Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/34352e3233362e35312e302f32342d3234203d3e20323638323035.roa
File: 34352e3233362e35312e302f32342d3234203d3e20323638323035.roa (raw, json)
Hash identifier: Vb+0BI2ddEmTu/78Cg1t8TSemi71IJtFs/A48tUuZq0=
Subject key identifier: CB:31:62:4B:39:7A:23:BB:0D:A5:C9:56:54:E3:94:FE:65:8C:28:E0
Certificate issuer: /CN=06EA067E007B9311176981678F208CA96CEFDE1D
Certificate serial: 69D08FF9B1C3526A6D1CAFEB43BF85C63579F678
Authority key identifier: 06:EA:06:7E:00:7B:93:11:17:69:81:67:8F:20:8C:A9:6C:EF:DE:1D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/06EA067E007B9311176981678F208CA96CEFDE1D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/34352e3233362e35312e302f32342d3234203d3e20323638323035.roa
Signing time: Mon 03 Feb 2025 03:12:21 +0000
ROA not before: Mon 03 Feb 2025 03:07:21 +0000
ROA not after: Mon 02 Feb 2026 03:12:21 +0000
asID: 268205
IP address blocks: 45.236.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/06EA067E007B9311176981678F208CA96CEFDE1D.crl
rsync://rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/06EA067E007B9311176981678F208CA96CEFDE1D.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/06EA067E007B9311176981678F208CA96CEFDE1D.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:d0:8f:f9:b1:c3:52:6a:6d:1c:af:eb:43:bf:85:c6:35:79:f6:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06EA067E007B9311176981678F208CA96CEFDE1D
Validity
Not Before: Feb 3 03:07:21 2025 GMT
Not After : Feb 2 03:12:21 2026 GMT
Subject: CN=CB31624B397A23BB0DA5C95654E394FE658C28E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7a:35:92:c7:3f:0f:57:04:9f:41:60:55:51:
ea:69:22:18:ed:1b:58:9a:37:b2:42:78:cc:64:76:
be:24:c9:fe:46:ce:3a:c1:b0:e7:cb:e4:33:a3:3c:
6b:1b:b8:68:d4:24:3b:db:fc:4d:fb:a8:61:80:00:
99:63:3d:b5:19:ee:af:b9:06:fb:da:db:f5:8b:49:
89:bf:c6:25:47:70:30:5e:8d:cf:4e:96:84:6d:73:
6f:0c:63:74:65:1a:6c:c8:1e:7e:23:a1:21:06:dc:
df:43:27:b8:86:aa:cf:86:40:5b:41:f4:f6:f2:67:
be:eb:75:d3:6c:55:01:1e:6b:25:1e:8f:a1:0e:49:
a7:88:0c:dd:a0:50:42:b1:17:27:8f:52:d3:da:95:
03:f5:70:42:ef:fe:9f:2a:8e:d1:33:04:1b:de:9d:
1d:04:8c:4f:f8:53:0d:1a:e3:76:ef:8a:b7:af:91:
40:0f:17:b5:c0:92:37:7b:c8:71:97:1d:e9:de:ff:
02:ca:1e:52:d6:d2:b5:00:bc:67:17:8f:08:61:9d:
b9:6f:e3:61:ed:90:73:0b:1f:a4:35:4f:9b:2e:a7:
54:29:9b:4c:b2:a4:84:26:c9:79:58:31:41:59:be:
0d:90:f6:26:97:04:48:80:2e:42:16:43:45:48:a7:
dc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:31:62:4B:39:7A:23:BB:0D:A5:C9:56:54:E3:94:FE:65:8C:28:E0
X509v3 Authority Key Identifier:
keyid:06:EA:06:7E:00:7B:93:11:17:69:81:67:8F:20:8C:A9:6C:EF:DE:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/06EA067E007B9311176981678F208CA96CEFDE1D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/06EA067E007B9311176981678F208CA96CEFDE1D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HDJZXLYPd1DLzDpze4fbSyFV2S1Li9t4VeqaYkJJ7T4G/0/34352e3233362e35312e302f32342d3234203d3e20323638323035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.236.51.0/24
Signature Algorithm: sha256WithRSAEncryption
70:0f:2e:9f:18:9b:fc:70:9f:d0:53:d8:6e:77:07:9a:d3:e8:
4a:b3:ff:f6:0a:a1:37:17:15:9c:2b:cc:f8:7a:28:64:61:b7:
8c:e1:4d:f4:50:e0:b1:24:ec:7f:9e:05:28:9d:66:eb:c5:45:
71:4d:97:c9:a6:d5:75:0a:32:bf:73:36:4c:f3:b9:53:a3:a8:
41:56:35:5b:ea:85:21:13:dd:39:da:9b:0a:a3:eb:51:9a:7a:
1d:99:48:25:f2:8b:7a:0d:63:5e:a5:92:4e:04:3f:dd:84:c8:
80:36:13:b0:2d:52:0c:cd:62:d2:28:93:72:f9:75:68:af:48:
2a:40:95:20:60:78:86:fb:35:3b:53:84:39:ba:0e:84:d9:7b:
fa:ad:73:d7:f5:d0:67:98:43:fa:d0:91:1d:9d:63:53:69:7c:
0c:cb:45:29:85:ef:fb:26:33:97:28:be:ab:ca:d5:e4:b3:5e:
ff:9f:34:2a:c6:e0:6b:86:ea:5b:3e:74:5a:07:9f:be:8c:6a:
5d:32:05:04:bd:60:94:8b:88:7c:7d:dd:29:24:ce:51:27:39:
55:0a:4f:63:50:56:76:d9:d7:39:69:aa:85:2d:4b:1b:56:86:
4f:bd:80:4a:9e:90:d5:a3:02:75:ad:e9:7a:45:46:b3:14:f2:
90:b4:b0:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 14:08:55 2025 by rpki-client