Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GujjTRro7qdVF6yV7tihAQzasd7FX7xwk24YseuGSJrY/1/3137302e3234372e32302e302f32322d3234203d3e20323633333234.roa
File: 3137302e3234372e32302e302f32322d3234203d3e20323633333234.roa (raw, json)
Hash identifier: oGLigczFTLXuThM0F8nW2MnLg1DEISackrG60iDFbkQ=
Subject key identifier: 40:55:A2:41:D8:9D:AA:6E:F3:BD:73:22:3C:EE:15:0E:8C:3D:1D:FE
Certificate issuer: /CN=01364C396932D6F9D37D4E65B53FF5F1EF6CB2E2
Certificate serial: 4D74B4437D171EFC69316F3AAEEDE113C8FE8067
Authority key identifier: 01:36:4C:39:69:32:D6:F9:D3:7D:4E:65:B5:3F:F5:F1:EF:6C:B2:E2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/01364C396932D6F9D37D4E65B53FF5F1EF6CB2E2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GujjTRro7qdVF6yV7tihAQzasd7FX7xwk24YseuGSJrY/1/3137302e3234372e32302e302f32322d3234203d3e20323633333234.roa
Signing time: Thu 06 Mar 2025 03:47:25 +0000
ROA not before: Thu 06 Mar 2025 03:42:25 +0000
ROA not after: Thu 05 Mar 2026 03:47:25 +0000
asID: 263324
IP address blocks: 170.247.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:74:b4:43:7d:17:1e:fc:69:31:6f:3a:ae:ed:e1:13:c8:fe:80:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01364C396932D6F9D37D4E65B53FF5F1EF6CB2E2
Validity
Not Before: Mar 6 03:42:25 2025 GMT
Not After : Mar 5 03:47:25 2026 GMT
Subject: CN=4055A241D89DAA6EF3BD73223CEE150E8C3D1DFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:f7:9f:29:28:f2:0e:04:f8:26:80:01:a4:
51:40:3e:49:71:d6:db:38:21:9d:80:22:f3:0f:4a:
96:60:ad:32:dc:27:a4:61:fa:8f:66:3d:dc:10:ea:
4f:fb:69:11:dc:6e:03:bf:68:b7:0d:c5:73:42:26:
36:b2:66:ad:25:d3:b7:e4:f7:5e:cf:63:66:e5:36:
46:b0:1a:2e:89:84:79:24:59:07:b8:db:89:d5:9b:
9c:a4:2e:02:cb:f9:82:0e:ae:6e:ba:e9:e3:1c:54:
06:dc:47:39:21:e2:a5:fa:06:90:b8:6b:05:c6:bc:
d5:7b:9b:79:ba:1a:94:e1:6d:98:0f:73:ff:04:59:
d2:4a:fc:5d:f1:f5:a6:a1:7c:1b:44:78:ce:b4:e7:
e7:5f:f8:82:86:be:51:27:4c:5f:b2:29:75:9b:f4:
c8:f1:cd:ed:47:e5:03:1f:8d:11:52:64:1a:da:e3:
56:66:76:45:45:d6:9c:d5:b4:ef:f8:f1:57:b4:bf:
a7:35:52:84:8e:b6:54:aa:5b:6d:28:8b:42:10:3b:
66:74:89:0c:a1:81:b8:d0:c2:98:e7:d8:de:cb:30:
46:ba:2c:6f:3c:37:28:37:4b:bc:1c:03:d6:7b:61:
0f:93:12:78:e3:85:45:15:53:2b:60:e5:9a:6d:66:
7d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:55:A2:41:D8:9D:AA:6E:F3:BD:73:22:3C:EE:15:0E:8C:3D:1D:FE
X509v3 Authority Key Identifier:
keyid:01:36:4C:39:69:32:D6:F9:D3:7D:4E:65:B5:3F:F5:F1:EF:6C:B2:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GujjTRro7qdVF6yV7tihAQzasd7FX7xwk24YseuGSJrY/1/01364C396932D6F9D37D4E65B53FF5F1EF6CB2E2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/01364C396932D6F9D37D4E65B53FF5F1EF6CB2E2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GujjTRro7qdVF6yV7tihAQzasd7FX7xwk24YseuGSJrY/1/3137302e3234372e32302e302f32322d3234203d3e20323633333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.20.0/22
Signature Algorithm: sha256WithRSAEncryption
19:b0:46:0d:f0:f5:2d:d7:28:74:f9:83:fb:5f:6b:2c:46:e8:
be:3c:51:56:0b:58:1d:77:10:63:bc:ef:b7:de:f2:8e:11:c5:
6d:f4:93:be:41:ef:49:98:54:fd:cc:8a:ab:a5:2f:1b:f1:2f:
27:01:0f:3c:b7:21:8e:1a:71:49:8c:9f:fe:09:48:3e:53:de:
b4:bf:d1:fc:81:ef:4a:ef:f9:16:bc:fc:30:bc:68:8b:cf:83:
0d:fb:a6:71:3e:21:68:1e:ea:2e:77:7f:a1:e8:ba:60:06:2e:
f3:b5:90:d7:bd:8a:b9:a4:e9:2c:d7:c6:7a:b8:23:f2:8d:1e:
55:c5:8f:e5:c6:de:0c:f4:e0:78:e1:32:b5:78:84:3c:2a:b4:
a6:4d:d4:b5:46:70:31:58:ee:7d:be:89:ce:dc:6c:d0:33:3a:
21:ee:c4:2c:0c:54:bc:e3:b1:8d:a3:81:a5:9b:94:78:ac:52:
2a:cc:89:91:d0:60:fb:98:81:8f:a8:ca:b1:91:53:60:fc:bf:
5b:a5:25:1d:47:b9:23:b0:f6:a9:d1:ab:f4:7b:cd:7f:48:c3:
37:2d:34:2e:17:4c:7e:a1:bf:71:89:a5:63:4b:d2:22:ba:d5:
94:bb:e2:5e:ec:97:59:00:48:01:df:e2:eb:4a:11:f1:ec:b3:
4b:80:12:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:41:40 2025 by rpki-client