Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/3134332e3235352e3133322e302f32322d3332203d3e20323635313532.roa
File: 3134332e3235352e3133322e302f32322d3332203d3e20323635313532.roa (raw, json)
Hash identifier: aPkD3g8+be+BOT69ewmJ2US6K0FcQkuyElWyD1xIlC8=
Subject key identifier: 09:84:92:33:73:0A:58:E5:06:D3:B6:89:E7:7F:62:DC:9A:B6:5F:BB
Certificate issuer: /CN=D47E48647B940216D8BE8BE824CDD566DE29F188
Certificate serial: 0DE55653A965D5D8B4374553B0FFAEC16AADA7A8
Authority key identifier: D4:7E:48:64:7B:94:02:16:D8:BE:8B:E8:24:CD:D5:66:DE:29:F1:88
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D47E48647B940216D8BE8BE824CDD566DE29F188.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/3134332e3235352e3133322e302f32322d3332203d3e20323635313532.roa
Signing time: Thu 06 Mar 2025 22:31:16 +0000
ROA not before: Thu 06 Mar 2025 22:26:16 +0000
ROA not after: Thu 05 Mar 2026 22:31:16 +0000
asID: 265152
IP address blocks: 143.255.132.0/22 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/D47E48647B940216D8BE8BE824CDD566DE29F188.crl
rsync://rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/D47E48647B940216D8BE8BE824CDD566DE29F188.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D47E48647B940216D8BE8BE824CDD566DE29F188.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:e5:56:53:a9:65:d5:d8:b4:37:45:53:b0:ff:ae:c1:6a:ad:a7:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D47E48647B940216D8BE8BE824CDD566DE29F188
Validity
Not Before: Mar 6 22:26:16 2025 GMT
Not After : Mar 5 22:31:16 2026 GMT
Subject: CN=09849233730A58E506D3B689E77F62DC9AB65FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a3:a2:f6:d7:b0:f1:55:1b:7c:2f:fb:2f:d8:
4b:2b:39:6b:40:c3:8a:75:d5:9b:61:58:4e:a1:c2:
f0:04:a3:4d:e8:de:79:f7:39:e2:db:cd:51:ef:17:
a4:53:b7:5f:00:62:03:a1:4c:ea:b2:64:5f:3a:f3:
58:fc:4c:1d:47:56:4e:cc:78:cd:3d:74:05:04:ee:
1a:a5:eb:9e:b6:50:95:a7:3e:2e:00:ff:3f:53:e7:
d9:e9:99:ac:c7:39:14:ef:30:ac:5e:57:7b:ce:ca:
11:03:05:2a:e3:ca:8d:80:23:a3:4a:a3:ea:3a:51:
b7:33:31:9f:d7:b2:fa:74:fe:4e:91:3b:c8:25:a5:
43:60:3d:bc:54:1e:e8:f3:fe:d4:9c:24:42:67:74:
c2:65:b9:64:34:13:04:ae:ec:11:eb:71:74:0b:52:
eb:0f:32:c6:3a:97:50:99:be:c7:3c:0d:28:6d:50:
59:eb:4e:bb:94:e3:a5:35:a3:3b:d2:e2:33:d6:4e:
13:09:44:bb:85:f9:f8:4f:12:3e:41:9d:65:d5:f9:
d4:d8:2c:c6:02:a8:19:6d:cd:95:f8:d3:9c:b7:7f:
f2:3b:d2:37:99:07:9c:13:7b:b9:10:71:f6:77:9c:
0f:53:b0:be:6f:da:b7:ce:9e:99:3a:07:17:df:df:
96:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:84:92:33:73:0A:58:E5:06:D3:B6:89:E7:7F:62:DC:9A:B6:5F:BB
X509v3 Authority Key Identifier:
keyid:D4:7E:48:64:7B:94:02:16:D8:BE:8B:E8:24:CD:D5:66:DE:29:F1:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/D47E48647B940216D8BE8BE824CDD566DE29F188.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D47E48647B940216D8BE8BE824CDD566DE29F188.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GHybki8mAnFUPzYCMqetHreXM2Yfqeyo58qPsYQCUPtB/1/3134332e3235352e3133322e302f32322d3332203d3e20323635313532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.255.132.0/22
Signature Algorithm: sha256WithRSAEncryption
86:a5:05:2c:22:70:7a:0d:f2:25:7b:47:08:55:44:a1:93:cc:
f5:da:06:24:ab:a4:6a:81:11:1c:eb:b5:24:31:ca:f4:a1:38:
fd:95:01:50:e8:9d:9b:6a:a4:67:6c:e6:10:08:ed:66:54:d8:
77:1a:88:69:59:7a:0e:38:61:63:cb:08:b9:f8:e7:0a:e2:e0:
ea:c3:34:f0:2c:31:42:70:3d:a7:65:a6:ef:67:d6:bd:26:27:
39:9a:6b:2c:98:85:71:dd:af:c7:9c:48:7a:3d:10:9a:e4:db:
73:33:c1:1a:43:0d:5e:6a:a5:1b:22:e6:ce:69:fd:21:0b:91:
31:cf:76:33:a4:6c:b1:fc:f5:a7:9a:9c:a2:c3:f6:db:0b:75:
db:20:c6:a5:93:fe:5c:28:e1:1f:a4:d7:de:75:8e:e4:cb:19:
e3:5c:56:82:2c:6d:87:ee:99:88:82:98:07:64:88:3c:14:9e:
0e:c2:44:9a:76:9b:88:36:a6:cd:68:07:57:93:eb:88:02:a2:
fe:18:23:ca:26:06:75:5d:5d:53:92:34:2d:35:67:ef:ca:bb:
44:40:86:a8:5d:a0:fa:25:c7:d9:09:9e:f4:25:34:16:92:d2:
2a:1b:a6:44:86:76:61:7b:d9:77:db:46:1e:b6:89:37:2d:25:
9f:81:ee:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:02:06 2025 by rpki-client