Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Gdehe68K2ueR4hWQ5U5bpCgZcX27pRJRJYPFDnA2d4KR/1/323830343a353261633a3a2f33322d3332203d3e20323638353333.roa
File: 323830343a353261633a3a2f33322d3332203d3e20323638353333.roa (raw, json)
Hash identifier: 2QGqbscxEv91g94RnqkqrOoDAGPsowqCHy2js+JYcQM=
Subject key identifier: C7:41:87:28:0E:6C:B7:06:CF:96:51:F4:AC:20:9F:FE:F4:FA:57:7D
Certificate issuer: /CN=BB158F1F983D8F21CAEB93C928AC6AB52B51CB1C
Certificate serial: 1E7D100B6245B4AB766FC2C1D5C264593510248F
Authority key identifier: BB:15:8F:1F:98:3D:8F:21:CA:EB:93:C9:28:AC:6A:B5:2B:51:CB:1C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BB158F1F983D8F21CAEB93C928AC6AB52B51CB1C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Gdehe68K2ueR4hWQ5U5bpCgZcX27pRJRJYPFDnA2d4KR/1/323830343a353261633a3a2f33322d3332203d3e20323638353333.roa
Signing time: Wed 05 Mar 2025 21:52:43 +0000
ROA not before: Wed 05 Mar 2025 21:47:43 +0000
ROA not after: Wed 04 Mar 2026 21:52:43 +0000
asID: 268533
IP address blocks: 2804:52ac::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:7d:10:0b:62:45:b4:ab:76:6f:c2:c1:d5:c2:64:59:35:10:24:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB158F1F983D8F21CAEB93C928AC6AB52B51CB1C
Validity
Not Before: Mar 5 21:47:43 2025 GMT
Not After : Mar 4 21:52:43 2026 GMT
Subject: CN=C74187280E6CB706CF9651F4AC209FFEF4FA577D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d2:77:bd:a6:f0:62:cd:34:23:50:3e:38:14:
a0:10:dd:c8:0d:42:32:e9:f6:70:76:fc:93:c6:30:
54:f7:28:95:37:09:bf:7f:b9:c3:ef:2b:af:e7:62:
b8:59:0d:1b:5f:d6:81:04:bb:31:25:ee:3c:ea:83:
c7:06:df:41:36:cf:9b:11:1a:dc:06:5f:91:65:12:
d1:8e:da:61:1d:15:20:aa:d0:70:2c:e9:a7:87:b9:
ca:90:32:17:ff:7e:bb:48:3f:08:50:84:ad:f7:cb:
91:ae:d0:04:3e:f3:62:a8:d1:bc:94:8a:8c:50:2f:
f9:97:c9:fe:27:d5:dd:3f:a7:be:a6:fd:ea:6d:43:
49:4f:28:46:a4:6a:a6:42:e1:c0:cd:1c:80:b9:2f:
2c:13:c0:8f:73:b0:45:0b:36:0d:25:e6:f2:42:8c:
be:03:e6:46:4f:33:6a:b2:51:79:ff:1d:8f:67:60:
42:b4:3f:e6:ab:40:40:b0:36:32:ac:68:fd:4a:6a:
6d:a6:eb:78:ea:a6:dd:8f:51:8c:bc:da:af:68:16:
29:bc:59:a2:7f:2e:fc:f3:c3:24:3a:88:62:9f:01:
af:6e:4a:61:17:8e:a8:48:ad:87:d6:35:44:21:54:
33:c4:c2:49:31:c7:ef:d7:c7:87:35:3e:97:dc:ea:
83:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:41:87:28:0E:6C:B7:06:CF:96:51:F4:AC:20:9F:FE:F4:FA:57:7D
X509v3 Authority Key Identifier:
keyid:BB:15:8F:1F:98:3D:8F:21:CA:EB:93:C9:28:AC:6A:B5:2B:51:CB:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Gdehe68K2ueR4hWQ5U5bpCgZcX27pRJRJYPFDnA2d4KR/1/BB158F1F983D8F21CAEB93C928AC6AB52B51CB1C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BB158F1F983D8F21CAEB93C928AC6AB52B51CB1C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Gdehe68K2ueR4hWQ5U5bpCgZcX27pRJRJYPFDnA2d4KR/1/323830343a353261633a3a2f33322d3332203d3e20323638353333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:52ac::/32
Signature Algorithm: sha256WithRSAEncryption
4d:5b:31:a3:75:87:48:d2:45:04:4f:37:12:6b:8e:67:35:e1:
bb:cf:74:c5:f4:00:d0:27:94:bc:57:bc:2d:63:1d:53:0e:70:
f9:65:1c:b5:e4:43:99:f1:43:32:3f:84:69:47:98:8b:46:32:
a9:32:a9:44:32:9d:98:20:a3:8f:ec:a8:bb:78:7a:6e:24:be:
6e:bb:e9:97:a7:e2:3c:86:2b:d2:fc:8f:51:fd:5c:ec:ed:59:
54:a9:8a:ac:58:e8:e4:f8:bf:3d:49:c6:02:bf:ee:21:85:31:
e7:58:d8:7d:7b:d2:f3:f4:31:22:f6:ae:ef:42:f5:b5:bf:13:
4e:60:c9:1f:41:5a:a8:70:1e:e1:08:a5:7a:da:6c:f5:86:c9:
f4:21:69:74:14:fb:04:48:0c:74:b3:12:f1:2d:e6:69:ed:a0:
f9:c1:aa:ac:1f:d7:3f:95:31:a9:f2:62:25:fd:fc:b3:af:52:
9e:56:b5:0d:85:2d:69:51:9c:73:70:9e:53:70:d9:aa:b2:a3:
a7:76:05:3a:2e:a5:71:80:fe:ed:7b:a9:d0:ea:0e:31:04:33:
9b:e4:da:ec:f7:c2:32:ae:7b:dc:fa:52:d8:6e:c8:ba:7b:e6:
bf:ce:10:02:60:58:e8:e1:a2:9b:99:7a:9d:c2:48:06:61:f7:
23:01:af:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:44:11 2025 by rpki-client