Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HDKSis7YANFujr9dLEGVfFgiGG99gyZpQW7qvAtja9dt/0/3133312e302e3134302e302f32342d3234203d3e203631383835.roa
File: 3133312e302e3134302e302f32342d3234203d3e203631383835.roa (raw, json)
Hash identifier: Y4ed5g8SYykOeC3AXPoD0IYh3FuvzbjHan1tZAD79iI=
Subject key identifier: D0:70:55:B3:7D:BE:54:B0:FA:57:A3:AC:5D:7C:D2:36:9D:1E:20:97
Certificate issuer: /CN=DFA638A6E41F7AF7978357E8B8434B2B95C908EF
Certificate serial: 10D1602237E2951138DAF0BA785C1C7DD94839FD
Authority key identifier: DF:A6:38:A6:E4:1F:7A:F7:97:83:57:E8:B8:43:4B:2B:95:C9:08:EF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/DFA638A6E41F7AF7978357E8B8434B2B95C908EF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HDKSis7YANFujr9dLEGVfFgiGG99gyZpQW7qvAtja9dt/0/3133312e302e3134302e302f32342d3234203d3e203631383835.roa
Signing time: Tue 27 Feb 2024 15:16:57 +0000
ROA not before: Tue 27 Feb 2024 15:11:57 +0000
ROA not after: Tue 25 Feb 2025 15:16:57 +0000
asID: 61885
IP address blocks: 131.0.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d1:60:22:37:e2:95:11:38:da:f0:ba:78:5c:1c:7d:d9:48:39:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA638A6E41F7AF7978357E8B8434B2B95C908EF
Validity
Not Before: Feb 27 15:11:57 2024 GMT
Not After : Feb 25 15:16:57 2025 GMT
Subject: CN=D07055B37DBE54B0FA57A3AC5D7CD2369D1E2097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:da:ac:51:d8:5a:7f:aa:7f:02:e4:0b:d7:eb:
12:cc:38:3c:77:f4:d1:90:7c:c9:59:11:51:cd:a5:
f1:22:af:1b:fb:86:cf:3d:6d:a4:ae:51:81:3a:3e:
65:a1:f8:04:6c:96:63:14:00:29:14:53:06:cc:94:
3f:70:8d:df:14:a1:3b:c9:7d:d7:28:53:89:73:c1:
39:ff:d5:1b:83:43:c1:88:fd:c8:70:35:da:91:1f:
7f:d7:82:b2:b7:f6:d7:39:87:be:41:ba:85:d0:81:
41:af:08:bf:e2:7c:47:04:30:68:1e:b3:55:e8:f3:
34:9d:bd:5d:e2:69:5b:be:78:1a:90:a0:08:84:85:
c7:60:3a:64:0d:54:75:cf:5c:7e:88:73:65:5e:9f:
5c:3e:13:91:dd:68:ac:24:ad:55:f6:ff:4c:b8:d9:
d4:8b:83:df:9e:cc:eb:98:43:1e:13:c1:86:83:3c:
37:48:77:d4:5c:96:62:b5:18:50:9d:ae:25:79:5d:
75:78:95:4e:02:7c:f7:3f:c7:ec:a0:2e:7c:c1:f0:
71:c2:f3:12:a7:7e:e2:eb:fd:83:f2:ed:07:d1:81:
91:47:ae:ec:cb:a3:3f:07:d1:1d:62:7f:03:20:b5:
00:c2:87:0c:7e:51:6c:77:60:52:b5:fe:0f:08:f9:
93:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:70:55:B3:7D:BE:54:B0:FA:57:A3:AC:5D:7C:D2:36:9D:1E:20:97
X509v3 Authority Key Identifier:
keyid:DF:A6:38:A6:E4:1F:7A:F7:97:83:57:E8:B8:43:4B:2B:95:C9:08:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HDKSis7YANFujr9dLEGVfFgiGG99gyZpQW7qvAtja9dt/0/DFA638A6E41F7AF7978357E8B8434B2B95C908EF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/DFA638A6E41F7AF7978357E8B8434B2B95C908EF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HDKSis7YANFujr9dLEGVfFgiGG99gyZpQW7qvAtja9dt/0/3133312e302e3134302e302f32342d3234203d3e203631383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.0.140.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8b:e4:0a:e3:02:c1:da:4b:35:b4:99:13:d8:58:ce:01:4c:
46:f1:de:61:31:1f:a8:bb:fe:88:52:ae:ba:1e:d3:61:03:86:
45:5e:30:79:fc:7e:88:dc:cc:a0:36:e4:82:67:ff:11:f1:ba:
4a:ac:01:37:70:0e:b7:6b:5e:8a:15:62:00:ac:c2:ba:5c:3e:
67:3a:57:88:c2:a7:a0:1a:04:68:31:13:d1:d1:23:fc:c0:aa:
a8:a8:22:44:c4:8c:bc:54:c1:bb:23:2d:59:51:1d:f8:2f:11:
5f:15:e0:fa:ad:87:9c:ed:bb:81:07:04:b7:be:d9:de:67:86:
68:17:6c:1f:b2:0b:bc:f9:2a:e2:7a:45:75:54:82:b1:f3:70:
6c:07:b9:85:de:57:84:c7:40:e7:e5:78:30:ad:ad:79:ce:3f:
d4:19:5d:1c:d3:a7:49:87:17:c8:61:6e:94:c3:e8:5f:10:60:
d9:d0:bc:ff:10:46:4d:49:75:e8:41:c8:9b:05:2c:76:83:95:
de:40:de:9d:4a:89:45:fe:b6:65:fb:06:e6:91:14:1c:e2:0c:
3a:7e:1c:aa:59:5e:ff:f2:19:6e:05:66:f3:d9:f4:2d:79:8a:
a1:78:c9:47:2e:44:57:4c:90:9b:95:5c:ba:17:6d:07:77:c3:
92:a2:5c:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:36 2024 by rpki-client on console-ams.rpki-client.org