313338.roa (raw, json)
Hash identifier: XvjYZvOsBmEA/crXmZ2tLP3NeLlhs89lmWk7+qscDHQ=
Subject key identifier: 8E:49:DC:AD:5D:18:7D:A2:E4:22:65:41:6F:36:DA:A2:62:7B:39:F8
Certificate issuer: /CN=B90C4665B62CA51669AB68FE5718C2DF3E1AF674
Certificate serial: 4822ADF6E776A61FC5A80A9FF11531EA523EF012
Authority key identifier: B9:0C:46:65:B6:2C:A5:16:69:AB:68:FE:57:18:C2:DF:3E:1A:F6:74
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B90C4665B62CA51669AB68FE5718C2DF3E1AF674.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FQzWMHW4dL8srzo7aH1Fn3seZQLqRss72W4r8UbRRQG9/0/3138372e34392e302e302f32312d3332203d3e203238313338.roa
Signing time: Mon 31 Mar 2025 20:34:18 +0000
ROA not before: Mon 31 Mar 2025 20:29:18 +0000
ROA not after: Mon 30 Mar 2026 20:34:18 +0000
asID: 28138
IP address blocks: 187.49.0.0/21 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:22:ad:f6:e7:76:a6:1f:c5:a8:0a:9f:f1:15:31:ea:52:3e:f0:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B90C4665B62CA51669AB68FE5718C2DF3E1AF674
Validity
Not Before: Mar 31 20:29:18 2025 GMT
Not After : Mar 30 20:34:18 2026 GMT
Subject: CN=8E49DCAD5D187DA2E42265416F36DAA2627B39F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:36:79:ad:dd:79:41:d6:6d:9b:9f:41:58:42:
4b:38:3d:62:94:90:0b:c3:f4:40:b0:60:2d:93:e0:
21:b9:42:4c:3c:0f:f3:59:bd:34:d9:9c:ab:31:9e:
ec:db:56:09:4c:fa:fa:ea:c2:13:6d:30:4a:7a:fd:
d6:af:d2:99:97:58:0a:c0:0b:4d:9f:f0:5b:54:c8:
42:d9:fe:ba:2e:11:84:d6:f6:dd:58:83:1e:47:f3:
12:dd:50:d8:5c:e2:8d:71:2b:c6:c3:c5:09:34:1f:
b6:6e:c3:a1:85:b7:b7:31:9b:f5:75:15:62:4e:5a:
ab:ae:1e:d4:8a:2c:a4:e0:19:02:b3:ea:4a:dc:61:
2f:6d:3d:ef:06:7e:3f:16:e7:1f:38:e9:91:0c:a6:
fd:df:03:db:ca:a3:ca:65:ac:a4:f1:bf:3a:49:c7:
dd:c2:d2:73:e4:c7:63:f3:b8:a9:a2:8f:b6:0c:81:
f3:fa:76:bb:f4:aa:f3:0d:ce:5e:89:a0:f3:08:d0:
44:f1:0b:6b:66:8d:e1:f0:63:b7:9f:37:05:84:e5:
f1:c9:0c:7a:8d:f4:8a:bc:20:d5:05:d3:b8:22:61:
84:3f:ad:b2:e9:19:74:65:9d:9c:70:41:67:c8:a3:
49:db:da:77:50:2e:f5:e8:b8:b2:72:23:9c:c4:19:
ba:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:49:DC:AD:5D:18:7D:A2:E4:22:65:41:6F:36:DA:A2:62:7B:39:F8
X509v3 Authority Key Identifier:
keyid:B9:0C:46:65:B6:2C:A5:16:69:AB:68:FE:57:18:C2:DF:3E:1A:F6:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FQzWMHW4dL8srzo7aH1Fn3seZQLqRss72W4r8UbRRQG9/0/B90C4665B62CA51669AB68FE5718C2DF3E1AF674.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B90C4665B62CA51669AB68FE5718C2DF3E1AF674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQzWMHW4dL8srzo7aH1Fn3seZQLqRss72W4r8UbRRQG9/0/3138372e34392e302e302f32312d3332203d3e203238313338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.49.0.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:e5:8a:33:c3:45:73:20:43:ad:e6:65:ee:2a:a8:33:5e:d4:
