Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3230302e3232392e3234352e302f32342d3234203d3e20323730383135.roa
File: 3230302e3232392e3234352e302f32342d3234203d3e20323730383135.roa (raw, json)
Hash identifier: eKoHWghr2os5a5eEenzBPzAW9CUVZ2Hltxv9xVw1PY0=
Subject key identifier: 5E:94:E8:7F:AF:1F:F4:07:B0:70:B3:5C:50:16:4D:A4:BB:A4:3F:CF
Certificate issuer: /CN=4FDBAE28D54DD4272386040789F376018C19FE37
Certificate serial: 20D5A41764B35939083F13DD468F3681D60B4C9A
Authority key identifier: 4F:DB:AE:28:D5:4D:D4:27:23:86:04:07:89:F3:76:01:8C:19:FE:37
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FDBAE28D54DD4272386040789F376018C19FE37.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3230302e3232392e3234352e302f32342d3234203d3e20323730383135.roa
Signing time: Mon 10 Feb 2025 12:56:36 +0000
ROA not before: Mon 10 Feb 2025 12:51:36 +0000
ROA not after: Mon 09 Feb 2026 12:56:36 +0000
asID: 270815
IP address blocks: 200.229.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:d5:a4:17:64:b3:59:39:08:3f:13:dd:46:8f:36:81:d6:0b:4c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FDBAE28D54DD4272386040789F376018C19FE37
Validity
Not Before: Feb 10 12:51:36 2025 GMT
Not After : Feb 9 12:56:36 2026 GMT
Subject: CN=5E94E87FAF1FF407B070B35C50164DA4BBA43FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:78:91:ce:54:4b:9e:07:e9:32:e5:63:49:ae:
3d:16:cf:c8:49:7a:86:39:3e:e2:f7:93:c0:2f:c0:
ad:9a:ba:b9:9f:47:27:9c:0b:5a:05:08:8f:1c:a8:
20:89:a0:1e:bc:07:cd:d7:91:01:95:02:c6:88:8e:
6d:20:bf:07:6d:96:a7:34:73:c7:0a:e9:31:89:56:
d5:ba:d7:a3:5f:d2:1a:bf:42:ce:68:55:d7:7d:ad:
f5:72:b8:1f:e0:d5:93:78:f8:0b:09:a6:df:17:b7:
a7:0c:c7:c4:6b:5a:9c:3f:e8:a6:2f:c8:cd:dc:a9:
28:46:a1:b2:d0:8a:c0:c2:a5:ef:be:b5:40:52:5b:
30:5b:fa:82:e0:f3:76:4b:3f:68:84:2f:22:c7:99:
96:51:94:0e:ad:c1:5a:38:d4:13:4c:9a:3b:05:c9:
a9:cf:9b:cc:11:a3:30:df:56:64:19:40:2a:07:f7:
bd:be:07:fa:3d:e0:1c:81:bf:c0:ce:b3:df:59:af:
1f:ba:5d:5d:91:95:1b:5a:ea:94:86:46:fe:7f:c7:
c4:1b:d1:3e:cb:34:b5:19:14:64:21:08:5f:a6:1c:
f6:27:c9:21:f2:ed:3d:83:fe:79:ec:62:3e:38:02:
e8:b5:1b:c6:06:a3:7d:5d:e2:a9:cb:94:11:3f:71:
54:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:94:E8:7F:AF:1F:F4:07:B0:70:B3:5C:50:16:4D:A4:BB:A4:3F:CF
X509v3 Authority Key Identifier:
keyid:4F:DB:AE:28:D5:4D:D4:27:23:86:04:07:89:F3:76:01:8C:19:FE:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/4FDBAE28D54DD4272386040789F376018C19FE37.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FDBAE28D54DD4272386040789F376018C19FE37.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3230302e3232392e3234352e302f32342d3234203d3e20323730383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.229.245.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:20:20:e2:76:a8:8e:aa:b4:8a:a1:be:bc:3c:fe:6b:c4:8b:
90:fe:0f:5e:89:28:50:bd:20:a6:ff:ac:66:24:6e:1b:ec:8b:
ca:25:34:12:bc:b5:0c:82:48:62:b6:aa:31:b6:32:44:6f:31:
43:ae:7e:93:04:01:13:62:3f:5a:c0:dc:01:b3:64:13:ca:7e:
9c:bd:75:14:b0:b5:41:8c:d3:d5:3b:90:86:b1:09:21:35:51:
c2:d1:76:db:c1:46:f0:ec:12:65:32:83:35:c4:36:8e:03:3b:
91:27:10:29:fe:75:5f:32:16:78:90:c4:94:8f:26:7e:42:7a:
93:38:88:bb:04:06:4c:b2:b1:4c:68:63:7e:9f:c4:66:24:8b:
58:5b:01:2a:e8:2d:f0:eb:2d:43:10:9e:84:b6:18:ca:e1:65:
a7:50:61:04:10:9b:9d:0f:fb:c5:35:3c:4c:03:8d:97:b2:fe:
e6:12:e1:7f:41:47:7b:5b:84:4f:0b:04:d3:52:e6:67:0d:30:
3c:8c:02:f7:89:77:37:c5:61:a0:a4:f0:ad:95:62:c8:a0:fc:
12:5c:99:c2:b3:d6:11:96:44:34:ca:f5:69:03:05:e0:97:2a:
c2:0a:d6:cf:94:70:53:08:cc:fa:9b:c5:2a:c9:67:30:30:2f:
9b:3f:b3:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:05:50 2025 by rpki-client