Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HGjMS22p4HBnxKqABPqp396vcpsvLn1xgvDhRAwkLU3S/0/34352e3233332e3230302e302f32322d3332203d3e20323637333936.roa
File: 34352e3233332e3230302e302f32322d3332203d3e20323637333936.roa (raw, json)
Hash identifier: OnhPn4L6ooyqnL7fUCqxG3UZJLVmDGPoJepg13CI2Og=
Subject key identifier: 33:73:59:5B:C7:CC:67:30:B8:C9:FA:D9:12:A2:A4:B7:EC:87:E4:FE
Certificate issuer: /CN=F3DBFF2FE021B3683C0E806DE017C6E31040C6D0
Certificate serial: 3B601524EE47F00D7FAFA17AB0EE23CD950330B7
Authority key identifier: F3:DB:FF:2F:E0:21:B3:68:3C:0E:80:6D:E0:17:C6:E3:10:40:C6:D0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F3DBFF2FE021B3683C0E806DE017C6E31040C6D0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HGjMS22p4HBnxKqABPqp396vcpsvLn1xgvDhRAwkLU3S/0/34352e3233332e3230302e302f32322d3332203d3e20323637333936.roa
Signing time: Thu 07 Nov 2024 14:03:28 +0000
ROA not before: Thu 07 Nov 2024 13:58:28 +0000
ROA not after: Thu 06 Nov 2025 14:03:28 +0000
asID: 267396
IP address blocks: 45.233.200.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:60:15:24:ee:47:f0:0d:7f:af:a1:7a:b0:ee:23:cd:95:03:30:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3DBFF2FE021B3683C0E806DE017C6E31040C6D0
Validity
Not Before: Nov 7 13:58:28 2024 GMT
Not After : Nov 6 14:03:28 2025 GMT
Subject: CN=3373595BC7CC6730B8C9FAD912A2A4B7EC87E4FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:00:19:02:cf:ac:92:82:48:5e:03:0d:a8:
1f:d3:ba:0f:df:f8:61:9d:25:52:e9:ca:68:8b:15:
af:f1:ea:fb:6c:f9:59:9a:70:6f:df:d7:a0:88:5f:
8f:fa:8f:75:67:0c:09:48:e9:7c:e2:6f:9b:84:15:
bb:4a:66:8a:3b:73:2e:8f:49:ec:e7:19:8d:3d:00:
d7:bb:7d:e8:0d:7a:51:e3:eb:02:ab:4d:bd:24:89:
7e:cc:dc:f1:49:35:86:c6:63:5b:b5:5a:1e:2b:d5:
4f:02:aa:21:8c:cf:97:a2:99:f9:d1:fa:09:b5:51:
ed:b2:ed:d5:15:00:52:5f:5b:69:1b:db:d0:3a:54:
8e:e4:6b:3a:ca:a4:f8:b8:23:89:1a:fd:02:a9:73:
72:f5:d6:01:40:53:6f:8d:db:ce:24:19:ef:be:fc:
72:a5:d0:f5:ea:5f:0b:08:b2:95:c9:b2:d5:2a:9d:
3d:3f:9c:59:bc:95:44:8f:da:b9:94:b8:3d:92:3e:
5e:23:06:9b:d4:ca:36:2a:ad:9f:21:b7:c4:da:e9:
0d:80:f5:78:d4:4e:8f:8b:1f:27:a0:6f:8e:df:e8:
bc:ab:ae:71:5f:6c:62:9d:48:97:ee:09:93:25:4c:
61:3d:f8:c9:1d:6b:2f:ce:2e:7a:9f:bd:fb:79:f5:
4f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:73:59:5B:C7:CC:67:30:B8:C9:FA:D9:12:A2:A4:B7:EC:87:E4:FE
X509v3 Authority Key Identifier:
keyid:F3:DB:FF:2F:E0:21:B3:68:3C:0E:80:6D:E0:17:C6:E3:10:40:C6:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HGjMS22p4HBnxKqABPqp396vcpsvLn1xgvDhRAwkLU3S/0/F3DBFF2FE021B3683C0E806DE017C6E31040C6D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F3DBFF2FE021B3683C0E806DE017C6E31040C6D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HGjMS22p4HBnxKqABPqp396vcpsvLn1xgvDhRAwkLU3S/0/34352e3233332e3230302e302f32322d3332203d3e20323637333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.233.200.0/22
Signature Algorithm: sha256WithRSAEncryption
62:bf:1e:f2:f8:fe:03:12:55:fb:bc:5e:6f:9c:07:97:e7:62:
d8:da:57:02:ef:3c:7e:ca:c2:db:72:7f:cb:38:f4:17:9e:e7:
f2:25:1b:f3:0a:d7:4f:35:c3:2a:c2:f3:81:76:15:3e:72:7d:
57:8c:6c:e4:bf:cf:d8:e4:04:d8:93:fd:63:bd:43:84:68:c0:
a0:f1:7e:38:5f:bb:51:96:4c:be:ab:57:db:34:17:f5:28:cc:
7b:b1:7a:a6:8d:a4:f9:2e:85:cb:a5:6e:32:55:f3:1f:69:9d:
03:30:6b:92:58:99:cc:05:2f:5d:f8:64:57:a6:cf:9b:eb:22:
86:ec:35:37:e4:7a:b4:e5:7e:24:6f:2f:6e:7a:72:49:d8:34:
da:2c:ab:cb:76:e5:70:a3:41:92:84:4d:c1:b2:ca:9a:ad:73:
ba:f8:05:d1:56:06:fd:05:4f:14:72:45:83:75:6d:9b:ad:a3:
f9:b0:54:35:76:bd:e8:6d:84:3b:5b:10:45:b9:9e:aa:ff:9e:
7d:d8:bc:17:2b:e1:69:21:49:ea:25:68:93:44:18:a1:c8:97:
f9:30:d5:61:2a:b6:8b:6b:5f:5c:80:bf:fe:a1:9a:f8:a2:90:
01:48:a7:ed:8b:e1:b1:14:6e:fb:04:f2:3c:29:d9:56:51:0d:
b7:7d:4e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:16:20 2025 by rpki-client