Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GALQ2GjDQSsYQm7CSXtHewQHfQF8QqtBHvs4MgHm1qxx/3/323830343a6531633a3a2f33322d3332203d3e203532353435.roa
File: 323830343a6531633a3a2f33322d3332203d3e203532353435.roa (raw, json)
Hash identifier: vOLxKqo8F9EpgsedM/6oFYx7S+R9yaoNTLTAAj9Y5Vs=
Subject key identifier: 5A:AA:25:E9:E3:A9:B7:17:93:75:92:2C:87:48:B5:00:4C:7D:4E:28
Certificate issuer: /CN=3525DEC2C298F98A0A0CC888E805E01C39FD63D7
Certificate serial: 708D53A6A8E409793A916D46C01FA44D739B6CF3
Authority key identifier: 35:25:DE:C2:C2:98:F9:8A:0A:0C:C8:88:E8:05:E0:1C:39:FD:63:D7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3525DEC2C298F98A0A0CC888E805E01C39FD63D7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GALQ2GjDQSsYQm7CSXtHewQHfQF8QqtBHvs4MgHm1qxx/3/323830343a6531633a3a2f33322d3332203d3e203532353435.roa
Signing time: Thu 06 Mar 2025 02:06:26 +0000
ROA not before: Thu 06 Mar 2025 02:01:26 +0000
ROA not after: Thu 05 Mar 2026 02:06:26 +0000
asID: 52545
IP address blocks: 2804:e1c::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:8d:53:a6:a8:e4:09:79:3a:91:6d:46:c0:1f:a4:4d:73:9b:6c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3525DEC2C298F98A0A0CC888E805E01C39FD63D7
Validity
Not Before: Mar 6 02:01:26 2025 GMT
Not After : Mar 5 02:06:26 2026 GMT
Subject: CN=5AAA25E9E3A9B7179375922C8748B5004C7D4E28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:92:00:87:b8:47:50:86:8a:93:ab:73:b1:db:
0a:c9:76:8a:3f:75:89:fa:4b:9d:4a:0b:41:4e:11:
25:8f:de:6c:49:4e:8f:3e:f3:07:ee:82:71:f4:57:
16:a6:6d:36:43:15:9e:7b:ab:d2:4a:14:23:49:d7:
6f:ec:77:7b:03:42:4f:df:4d:ca:c1:f7:23:35:24:
95:4d:bd:bd:d9:06:2e:fd:f7:bc:34:1b:4e:02:4a:
4a:4c:50:5e:f0:58:4f:ce:e9:5d:b1:88:ca:bf:a7:
ea:8c:68:4d:e6:1b:81:7d:e4:54:57:ca:c0:b8:cb:
0d:b8:44:ba:f2:79:76:f5:ca:f0:19:a5:73:71:f6:
98:f5:2d:97:05:c2:34:30:d5:29:23:a6:87:b7:2d:
48:e1:52:0a:c1:9c:2f:4f:e1:d8:4f:f0:a2:56:5b:
22:44:e9:aa:eb:ab:77:22:4d:ac:69:e3:b8:f6:a9:
e5:09:b6:24:94:2c:1b:c8:23:aa:60:60:9e:f4:86:
a8:da:46:93:84:fd:c3:4c:f9:6f:07:89:3c:06:71:
6f:45:2d:3c:81:7e:a0:e9:db:3d:08:d0:3b:0f:e3:
88:58:a2:12:cc:f1:db:df:9d:9c:33:0a:9d:e1:50:
a7:5d:ab:b8:95:d7:a6:e9:c0:f8:46:11:22:51:4a:
84:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AA:25:E9:E3:A9:B7:17:93:75:92:2C:87:48:B5:00:4C:7D:4E:28
X509v3 Authority Key Identifier:
keyid:35:25:DE:C2:C2:98:F9:8A:0A:0C:C8:88:E8:05:E0:1C:39:FD:63:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GALQ2GjDQSsYQm7CSXtHewQHfQF8QqtBHvs4MgHm1qxx/3/3525DEC2C298F98A0A0CC888E805E01C39FD63D7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3525DEC2C298F98A0A0CC888E805E01C39FD63D7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GALQ2GjDQSsYQm7CSXtHewQHfQF8QqtBHvs4MgHm1qxx/3/323830343a6531633a3a2f33322d3332203d3e203532353435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:e1c::/32
Signature Algorithm: sha256WithRSAEncryption
75:e8:16:6e:32:b5:29:ee:76:28:8c:33:35:80:06:cf:74:ab:
cc:6b:d9:89:aa:e9:ec:1e:c7:1f:9e:a8:1b:18:2d:6b:9e:1d:
6d:77:af:38:c2:c8:eb:ab:a8:ca:f9:f1:a2:c4:ca:62:fe:e4:
a1:f2:16:07:85:80:04:9f:c2:f4:a9:a7:86:a8:d2:46:ac:36:
1b:7f:b5:a5:59:90:39:8e:14:6c:73:17:41:6a:51:20:82:1f:
5d:4c:74:df:ce:9e:fb:17:e3:d9:df:2d:52:d7:fd:65:37:27:
ef:9f:ed:b7:e6:1a:40:a2:01:13:51:fa:af:c8:9d:99:2c:ed:
7e:63:89:0d:51:99:73:d7:7a:ad:a9:7f:c9:32:52:9b:9d:6c:
9c:ba:cd:11:b9:f3:74:00:0e:5e:01:98:fc:ad:1d:1b:fa:4a:
27:e1:a6:14:16:21:32:15:d3:f2:c9:3a:3e:6e:63:8f:f2:c7:
3c:8e:c8:b2:75:b8:f8:38:ec:42:2f:9a:c9:31:bc:69:d9:f2:
04:37:ad:55:0a:ed:5f:dd:c8:70:4b:cc:a0:1d:77:05:e6:2d:
c7:39:af:74:c0:e5:28:2e:e8:4c:4a:a5:89:58:07:be:ab:2b:
3c:3f:1a:f4:50:1e:1f:ec:cc:5e:7a:2b:ee:4d:d8:89:a1:4d:
77:62:ac:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 21:31:56 2025 by rpki-client