Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/3138392e3131332e33382e302f32332d3233203d3e20323632383735.roa
File: 3138392e3131332e33382e302f32332d3233203d3e20323632383735.roa (raw, json)
Hash identifier: bnzfi0gYDzG2ivJGGjMH8LIcu9uSjiguRxSzlCPsE6I=
Subject key identifier: 52:3B:5D:20:D5:BB:8D:4E:82:22:63:DF:72:24:C7:6F:59:25:43:C4
Certificate issuer: /CN=EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41
Certificate serial: 58178971DB19ECD81985516EE8AEB0F76B40D0B1
Authority key identifier: EA:C1:26:E2:06:D0:84:30:A1:3E:DA:2D:FE:A9:B6:F9:C6:1B:BF:41
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.cer
Subject info access: rsync://rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/3138392e3131332e33382e302f32332d3233203d3e20323632383735.roa
Signing time: Thu 02 Jan 2025 13:01:15 +0000
ROA not before: Thu 02 Jan 2025 12:56:15 +0000
ROA not after: Thu 01 Jan 2026 13:01:15 +0000
asID: 262875
IP address blocks: 189.113.38.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.crl
rsync://rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 05:45:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:17:89:71:db:19:ec:d8:19:85:51:6e:e8:ae:b0:f7:6b:40:d0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41
Validity
Not Before: Jan 2 12:56:15 2025 GMT
Not After : Jan 1 13:01:15 2026 GMT
Subject: CN=523B5D20D5BB8D4E822263DF7224C76F592543C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bb:1d:91:f4:f7:7b:e5:60:2c:1c:c3:14:f9:
53:c7:bc:c1:9b:b3:d2:fd:ba:1d:e0:7a:3e:34:95:
03:76:41:e8:73:e9:7a:71:be:53:b6:67:18:14:66:
5a:31:ba:b4:ae:74:ff:77:15:1a:75:00:95:21:ee:
69:e4:da:4a:3e:69:5e:13:ac:9e:15:de:cb:70:2d:
4d:be:d1:41:09:20:cc:12:bd:f5:89:df:b8:b8:a2:
61:91:d5:2a:70:9e:92:cc:51:32:20:3f:67:43:e7:
17:c9:0f:80:16:8d:41:67:d0:45:f5:86:33:d1:c1:
5d:e7:c2:02:5d:7b:5f:c3:b8:bc:5c:ac:37:ab:1b:
a7:7b:4d:67:8a:80:ce:62:e8:55:94:75:a1:dc:32:
5a:41:7f:e1:e4:dd:e2:bc:97:33:34:f4:cc:eb:e2:
74:57:35:9f:0a:d2:97:41:ba:80:71:8d:80:08:9a:
f0:d5:75:db:68:65:0a:26:61:a1:f9:0f:0a:40:14:
17:06:f1:dd:fa:0e:d4:d7:ab:fa:b7:23:f7:63:11:
97:65:29:46:0e:bc:d3:9f:bb:9f:0a:21:4b:30:09:
69:e3:d8:cd:11:82:71:93:b1:15:1f:1d:e1:32:f2:
3a:e8:7d:58:49:1e:e0:10:c5:1b:90:7d:aa:f9:c4:
cb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3B:5D:20:D5:BB:8D:4E:82:22:63:DF:72:24:C7:6F:59:25:43:C4
X509v3 Authority Key Identifier:
keyid:EA:C1:26:E2:06:D0:84:30:A1:3E:DA:2D:FE:A9:B6:F9:C6:1B:BF:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EAC126E206D08430A13EDA2DFEA9B6F9C61BBF41.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/H7Zct25mSfitRpBN2oXhLPG5njvZTQskH8L2nNHvhaZe/0/3138392e3131332e33382e302f32332d3233203d3e20323632383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.113.38.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:88:f6:94:ef:5b:d3:62:cd:5b:ed:c0:d3:a6:8e:97:57:7e:
3f:ec:60:48:36:25:87:db:2d:64:e0:c2:fa:fd:b1:11:7a:a7:
98:15:51:73:05:b1:9f:3d:b2:20:5e:17:75:db:ec:bd:3b:a2:
d9:36:d1:b9:29:90:09:58:92:17:05:68:7d:55:5f:6f:5a:fb:
c5:06:66:36:f9:02:2c:db:ba:17:4f:c7:8c:37:7c:58:31:5d:
0b:95:65:0c:8e:36:7f:9a:36:7c:4a:0e:64:40:1c:6f:61:98:
f1:bb:fc:31:c1:cc:ce:ac:e3:d6:17:f9:99:a0:4e:62:12:71:
a8:8c:c5:cb:97:68:ad:f5:89:89:c5:a8:e0:82:5a:b7:a4:a5:
cf:a5:38:5d:bb:f4:b6:1b:a5:18:4c:15:19:17:a5:be:ef:57:
1b:38:51:82:67:04:21:6b:aa:4c:72:c8:c1:5c:e7:df:dc:e7:
b9:43:d0:99:17:f3:b0:8c:84:eb:11:ea:e6:29:ff:70:2a:80:
f7:01:44:dd:b9:c9:b3:99:86:71:14:e0:1a:9f:db:54:2f:c7:
cf:84:1a:63:fa:1e:f5:59:4f:63:9f:6e:ce:15:d5:15:76:8b:
77:50:25:1f:a4:8e:71:20:15:a9:2d:f0:ec:4f:04:ef:97:10:
7c:b6:4e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 15:04:27 2025 by rpki-client