Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GQ2tU396DHQeLeebPY5S7xV6yHYWpZ8Rrb4GdNxhVPz4/0/3133312e3139362e3136332e302f32342d3234203d3e20323635393433.roa
File: 3133312e3139362e3136332e302f32342d3234203d3e20323635393433.roa (raw, json)
Hash identifier: eKL7qJFZ0lvpMrip8iyHu66BDg5pqQgEeOlU1hNRFuk=
Subject key identifier: B6:AB:8C:8E:3C:79:1F:D9:2A:07:E4:F4:E0:B9:63:4D:6A:CD:2A:D6
Certificate issuer: /CN=BD50BD2086E482CF8522C43B160CF72E7053F3E8
Certificate serial: 554507A00302A34000E9E7F95F7D9C1A7315ACE4
Authority key identifier: BD:50:BD:20:86:E4:82:CF:85:22:C4:3B:16:0C:F7:2E:70:53:F3:E8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD50BD2086E482CF8522C43B160CF72E7053F3E8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GQ2tU396DHQeLeebPY5S7xV6yHYWpZ8Rrb4GdNxhVPz4/0/3133312e3139362e3136332e302f32342d3234203d3e20323635393433.roa
Signing time: Tue 07 Jan 2025 15:10:03 +0000
ROA not before: Tue 07 Jan 2025 15:05:03 +0000
ROA not after: Tue 06 Jan 2026 15:10:03 +0000
asID: 265943
IP address blocks: 131.196.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:45:07:a0:03:02:a3:40:00:e9:e7:f9:5f:7d:9c:1a:73:15:ac:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD50BD2086E482CF8522C43B160CF72E7053F3E8
Validity
Not Before: Jan 7 15:05:03 2025 GMT
Not After : Jan 6 15:10:03 2026 GMT
Subject: CN=B6AB8C8E3C791FD92A07E4F4E0B9634D6ACD2AD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f4:fc:2b:3b:e2:3d:9f:4f:15:65:f0:6f:74:
7c:5a:11:69:bc:82:03:1e:57:29:0e:d4:b4:54:49:
0a:24:a5:2a:c7:f2:97:50:aa:ad:ef:07:99:7d:33:
81:60:93:27:b0:2b:4f:aa:3b:50:30:95:b9:08:e1:
87:e3:d5:74:8e:bc:db:86:df:65:d6:74:0d:73:3b:
51:f4:1c:f9:20:7b:c7:3e:65:5c:07:97:04:e2:32:
c8:cc:31:c1:91:38:e4:b2:ef:c3:1e:12:28:ee:42:
b2:8b:2a:f9:20:f9:cf:3f:1b:09:79:60:ab:84:57:
34:c8:6b:e8:c1:70:58:5e:98:4b:72:38:d6:39:3a:
08:ed:9f:9c:44:4c:e3:1b:8a:a1:93:03:46:ca:99:
81:46:d3:b2:c8:ee:4f:52:53:90:f1:44:96:b2:68:
9a:9e:e7:26:43:b7:fe:86:39:3f:4d:dc:3d:68:d8:
24:1a:64:48:1d:51:8f:5d:27:20:0b:aa:9d:3e:9d:
f0:a6:dd:50:97:ef:6d:d6:0f:08:e5:51:ae:be:3b:
41:b7:4c:9b:23:71:71:0e:7c:f9:47:11:db:9e:d9:
9a:15:af:f5:ac:68:14:df:4d:93:01:57:2a:3d:4b:
53:bc:d0:eb:a9:0e:bc:00:2d:cb:3b:69:f6:c3:b2:
d7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AB:8C:8E:3C:79:1F:D9:2A:07:E4:F4:E0:B9:63:4D:6A:CD:2A:D6
X509v3 Authority Key Identifier:
keyid:BD:50:BD:20:86:E4:82:CF:85:22:C4:3B:16:0C:F7:2E:70:53:F3:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GQ2tU396DHQeLeebPY5S7xV6yHYWpZ8Rrb4GdNxhVPz4/0/BD50BD2086E482CF8522C43B160CF72E7053F3E8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD50BD2086E482CF8522C43B160CF72E7053F3E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GQ2tU396DHQeLeebPY5S7xV6yHYWpZ8Rrb4GdNxhVPz4/0/3133312e3139362e3136332e302f32342d3234203d3e20323635393433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:38:e7:21:6e:44:c5:46:13:34:91:00:74:64:3b:05:e8:63:
1a:ea:c3:56:f2:82:fb:de:b4:ea:c8:29:d8:f6:62:42:fb:43:
af:d1:b1:c4:8a:f1:3f:bd:fb:b1:7d:3e:bf:40:ed:e5:0f:89:
11:0b:eb:46:b5:29:ed:c9:a3:fe:f3:d2:a0:ab:b5:58:01:a0:
af:4b:5b:24:91:78:30:17:d3:49:e7:ba:80:3b:e3:77:a8:14:
5c:e9:25:ca:0e:d8:d6:8b:e4:1a:cb:94:a9:2f:cf:45:1c:ac:
d9:47:a6:72:4e:6e:e5:92:c0:62:35:5a:98:f6:98:d8:c8:cf:
33:de:50:9d:b6:19:bb:d0:cf:0b:37:0f:bd:90:45:d0:fb:d4:
d9:0b:9b:89:99:79:14:39:fb:cc:7e:ae:7a:68:b5:51:22:ee:
ef:ea:0a:71:20:bf:3a:d7:b3:ca:cf:69:66:fa:e1:75:b9:53:
a4:35:a9:79:f4:69:a0:be:0b:ce:c9:06:08:98:b3:ce:78:ce:
03:48:ee:a9:23:3d:db:e8:eb:cf:68:79:05:3d:71:86:1b:bd:
c6:f7:07:e3:58:cc:37:b6:c2:92:47:ea:33:77:ed:d1:50:ae:
80:aa:57:a4:36:1b:06:c5:90:40:17:11:4c:cf:1c:29:61:62:
e3:44:2e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:41:56 2025 by rpki-client