Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa
File: 323830343a316365303a3a2f33322d3332203d3e203631363830.roa (raw, json)
Hash identifier: ppan4gv0K+ZiQ3TGJ4RRkU2+VzrCQCw3cD/Qk3tm07o=
Subject key identifier: CB:F9:79:A8:C6:03:7E:63:B8:3C:E9:39:45:89:D1:F9:C9:B0:9B:25
Certificate issuer: /CN=9D1976629022211514D82A46F1AF3344D2E667F3
Certificate serial: 4ABB140EC959220B7CCB8452D93CD6BB3EAF8521
Authority key identifier: 9D:19:76:62:90:22:21:15:14:D8:2A:46:F1:AF:33:44:D2:E6:67:F3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D1976629022211514D82A46F1AF3344D2E667F3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa
Signing time: Mon 23 Dec 2024 12:58:02 +0000
ROA not before: Mon 23 Dec 2024 12:53:02 +0000
ROA not after: Mon 22 Dec 2025 12:58:02 +0000
asID: 61680
IP address blocks: 2804:1ce0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:bb:14:0e:c9:59:22:0b:7c:cb:84:52:d9:3c:d6:bb:3e:af:85:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D1976629022211514D82A46F1AF3344D2E667F3
Validity
Not Before: Dec 23 12:53:02 2024 GMT
Not After : Dec 22 12:58:02 2025 GMT
Subject: CN=CBF979A8C6037E63B83CE9394589D1F9C9B09B25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2b:ee:37:51:bc:62:56:5e:ab:55:61:4b:90:
32:8a:f6:58:13:8f:6f:09:0b:10:d0:8a:21:46:49:
16:2b:6b:10:e6:2f:37:d2:ee:13:6f:1f:1b:1d:b3:
8e:6a:03:40:3c:78:16:6c:16:91:46:11:89:90:38:
ee:56:14:65:de:aa:aa:94:15:4e:b1:49:90:a7:2b:
df:ee:bc:62:07:07:fb:8c:6d:bc:71:3e:32:a0:74:
4c:f2:50:d5:d2:93:57:4f:38:9d:13:2a:9f:4c:ea:
0c:8b:b8:a5:f0:ae:38:96:8f:c1:86:30:b2:53:2e:
ca:f4:f9:33:71:05:f0:3d:c2:ca:2b:65:24:0d:32:
4e:7f:93:75:41:47:cf:5e:cb:c2:74:6b:8e:1b:d1:
5f:69:62:68:bb:3b:c7:7c:3a:47:44:a8:22:3f:30:
fa:88:d9:3e:a2:36:60:58:5c:81:14:f7:c8:11:81:
42:fb:2f:db:6b:35:8e:85:66:fa:ee:9e:6e:9c:30:
dc:e9:c7:03:2e:70:66:4d:49:9e:90:bb:36:d3:02:
e4:a9:bf:a3:9b:2a:b6:c5:05:6d:ca:e2:42:9a:ce:
32:78:f0:23:dc:c6:dd:86:7b:bf:05:49:8f:9d:9e:
d2:3e:0f:01:d3:89:e5:9c:fd:0e:f4:43:b3:1a:72:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F9:79:A8:C6:03:7E:63:B8:3C:E9:39:45:89:D1:F9:C9:B0:9B:25
X509v3 Authority Key Identifier:
keyid:9D:19:76:62:90:22:21:15:14:D8:2A:46:F1:AF:33:44:D2:E6:67:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/9D1976629022211514D82A46F1AF3344D2E667F3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D1976629022211514D82A46F1AF3344D2E667F3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FoWstCYvKbPxQ7mCpDhXxSDcY5WZMpBuQiWaQ3odVjxr/0/323830343a316365303a3a2f33322d3332203d3e203631363830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1ce0::/32
Signature Algorithm: sha256WithRSAEncryption
53:2c:8c:a1:f7:a0:e2:1d:ae:55:96:9d:3f:1a:8f:0b:9c:f9:
e1:0a:86:91:a0:b7:20:49:6c:19:62:bc:b5:48:55:11:19:0e:
96:b2:47:7d:11:17:56:0e:89:ac:c3:7e:7d:b9:c7:9c:3a:c4:
14:f9:ad:90:cb:b0:68:ef:cc:9d:e7:f1:6f:46:ba:89:1f:c1:
1b:5e:cc:a3:56:ba:81:6c:95:bd:c9:17:65:6d:3f:6f:9e:7c:
04:b1:21:c0:4e:ff:b4:0f:92:49:6a:17:9b:0e:0d:e0:1e:84:
b4:51:79:e6:91:81:44:bc:e0:4c:92:82:db:b2:ae:e8:04:9d:
f0:39:8d:2b:50:67:a7:08:3b:35:e1:8e:33:2c:86:b6:33:45:
5e:42:74:72:c0:6b:b6:c8:7c:d2:67:47:37:98:4a:6f:5f:88:
41:53:cd:eb:63:f5:b0:eb:fc:69:5b:27:d4:49:ca:b0:5e:42:
35:35:89:c5:a5:81:43:76:01:0b:72:19:a9:0c:6f:39:46:15:
1f:4a:8b:7a:29:48:de:48:25:5f:4c:0e:b4:7f:ba:b6:48:a3:
e6:0e:cc:cd:df:7f:cd:54:1b:76:22:4b:62:ff:a4:7f:39:73:
5e:eb:b1:5c:69:1c:eb:4b:07:08:58:9e:6a:f9:90:cc:75:d4:
f7:dc:e5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:12:07 2025 by rpki-client