Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GEH7UUpY7TRmEbYWtKdWSVne5gBzxfvNQLyF7WsuabaP/1/3230302e3232302e3136382e302f32322d3232203d3e203631333137.roa
File: 3230302e3232302e3136382e302f32322d3232203d3e203631333137.roa (raw, json)
Hash identifier: p3T1Qalg2D7P23olAjS0OopPN6AOeGupaXZ94nlNK0Y=
Subject key identifier: EC:CF:CB:31:2E:8F:0E:C9:FE:A4:02:EC:AF:16:59:C2:92:02:71:5D
Certificate issuer: /CN=801C62756CEAB17FA0153A254E96D04D8EA570B3
Certificate serial: 055E9B10E51740348A588D348E02FEE7CA6AF371
Authority key identifier: 80:1C:62:75:6C:EA:B1:7F:A0:15:3A:25:4E:96:D0:4D:8E:A5:70:B3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/801C62756CEAB17FA0153A254E96D04D8EA570B3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GEH7UUpY7TRmEbYWtKdWSVne5gBzxfvNQLyF7WsuabaP/1/3230302e3232302e3136382e302f32322d3232203d3e203631333137.roa
Signing time: Thu 06 Mar 2025 14:53:41 +0000
ROA not before: Thu 06 Mar 2025 14:48:41 +0000
ROA not after: Thu 05 Mar 2026 14:53:41 +0000
asID: 61317
IP address blocks: 200.220.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:5e:9b:10:e5:17:40:34:8a:58:8d:34:8e:02:fe:e7:ca:6a:f3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=801C62756CEAB17FA0153A254E96D04D8EA570B3
Validity
Not Before: Mar 6 14:48:41 2025 GMT
Not After : Mar 5 14:53:41 2026 GMT
Subject: CN=ECCFCB312E8F0EC9FEA402ECAF1659C29202715D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:89:cf:52:f2:4f:1a:bb:75:a5:7b:6c:03:2a:
44:d4:f5:34:fd:37:a6:d4:db:c8:c0:f0:7a:50:c9:
fa:85:cc:77:9c:47:ac:2c:25:f3:fb:5b:c0:25:f2:
fe:4b:98:e1:9c:ac:7f:40:ac:85:4e:bf:5a:7c:28:
3b:fb:29:2d:7f:b8:5e:56:af:b8:dd:af:00:93:fb:
2f:37:68:54:df:4f:f4:0e:68:2e:92:7d:b8:8b:94:
06:4c:08:ab:b4:5d:f9:2f:38:b7:26:75:24:34:5b:
ea:40:7d:4d:9a:de:7b:c9:c0:f4:91:41:97:a2:0b:
83:c2:e8:b7:39:57:35:6e:1d:4a:7d:3f:ba:c7:05:
08:ee:01:a6:f8:df:5f:7e:2d:32:7c:95:b8:62:28:
0d:35:fd:0d:4c:0b:e3:ff:02:05:9c:9e:ac:ac:28:
bd:ad:14:df:b7:0a:9d:de:40:5b:48:de:80:d4:81:
9c:a5:81:78:ff:9f:18:7f:c9:e9:d5:2f:fa:3c:d1:
1c:a8:c5:e3:9c:65:87:ec:b5:f6:3d:5d:ad:10:12:
43:8e:05:71:9b:c1:34:49:84:b5:2b:a5:72:92:88:
68:df:42:b6:da:29:9c:e8:eb:3e:13:5f:f4:4e:44:
ac:92:5f:fc:e5:bf:f1:4d:42:f1:ff:32:76:24:51:
57:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:CF:CB:31:2E:8F:0E:C9:FE:A4:02:EC:AF:16:59:C2:92:02:71:5D
X509v3 Authority Key Identifier:
keyid:80:1C:62:75:6C:EA:B1:7F:A0:15:3A:25:4E:96:D0:4D:8E:A5:70:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GEH7UUpY7TRmEbYWtKdWSVne5gBzxfvNQLyF7WsuabaP/1/801C62756CEAB17FA0153A254E96D04D8EA570B3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/801C62756CEAB17FA0153A254E96D04D8EA570B3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GEH7UUpY7TRmEbYWtKdWSVne5gBzxfvNQLyF7WsuabaP/1/3230302e3232302e3136382e302f32322d3232203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.220.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:f3:51:a7:f6:59:65:26:e4:50:8a:2f:9a:96:59:d6:5e:63:
