Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FhBsqUTKU7VKzkBcJQRpDNCigrTgcbVXZpvWzN3na53p/0/323830343a376461303a3a2f33322d3332203d3e20323731353733.roa
File: 323830343a376461303a3a2f33322d3332203d3e20323731353733.roa (raw, json)
Hash identifier: 2S5jPVpDtF/c3KX+7YrkDsURbXg6ohRU2xrGg9VcEpU=
Subject key identifier: 4F:19:CB:A9:C8:BF:DD:79:BA:DB:A1:8C:2D:1F:66:5A:29:4F:11:3E
Certificate issuer: /CN=EC3A9B6C1F6A69449CA21FD780F4F801F6CE6B06
Certificate serial: 7D3E4E029C046B098CD999987432AD6B39B8395B
Authority key identifier: EC:3A:9B:6C:1F:6A:69:44:9C:A2:1F:D7:80:F4:F8:01:F6:CE:6B:06
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC3A9B6C1F6A69449CA21FD780F4F801F6CE6B06.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FhBsqUTKU7VKzkBcJQRpDNCigrTgcbVXZpvWzN3na53p/0/323830343a376461303a3a2f33322d3332203d3e20323731353733.roa
Signing time: Fri 21 Mar 2025 18:33:46 +0000
ROA not before: Fri 21 Mar 2025 18:28:46 +0000
ROA not after: Fri 20 Mar 2026 18:33:46 +0000
asID: 271573
IP address blocks: 2804:7da0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:3e:4e:02:9c:04:6b:09:8c:d9:99:98:74:32:ad:6b:39:b8:39:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC3A9B6C1F6A69449CA21FD780F4F801F6CE6B06
Validity
Not Before: Mar 21 18:28:46 2025 GMT
Not After : Mar 20 18:33:46 2026 GMT
Subject: CN=4F19CBA9C8BFDD79BADBA18C2D1F665A294F113E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:66:bc:85:17:2e:98:c0:2b:df:a8:a2:00:
fa:1c:0d:6e:1e:72:c6:14:8a:8b:7b:2c:a1:83:d4:
b9:0d:8e:02:77:98:45:23:d3:01:5a:a3:30:02:0b:
d0:ad:31:63:a5:d6:a8:8e:fb:51:bf:d6:ac:20:f7:
78:d0:eb:65:bb:27:e6:4b:ca:f3:fb:c5:37:3e:32:
b1:57:1c:42:04:55:72:2f:d4:17:93:e4:a3:08:50:
d8:4e:7f:91:b5:c9:b5:68:51:ad:22:12:e5:bc:ff:
9c:30:9f:3e:6c:74:7e:76:15:bc:fa:19:b6:17:06:
91:7c:ec:d0:78:b7:c5:95:39:b2:4f:62:06:fb:5b:
70:ce:9a:22:89:20:04:25:2e:f2:33:d2:af:79:77:
89:b8:16:ef:00:de:6f:1c:0f:ed:6d:ad:cf:fd:44:
7b:90:d3:7a:df:91:84:59:36:a0:06:6a:67:2a:11:
a5:64:97:5f:c7:8d:bf:90:9c:40:ea:02:7f:d8:e6:
7f:99:11:0d:c9:40:cd:4c:10:ee:ce:6f:fe:bf:31:
a8:c1:ee:49:08:a3:2e:74:01:94:1f:a8:3d:05:2f:
66:cc:6f:03:2a:b6:c0:83:31:96:e0:63:6e:1b:02:
26:82:ee:37:0e:92:98:d0:72:bf:b0:44:15:aa:98:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:19:CB:A9:C8:BF:DD:79:BA:DB:A1:8C:2D:1F:66:5A:29:4F:11:3E
X509v3 Authority Key Identifier:
keyid:EC:3A:9B:6C:1F:6A:69:44:9C:A2:1F:D7:80:F4:F8:01:F6:CE:6B:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FhBsqUTKU7VKzkBcJQRpDNCigrTgcbVXZpvWzN3na53p/0/EC3A9B6C1F6A69449CA21FD780F4F801F6CE6B06.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EC3A9B6C1F6A69449CA21FD780F4F801F6CE6B06.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FhBsqUTKU7VKzkBcJQRpDNCigrTgcbVXZpvWzN3na53p/0/323830343a376461303a3a2f33322d3332203d3e20323731353733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:7da0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:76:12:69:ab:94:bb:d8:2e:56:e1:01:57:c3:93:1c:a6:d8:
