Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: EHftMCg6Lxf8NZ1dLb3BI2Q/PwPYGKluBgwUFloXRcQ=
Subject key identifier: 63:C4:3C:CD:95:82:D0:D8:9F:47:6C:63:93:76:F2:79:C5:37:79:6D
Certificate issuer: /CN=A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B
Certificate serial: 45E24807C0DC002F5170E8C1ABE18543B4F59F0C
Authority key identifier: A7:CF:6A:D9:57:FD:96:A4:24:FF:83:F6:75:AC:AF:C7:EE:E7:EF:8B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
Signing time: Tue 10 Dec 2024 22:09:02 +0000
ROA not before: Tue 10 Dec 2024 22:04:02 +0000
ROA not after: Tue 09 Dec 2025 22:09:02 +0000
asID: 263584
IP address blocks: 177.129.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.crl
rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 09:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:e2:48:07:c0:dc:00:2f:51:70:e8:c1:ab:e1:85:43:b4:f5:9f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B
Validity
Not Before: Dec 10 22:04:02 2024 GMT
Not After : Dec 9 22:09:02 2025 GMT
Subject: CN=63C43CCD9582D0D89F476C639376F279C537796D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:aa:f5:8a:87:2e:1b:7e:fd:d5:5c:22:c9:
f2:9c:0f:0f:60:2d:a4:c6:38:00:5b:3e:a3:e3:88:
34:0a:d7:d0:3f:93:d1:0a:92:a6:f0:5a:3c:2f:0d:
8a:33:e0:55:ee:38:66:2e:b4:6d:3f:28:50:54:30:
43:43:4c:a6:11:a0:9e:2a:3f:3c:78:65:ce:a1:e5:
95:c8:b9:9f:57:12:d7:f7:84:77:47:92:1c:9e:84:
18:f0:d6:85:60:6c:1f:e6:04:27:53:6a:80:c3:b1:
ba:93:83:b9:af:86:64:46:06:3d:17:4a:c3:6f:5e:
ba:e4:08:4c:45:cd:0e:a6:19:c9:14:27:1c:2c:53:
b3:e3:f0:23:2e:8d:68:2f:e9:40:d0:9b:84:2d:9b:
1b:82:c4:0a:05:99:4b:03:e6:3a:a0:32:2e:13:e8:
b0:93:42:f3:05:d1:bd:7b:44:27:ed:da:10:86:62:
3d:80:ac:77:1d:55:ca:9f:26:09:c7:be:9f:aa:11:
1e:2a:cc:61:77:00:a2:8a:9e:df:49:3e:2e:6e:5e:
93:ce:9f:ff:90:32:a3:3d:23:97:f6:9a:2e:24:0a:
aa:c4:10:d5:d6:e8:a4:cb:44:e4:72:1a:89:6a:62:
55:b9:78:bb:ae:6d:93:a5:e4:1a:13:3b:d8:af:e7:
77:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C4:3C:CD:95:82:D0:D8:9F:47:6C:63:93:76:F2:79:C5:37:79:6D
X509v3 Authority Key Identifier:
keyid:A7:CF:6A:D9:57:FD:96:A4:24:FF:83:F6:75:AC:AF:C7:EE:E7:EF:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.136.0/24
Signature Algorithm: sha256WithRSAEncryption
33:53:b3:d3:0e:73:b9:7e:f5:c1:29:d3:b7:68:95:29:08:f8:
20:33:8c:1e:5b:c6:90:e8:c9:64:87:15:b7:65:3a:75:96:48:
77:76:fc:4e:f2:bb:a6:1b:03:7f:5e:48:c2:aa:19:38:53:cf:
8b:36:c0:68:e7:21:a0:ad:b1:90:b3:7d:7a:a3:ad:36:28:6a:
ce:a5:7b:f0:e9:29:99:15:5f:f3:6a:50:56:7a:9d:85:c7:99:
b7:8f:eb:13:92:7c:f1:e4:ba:35:9e:1d:9a:67:67:e6:52:22:
d5:84:b5:50:3b:bd:10:8d:1e:6e:47:91:cd:1e:97:61:8f:13:
cf:67:26:06:ae:77:a8:d2:11:9a:e6:85:c4:22:28:40:0e:ce:
30:d4:f5:3d:d4:1a:a8:ef:bb:67:83:a4:55:3c:4a:9c:63:7d:
d8:0d:5a:4c:36:c0:7b:22:63:e6:e2:60:ab:26:1a:66:a4:3b:
1e:41:d1:1a:22:9e:6b:fc:d8:98:37:9e:1d:34:60:16:c0:c0:
3d:69:26:40:f0:4b:83:b6:aa:92:7f:01:d0:a9:c5:8c:50:67:
83:60:ef:47:0e:f7:d9:0b:73:a9:00:73:99:fb:8b:03:fc:a7:
1b:b8:81:54:1c:c4:01:23:98:40:f8:04:66:05:c1:60:07:0d:
07:71:89:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:39:55 2025 by rpki-client