81:8b:24:14:d5:9f:ff:5a:2c:fe:13:44:e3:e5:cb:4d:e3:6c:
61:cd:6f:6c:e9:e2:4b:4a:27:46:31:c4:71:9c:af:e0:dc:e9:
2e:5f:68:60:c7:e9:72:91:b4:21:84:94:41:4f:f7:71:74:38:
a6:ca:82:a7:1d:89:b7:db:1d:c5:6e:b3:b7:7b:86:2f:b2:62:
9b:a6:63:c2:55:29:15:a6:61:4c:22:16:6d:f5:67:65:3e:c4:
9a:fa:25:b1:39:21:61:2b:75:93:df:6b:d3:32:e3:3b:23:f9:
6b:7f:89:92:32:5a:b7:4e:15:da:ca:62:d3:da:48:c9:a0:cc:
63:75:1b:56:2e:4a:85:1d:4e:0f:e0:11:93:cf:0c:39:be:86:
db:06:91:50:a1:48:8d:43:62:75:10:ad:64:02:bb:23:81:5b:
73:de:a7:35:45:08:97:a0:c6:41:e5:ca:5d:b2:b5:4a:77:99:
4a:4b:96:19:d7:19:fc:7a:cf:0d:9c:d3:02:8a:64:ad:76:95:
84:20:f0:b5:f0:8c:21:76:07:0b:41:b7:0a:ac:8f:de:43:f3:
da:5e:f7:91:22:f2:2a:d5:f0:d4:4c:5d:ae:02:93:a4:36:8d:
ab:e5:d4:ce
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUBV6bEOUXQDSKWI00jgL+58pq83EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODAxQzYyNzU2Q0VBQjE3RkEwMTUzQTI1NEU5NkQwNEQ4
RUE1NzBCMzAeFw0yNTAzMDYxNDQ4NDFaFw0yNjAzMDUxNDUzNDFaMDMxMTAvBgNV
BAMTKEVDQ0ZDQjMxMkU4RjBFQzlGRUE0MDJFQ0FGMTY1OUMyOTIwMjcxNUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaic9S8k8au3Wle2wDKkTU9TT9
N6bU28jA8HpQyfqFzHecR6wsJfP7W8Al8v5LmOGcrH9ArIVOv1p8KDv7KS1/uF5W
r7jdrwCT+y83aFTfT/QOaC6SfbiLlAZMCKu0XfkvOLcmdSQ0W+pAfU2a3nvJwPSR
QZeiC4PC6Lc5VzVuHUp9P7rHBQjuAab4319+LTJ8lbhiKA01/Q1MC+P/AgWcnqys
KL2tFN+3Cp3eQFtI3oDUgZylgXj/nxh/yenVL/o80RyoxeOcZYfstfY9Xa0QEkOO
BXGbwTRJhLUrpXKSiGjfQrbaKZzo6z4TX/RORKySX/zlv/FNQvH/MnYkUVftAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQU7M/LMS6PDsn+pALsrxZZwpICcV0wHwYDVR0j
BBgwFoAUgBxidWzqsX+gFTolTpbQTY6lcLMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR0VIN1VVcFk3VFJtRWJZV3RLZFdTVm5lNWdCenhmdk5RTHlGN1dzdWFi
YVAvMS84MDFDNjI3NTZDRUFCMTdGQTAxNTNBMjU0RTk2RDA0RDhFQTU3MEIzLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzgwMUM2Mjc1NkNFQUIxN0ZB
MDE1M0EyNTRFOTZEMDREOEVBNTcwQjMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dFSDdVVXBZN1RSbUViWVd0S2RXU1ZuZTVnQnp4ZnZOUUx5RjdXc3VhYmFQLzEv
MzIzMDMwMmUzMjMyMzAyZTMxMzYzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDM2
MzEzMzMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBALI3KgwDQYJKoZIhvcNAQELBQADggEBAA7zUaf2
WWUm5FCKL5qWWdZeY4GLJBTVn/9aLP4TROPly03jbGHNb2zp4ktKJ0YxxHGcr+Dc
6S5faGDH6XKRtCGElEFP93F0OKbKgqcdibfbHcVus7d7hi+yYpumY8JVKRWmYUwi
Fm31Z2U+xJr6JbE5IWErdZPfa9My4zsj+Wt/iZIyWrdOFdrKYtPaSMmgzGN1G1Yu
SoUdTg/gEZPPDDm+htsGkVChSI1DYnUQrWQCuyOBW3PepzVFCJegxkHlyl2ytUp3
mUpLlhnXGfx6zw2c0wKKZK12lYQg8LXwjCF2BwtBtwqsj95D89pe95Ei8irV8NRM
Xa4Ck6Q2javl1M4=
-----END CERTIFICATE-----
Generated at Mon Jun 9 02:58:21 2025 by rpki-client