d5:de:a1:52:b8:59:dd:f3:47:6f:60:2c:44:5d:c3:81:37:68:
b9:7e:36:21:32:64:fc:53:85:1f:e9:67:7b:b5:91:13:f1:3d:
c4:e7:6d:8e:57:d2:23:a8:0f:41:a6:d9:c1:29:b6:b8:3e:d4:
20:b5:45:6f:5c:65:a1:50:fa:8b:b8:9e:79:9d:ec:77:5a:d7:
59:ee:30:61:fe:b3:c9:96:eb:74:bf:95:67:e9:d7:8e:04:85:
ec:83:1f:4a:01:29:78:ad:c8:2b:66:ab:f4:a1:b9:0c:27:1d:
6d:28:53:fe:06:0e:bd:56:37:5d:b7:e9:a4:99:9b:4b:92:05:
68:db:e2:c8:cc:89:cd:1e:ca:be:4d:3c:24:27:25:96:b4:96:
dc:4f:81:98:0d:4a:07:68:45:00:99:33:93:87:af:cb:65:29:
20:d6:0c:00:ee:cb:e1:c0:83:04:de:ee:bb:e5:a8:f8:97:19:
1b:4a:31:ae:7e:fc:e5:72:74:17:30:3c:a7:e0:13:fd:d4:26:
87:07:00:11:75:81:f2:1e:5c:60:c0:1c:a5:a9:d5:06:79:10:
1e:42:71:bd:9c:0c:15:88:40:6c:ee:93:ab:80:80:a0:30:f7:
cf:f3:27:b3
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIUfT5OApwEawmM2ZmYdDKtazm4OVswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUMzQTlCNkMxRjZBNjk0NDlDQTIxRkQ3ODBGNEY4MDFG
NkNFNkIwNjAeFw0yNTAzMjExODI4NDZaFw0yNjAzMjAxODMzNDZaMDMxMTAvBgNV
BAMTKDRGMTlDQkE5QzhCRkRENzlCQURCQTE4QzJEMUY2NjVBMjk0RjExM0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr7ma8hRcumMAr36iiAPocDW4e
csYUiot7LKGD1LkNjgJ3mEUj0wFaozACC9CtMWOl1qiO+1G/1qwg93jQ62W7J+ZL
yvP7xTc+MrFXHEIEVXIv1BeT5KMIUNhOf5G1ybVoUa0iEuW8/5wwnz5sdH52Fbz6
GbYXBpF87NB4t8WVObJPYgb7W3DOmiKJIAQlLvIz0q95d4m4Fu8A3m8cD+1trc/9
RHuQ03rfkYRZNqAGamcqEaVkl1/Hjb+QnEDqAn/Y5n+ZEQ3JQM1MEO7Ob/6/MajB
7kkIoy50AZQfqD0FL2bMbwMqtsCDMZbgY24bAiaC7jcOkpjQcr+wRBWqmGf5AgMB
AAGjggJQMIICTDAdBgNVHQ4EFgQUTxnLqci/3Xm626GMLR9mWilPET4wHwYDVR0j
BBgwFoAU7DqbbB9qaUScoh/XgPT4AfbOawYwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRmhCc3FVVEtVN1ZLemtCY0pRUnBETkNpZ3JUZ2NiVlhacHZXek4zbmE1
M3AvMC9FQzNBOUI2QzFGNkE2OTQ0OUNBMjFGRDc4MEY0RjgwMUY2Q0U2QjA2LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0VDM0E5QjZDMUY2QTY5NDQ5
Q0EyMUZENzgwRjRGODAxRjZDRTZCMDYuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0ZoQnNxVVRLVTdWS3prQmNKUVJwRE5DaWdyVGdjYlZYWnB2V3pOM25hNTNwLzAv
MzIzODMwMzQzYTM3NjQ2MTMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNzMx
MzUzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKAR9oDANBgkqhkiG9w0BAQsFAAOCAQEAenYSaauU
u9guVuEBV8OTHKbY1d6hUrhZ3fNHb2AsRF3DgTdouX42ITJk/FOFH+lne7WRE/E9
xOdtjlfSI6gPQabZwSm2uD7UILVFb1xloVD6i7ieeZ3sd1rXWe4wYf6zyZbrdL+V
Z+nXjgSF7IMfSgEpeK3IK2ar9KG5DCcdbShT/gYOvVY3XbfppJmbS5IFaNviyMyJ
zR7Kvk08JCcllrSW3E+BmA1KB2hFAJkzk4evy2UpINYMAO7L4cCDBN7uu+Wo+JcZ
G0oxrn785XJ0FzA8p+AT/dQmhwcAEXWB8h5cYMAcpanVBnkQHkJxvZwMFYhAbO6T
q4CAoDD3z/Mnsw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 09:32:09 2025 by rpki-client