Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HHgJqxodZtnu2KirThR8sp7KQvDCriXQJEfPfFC5TbzK/1/3133382e39372e3130372e302f32342d3234203d3e203533313037.roa
File: 3133382e39372e3130372e302f32342d3234203d3e203533313037.roa (raw, json)
Hash identifier: d37RWCzmBlHMXyTEoKWy+EnzDGvUsG4ci+hJH2k1A/Q=
Subject key identifier: CB:9C:9B:CC:CA:FA:D7:DF:0A:C4:E5:E8:38:44:9A:F6:25:55:B1:B7
Certificate issuer: /CN=7125BEDDFEC29C0A4CF591E5EB40838BFE3C7AC1
Certificate serial: 6D7EB819758795B3B6CC1607CE202705E31EC1EA
Authority key identifier: 71:25:BE:DD:FE:C2:9C:0A:4C:F5:91:E5:EB:40:83:8B:FE:3C:7A:C1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7125BEDDFEC29C0A4CF591E5EB40838BFE3C7AC1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HHgJqxodZtnu2KirThR8sp7KQvDCriXQJEfPfFC5TbzK/1/3133382e39372e3130372e302f32342d3234203d3e203533313037.roa
Signing time: Thu 06 Mar 2025 00:52:35 +0000
ROA not before: Thu 06 Mar 2025 00:47:35 +0000
ROA not after: Thu 05 Mar 2026 00:52:35 +0000
asID: 53107
IP address blocks: 138.97.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:7e:b8:19:75:87:95:b3:b6:cc:16:07:ce:20:27:05:e3:1e:c1:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7125BEDDFEC29C0A4CF591E5EB40838BFE3C7AC1
Validity
Not Before: Mar 6 00:47:35 2025 GMT
Not After : Mar 5 00:52:35 2026 GMT
Subject: CN=CB9C9BCCCAFAD7DF0AC4E5E838449AF62555B1B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dd:8b:ac:a9:d8:84:0f:68:5a:7f:06:46:e6:
f6:c9:3b:f0:0f:cb:fb:38:73:c4:56:53:91:f3:14:
ae:1b:90:1b:84:29:c6:58:33:fa:4d:cb:d4:76:0c:
02:34:9f:47:27:cb:e2:db:e0:79:24:3c:18:b9:b9:
24:eb:10:db:8f:09:87:20:f3:38:77:7d:79:1c:60:
f1:26:44:ed:73:02:f3:ce:ab:4d:15:1f:60:e4:75:
52:4a:61:0f:27:15:ab:6c:db:f8:a5:5e:d2:ae:ee:
67:1a:8d:43:a1:3f:52:dc:95:34:f8:a3:80:f5:9d:
1f:96:6a:ac:2d:d2:c0:ab:43:f4:64:9b:6b:22:04:
62:69:78:e3:53:17:2a:7e:1e:a8:04:c7:15:86:aa:
66:1f:b8:c2:80:72:07:54:85:d1:1e:b5:d7:0a:91:
61:99:4c:57:bb:35:b9:3b:0e:0d:08:02:e9:b7:8c:
29:ac:18:0a:76:1e:25:46:78:d6:5d:5a:8a:3a:6a:
22:61:c4:fa:08:f6:e3:ab:da:b5:00:f9:c4:3b:12:
16:6d:b1:38:23:62:2e:76:fe:78:05:bb:fa:d6:5e:
ee:b8:99:58:8a:e6:bb:0c:06:af:e0:64:1e:01:7e:
83:64:c4:08:8e:85:ee:e7:8f:90:34:23:50:ab:0c:
c8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9C:9B:CC:CA:FA:D7:DF:0A:C4:E5:E8:38:44:9A:F6:25:55:B1:B7
X509v3 Authority Key Identifier:
keyid:71:25:BE:DD:FE:C2:9C:0A:4C:F5:91:E5:EB:40:83:8B:FE:3C:7A:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HHgJqxodZtnu2KirThR8sp7KQvDCriXQJEfPfFC5TbzK/1/7125BEDDFEC29C0A4CF591E5EB40838BFE3C7AC1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7125BEDDFEC29C0A4CF591E5EB40838BFE3C7AC1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HHgJqxodZtnu2KirThR8sp7KQvDCriXQJEfPfFC5TbzK/1/3133382e39372e3130372e302f32342d3234203d3e203533313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.97.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:c8:9d:c4:0a:de:66:1f:f6:4f:27:d5:03:09:b7:df:7b:0a:
00:39:9d:dc:95:10:79:9e:2a:e1:b5:c7:c4:d2:eb:17:6d:6a:
21:b0:d9:25:1f:79:14:7e:40:cb:99:fe:b6:b1:d1:1d:9e:b0:
f0:d5:78:83:cd:7d:c8:c9:0e:11:5f:40:a5:23:c0:cf:e8:7b:
36:5f:9b:92:44:19:94:d4:98:7e:9c:b9:5b:a7:1c:b7:09:ee:
07:36:0d:38:f9:20:c2:bc:c9:86:49:d6:0b:59:df:41:b5:11:
9c:ce:96:fc:b1:e2:56:8d:bb:57:f0:8d:db:ee:f6:79:36:fa:
48:d4:82:2c:b8:4b:aa:02:2b:b5:52:08:e7:57:58:7e:00:33:
bd:07:fb:a0:6c:48:7f:dc:85:c5:c5:96:49:94:ab:0d:7e:ce:
1d:c3:90:96:61:38:17:74:1d:86:31:91:fa:18:cd:b3:7e:38:
e3:1a:28:f8:36:88:73:83:3c:20:6e:0f:8e:35:f2:05:76:7f:
81:28:c1:ca:24:1c:17:c3:63:08:1b:2e:a5:cf:69:b2:b7:aa:
85:ae:0f:2c:61:20:b7:2d:06:38:19:1f:0c:f4:d1:c2:df:0f:
c7:c5:9b:6d:0e:a2:f2:5e:06:46:6b:b5:59:31:9b:13:f2:78:
57:ac:dd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 12:46:51 2025 by rpki-client