69:19:31:c0:43:aa:37:11:27:bd:95:60:6c:f9:31:4b:f5:d4:
d2:8f:c0:4e:cc:c2:ce:c9:39:62:3c:f8:e2:14:9f:e0:b2:1e:
85:57:f0:21:51:a4:24:7f:2e:3b:ca:de:d6:da:e2:1e:31:22:
82:e2:18:6e:1b:77:1d:b5:e5:4c:85:af:19:28:f0:ba:b6:04:
95:e3:a9:b8:42:ee:3a:16:bc:8a:2c:cf:88:08:13:76:38:96:
15:00:e3:26:4c:2f:c0:43:6d:22:b2:21:dd:5a:cf:1f:b8:de:
b4:65:76:32:ff:55:73:92:ad:37:17:b7:74:29:8a:0d:e2:0b:
0b:55:eb:52:5c:cd:85:81:c4:d3:79:70:dc:63:10:da:99:91:
fd:47:ba:70:8b:2e:5a:59:b4:28:3c:84:c4:af:28:97:bd:2f:
1d:be:9c:66:f3:24:68:56:9e:29:78:08:33:87:55:1f:ce:d2:
c2:a3:30:a0:b1:dc:60:87:de:fe:5a:80:a6:99:ff:bd:1d:e6:
f2:04:b5:e6:90:30:22:83:c2:f0:2e:58:99:25:3d:10:3b:35:
de:e7:ef:f5:30:d8:01:14:4a:7c:88:dd:a6:a1:5c:3a:66:1a:
a3:d2:50:f1
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIUSCKt9ud2ph/FqAqf8RUx6lI+8BIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjkwQzQ2NjVCNjJDQTUxNjY5QUI2OEZFNTcxOEMyREYz
RTFBRjY3NDAeFw0yNTAzMzEyMDI5MThaFw0yNjAzMzAyMDM0MThaMDMxMTAvBgNV
BAMTKDhFNDlEQ0FENUQxODdEQTJFNDIyNjU0MTZGMzZEQUEyNjI3QjM5RjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBNnmt3XlB1m2bn0FYQks4PWKU
kAvD9ECwYC2T4CG5Qkw8D/NZvTTZnKsxnuzbVglM+vrqwhNtMEp6/dav0pmXWArA
C02f8FtUyELZ/rouEYTW9t1Ygx5H8xLdUNhc4o1xK8bDxQk0H7Zuw6GFt7cxm/V1
FWJOWquuHtSKLKTgGQKz6krcYS9tPe8Gfj8W5x846ZEMpv3fA9vKo8plrKTxvzpJ
x93C0nPkx2PzuKmij7YMgfP6drv0qvMNzl6JoPMI0ETxC2tmjeHwY7efNwWE5fHJ
DHqN9Iq8INUF07giYYQ/rbLpGXRlnZxwQWfIo0nb2ndQLvXouLJyI5zEGbo1AgMB
AAGjggJLMIICRzAdBgNVHQ4EFgQUjkncrV0YfaLkImVBbzbaomJ7OfgwHwYDVR0j
BBgwFoAUuQxGZbYspRZpq2j+VxjC3z4a9nQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRlF6V01IVzRkTDhzcnpvN2FIMUZuM3NlWlFMcVJzczcyVzRyOFViUlJR
RzkvMC9COTBDNDY2NUI2MkNBNTE2NjlBQjY4RkU1NzE4QzJERjNFMUFGNjc0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I5MEM0NjY1QjYyQ0E1MTY2
OUFCNjhGRTU3MThDMkRGM0UxQUY2NzQuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB
lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZReldNSFc0ZEw4c3J6bzdhSDFGbjNzZVpRTHFSc3M3Mlc0cjhVYlJSUUc5LzAv
MzEzODM3MmUzNDM5MmUzMDJlMzAyZjMyMzEyZDMzMzIyMDNkM2UyMDMyMzgzMTMz
Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAO7MQAwDQYJKoZIhvcNAQELBQADggEBAKXlijPDRXMgQ63m
Ze4qqDNe1GkZMcBDqjcRJ72VYGz5MUv11NKPwE7Mws7JOWI8+OIUn+CyHoVX8CFR
pCR/LjvK3tba4h4xIoLiGG4bdx215UyFrxko8Lq2BJXjqbhC7joWvIosz4gIE3Y4
lhUA4yZML8BDbSKyId1azx+43rRldjL/VXOSrTcXt3Qpig3iCwtV61JczYWBxNN5
cNxjENqZkf1HunCLLlpZtCg8hMSvKJe9Lx2+nGbzJGhWnil4CDOHVR/O0sKjMKCx
3GCH3v5agKaZ/70d5vIEteaQMCKDwvAuWJklPRA7Nd7n7/Uw2AEUSnyI3aahXDpm
GqPSUPE=
-----END CERTIFICATE-----
Generated at Fri Jun 6 20:35:07 2025 by rpki-client