Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/G2NE8j18y7aCi38U8GtMweraX7SqUgCqUaNU6kgdjmQT/1/34352e3233302e36382e302f32322d3234203d3e20323637313538.roa
File: 34352e3233302e36382e302f32322d3234203d3e20323637313538.roa (raw, json)
Hash identifier: 6MZcbAuJb39Tmb/hnFI8kU9HLtpp66kOeakT345Sp8I=
Subject key identifier: E3:06:B7:E1:2E:56:0C:CF:96:D8:55:3A:06:36:8B:DD:19:6B:09:FA
Certificate issuer: /CN=FD1925A97D11CC301B6F3B5F085AFBEF958C234D
Certificate serial: 31489D9C1D1C73138CBDE64C3524553A774BD5EB
Authority key identifier: FD:19:25:A9:7D:11:CC:30:1B:6F:3B:5F:08:5A:FB:EF:95:8C:23:4D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FD1925A97D11CC301B6F3B5F085AFBEF958C234D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/G2NE8j18y7aCi38U8GtMweraX7SqUgCqUaNU6kgdjmQT/1/34352e3233302e36382e302f32322d3234203d3e20323637313538.roa
Signing time: Thu 06 Mar 2025 12:33:17 +0000
ROA not before: Thu 06 Mar 2025 12:28:17 +0000
ROA not after: Thu 05 Mar 2026 12:33:17 +0000
asID: 267158
IP address blocks: 45.230.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:48:9d:9c:1d:1c:73:13:8c:bd:e6:4c:35:24:55:3a:77:4b:d5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD1925A97D11CC301B6F3B5F085AFBEF958C234D
Validity
Not Before: Mar 6 12:28:17 2025 GMT
Not After : Mar 5 12:33:17 2026 GMT
Subject: CN=E306B7E12E560CCF96D8553A06368BDD196B09FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fb:b4:f2:68:3e:12:03:96:0f:5e:66:78:2b:
b6:e7:d8:e1:f9:27:01:cb:eb:76:09:50:fd:e8:19:
5f:4b:ae:cd:de:b6:ed:e3:5e:9d:f1:66:3a:aa:ad:
0f:bb:62:59:f9:49:9c:6c:48:29:f8:8d:78:1a:e3:
ea:d0:d9:1b:67:18:7f:41:c9:1e:5e:18:ae:b3:55:
2c:a5:37:05:a9:42:fe:f3:10:58:74:f4:45:47:b8:
d4:b3:81:54:a4:c5:06:83:38:31:9b:dc:7d:c5:ec:
f2:5a:1e:25:02:da:65:35:72:aa:a4:c6:02:d1:97:
98:95:c0:a4:d8:de:0d:77:b2:28:b8:0f:23:89:a9:
c5:05:6f:a4:64:58:7f:ac:b6:3c:57:f7:00:e4:ff:
a1:a6:5e:f4:25:b5:0b:39:82:bb:1c:4c:de:bc:c2:
89:cb:50:b5:79:6a:3e:86:fa:7c:21:02:e7:58:95:
05:81:ce:27:c0:b8:ba:51:c1:96:ce:9e:d2:08:10:
cd:a2:68:cb:17:ab:58:83:3b:36:dc:43:20:32:35:
bb:7d:37:b8:ea:7d:b2:82:24:45:c2:16:e1:ae:80:
22:32:0b:ff:9d:ee:b2:15:47:ba:d1:75:03:06:ba:
a1:b9:09:83:7d:2f:a0:c4:ab:b6:c9:84:c7:96:97:
68:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:06:B7:E1:2E:56:0C:CF:96:D8:55:3A:06:36:8B:DD:19:6B:09:FA
X509v3 Authority Key Identifier:
keyid:FD:19:25:A9:7D:11:CC:30:1B:6F:3B:5F:08:5A:FB:EF:95:8C:23:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/G2NE8j18y7aCi38U8GtMweraX7SqUgCqUaNU6kgdjmQT/1/FD1925A97D11CC301B6F3B5F085AFBEF958C234D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FD1925A97D11CC301B6F3B5F085AFBEF958C234D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/G2NE8j18y7aCi38U8GtMweraX7SqUgCqUaNU6kgdjmQT/1/34352e3233302e36382e302f32322d3234203d3e20323637313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.230.68.0/22
Signature Algorithm: sha256WithRSAEncryption
70:7d:1e:34:36:c5:07:ca:e1:3f:ac:42:c7:e6:bb:4c:79:09:
8e:4b:e2:ca:52:56:82:37:7f:5b:6c:31:c0:c2:a6:db:13:aa:
10:e9:cd:01:95:d1:7f:0d:f6:49:e2:98:32:1c:ee:f1:85:43:
58:8e:e8:87:21:ec:61:02:04:99:39:6f:17:10:91:cb:e6:c2:
07:62:93:be:f6:63:19:bc:80:9b:7f:a4:46:a2:63:eb:28:c8:
ac:40:1e:a2:ac:e1:0e:ce:dc:e2:7c:8d:4b:71:2b:a0:b6:7d:
bf:9a:8a:8e:0b:0e:14:7e:1b:d0:99:ef:d3:3a:1c:f2:b1:55:
dd:be:64:73:0e:21:2b:99:6f:5d:06:63:4e:30:9d:38:9e:b4:
62:76:b2:94:e7:1d:d7:23:a7:e9:40:28:b0:ab:61:0e:13:28:
88:bc:6e:8c:f3:c3:b1:f6:d8:1a:35:29:7d:c4:82:ab:49:01:
b2:c9:f5:b9:14:8f:da:c0:f4:3e:51:ad:bf:8a:32:ac:7b:66:
54:a2:7e:80:b8:af:b1:8d:94:17:f8:d5:3e:bd:5e:be:ed:b0:
cf:d9:19:09:8a:bc:70:24:14:f4:af:d4:d1:a8:f4:58:a5:00:
12:95:f7:98:fd:6c:86:61:63:d0:fd:ac:e5:8e:f2:62:00:d8:
8a:7e:f7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 11:18:58 2025 by rpki-client