Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/H3KDprR9CDiXu13j6nzEzhWcTnJNdCFQN32j4bT6hJ3S/0/3133312e302e3139322e302f32332d3233203d3e203631373139.roa
File: 3133312e302e3139322e302f32332d3233203d3e203631373139.roa (raw, json)
Hash identifier: w97n07X0zqExDN8gzf3cZjKH+F//QEYk2SLdLpiVsaw=
Subject key identifier: D1:AE:B0:A9:FF:96:AB:FB:7B:4C:E3:C1:B1:58:31:68:40:D4:C8:3E
Certificate issuer: /CN=573658E4241F21CAB22CB9FC150BF6FB898271EA
Certificate serial: 5747E0C01F8245080574F5057D09EF734FB09248
Authority key identifier: 57:36:58:E4:24:1F:21:CA:B2:2C:B9:FC:15:0B:F6:FB:89:82:71:EA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/573658E4241F21CAB22CB9FC150BF6FB898271EA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/H3KDprR9CDiXu13j6nzEzhWcTnJNdCFQN32j4bT6hJ3S/0/3133312e302e3139322e302f32332d3233203d3e203631373139.roa
Signing time: Wed 11 Dec 2024 11:16:24 +0000
ROA not before: Wed 11 Dec 2024 11:11:24 +0000
ROA not after: Wed 10 Dec 2025 11:16:24 +0000
asID: 61719
IP address blocks: 131.0.192.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:47:e0:c0:1f:82:45:08:05:74:f5:05:7d:09:ef:73:4f:b0:92:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=573658E4241F21CAB22CB9FC150BF6FB898271EA
Validity
Not Before: Dec 11 11:11:24 2024 GMT
Not After : Dec 10 11:16:24 2025 GMT
Subject: CN=D1AEB0A9FF96ABFB7B4CE3C1B158316840D4C83E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:3b:7b:ef:e3:d2:c5:ef:d2:64:63:cf:66:
4a:ad:94:c7:33:d8:4a:e4:b0:57:06:fd:9a:24:fa:
10:d7:b2:3f:ad:66:64:61:7d:0b:73:a3:d0:58:a8:
a2:71:9b:87:a8:ef:55:aa:8f:c8:34:a1:41:73:a5:
c7:f8:61:f7:b9:95:d1:3e:44:13:8f:b5:2b:23:db:
dd:2a:0f:7c:80:3c:05:ca:49:41:11:3a:f9:d2:11:
5f:bd:d4:5d:49:d3:73:88:1e:fa:dd:61:df:c9:f4:
0f:ea:76:34:53:e6:cb:a1:39:ae:e2:7d:d7:79:03:
23:4f:7b:72:fe:6e:25:ff:61:91:65:61:af:e9:84:
7f:59:a2:17:7d:ca:3c:20:3a:49:4f:e4:77:b4:a3:
e9:b8:3c:21:5a:26:f2:71:84:65:68:28:b7:ab:32:
45:23:7f:a6:fd:c4:94:65:b5:01:a6:14:37:64:f0:
32:c9:b1:2d:c8:83:88:50:25:cc:ff:a9:cd:33:a3:
56:59:c7:79:d8:2f:bf:8f:01:5e:43:ed:15:37:f8:
b8:0a:b7:99:34:49:25:10:eb:23:a2:ac:e4:79:f0:
fe:97:0d:bc:d9:21:a0:f9:26:fc:78:07:04:f7:80:
fa:bf:bb:26:38:fb:c2:ba:aa:bb:dd:de:72:f1:9a:
45:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:AE:B0:A9:FF:96:AB:FB:7B:4C:E3:C1:B1:58:31:68:40:D4:C8:3E
X509v3 Authority Key Identifier:
keyid:57:36:58:E4:24:1F:21:CA:B2:2C:B9:FC:15:0B:F6:FB:89:82:71:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/H3KDprR9CDiXu13j6nzEzhWcTnJNdCFQN32j4bT6hJ3S/0/573658E4241F21CAB22CB9FC150BF6FB898271EA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/573658E4241F21CAB22CB9FC150BF6FB898271EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/H3KDprR9CDiXu13j6nzEzhWcTnJNdCFQN32j4bT6hJ3S/0/3133312e302e3139322e302f32332d3233203d3e203631373139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.0.192.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:75:81:de:89:03:43:06:d9:9e:83:7e:57:09:cf:9a:aa:91:
17:a0:25:48:a3:21:9e:6e:98:c7:bd:32:00:ad:02:0e:dd:a1:
1a:e0:16:36:c2:a4:66:a1:c7:f3:07:fb:75:18:11:f8:f4:bc:
4b:6a:27:0a:e7:77:5a:a7:57:35:28:b5:35:44:32:07:ef:d9:
2f:3f:f6:54:10:a3:b4:70:7e:7c:da:70:2f:56:55:68:90:e6:
b4:13:da:9f:58:40:ce:81:a9:dc:eb:74:3b:67:76:72:91:a5:
2b:a0:bf:3a:0f:69:7b:70:8d:be:5a:72:d1:6c:29:59:f9:95:
bd:c5:3e:c4:29:7b:8b:50:4a:c2:de:a9:c4:52:ab:55:6c:8f:
f6:80:ac:10:81:60:8a:1d:2d:cd:7d:3e:1c:b7:17:1f:e1:d0:
f5:56:79:7b:53:4e:f7:ee:14:7d:b1:15:31:e4:9b:ef:c2:1e:
06:03:a8:f3:46:58:0b:cb:d6:87:2c:43:ee:71:ff:2e:15:54:
5b:29:76:45:44:5b:b7:81:da:1b:c7:d1:6f:13:98:33:bb:5f:
b2:ad:ce:1d:a5:ae:b6:04:53:a1:13:f6:74:3f:00:e1:b2:49:
37:10:31:35:72:54:fe:4d:d1:8e:12:1c:fe:00:6f:e4:37:09:
92:43:9b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:40:06 2025 by rpki-client