Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/3137372e3133362e3231362e302f32312d3234203d3e20323632383431.roa
File: 3137372e3133362e3231362e302f32312d3234203d3e20323632383431.roa (raw, json)
Hash identifier: pkwtlkOIUTOW0vCXw7qG1lC1xTCoa8/0oVE1nZMmSW4=
Subject key identifier: 71:26:7C:E1:C4:E6:49:33:E4:50:E9:61:1E:CA:D0:6D:01:7A:CD:D5
Certificate issuer: /CN=9E1D7C478D880E093C83DCBE1DE40DE88EF8546F
Certificate serial: 6A266F2897649A983EC223F5E7001CED956B4977
Authority key identifier: 9E:1D:7C:47:8D:88:0E:09:3C:83:DC:BE:1D:E4:0D:E8:8E:F8:54:6F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/3137372e3133362e3231362e302f32312d3234203d3e20323632383431.roa
Signing time: Thu 06 Mar 2025 15:31:19 +0000
ROA not before: Thu 06 Mar 2025 15:26:19 +0000
ROA not after: Thu 05 Mar 2026 15:31:19 +0000
asID: 262841
IP address blocks: 177.136.216.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.crl
rsync://rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 12 Apr 2025 09:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:26:6f:28:97:64:9a:98:3e:c2:23:f5:e7:00:1c:ed:95:6b:49:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E1D7C478D880E093C83DCBE1DE40DE88EF8546F
Validity
Not Before: Mar 6 15:26:19 2025 GMT
Not After : Mar 5 15:31:19 2026 GMT
Subject: CN=71267CE1C4E64933E450E9611ECAD06D017ACDD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:f6:1a:2f:2d:30:eb:f4:62:1f:a1:b5:db:
76:97:b4:a5:48:15:11:7c:91:e2:4c:e4:ac:14:c6:
9f:94:94:6a:d1:89:24:25:bd:d4:f9:ad:07:78:6c:
16:58:f8:db:bd:a9:b2:59:4c:92:ce:ec:34:84:53:
17:c1:d1:65:e3:3c:dc:57:13:c4:40:60:2c:c1:81:
44:4c:d0:ca:53:19:b6:3d:a8:82:71:a8:16:96:04:
b8:d1:5a:3e:6a:0a:12:6a:35:3a:91:c3:7d:c3:c2:
32:81:1d:c6:3d:6e:a2:71:64:d9:60:5e:67:f5:05:
c9:53:29:c2:25:7e:d9:e6:2c:43:09:05:52:ff:dc:
98:18:bd:bc:48:04:36:94:31:1d:0c:73:e5:2a:31:
61:3a:97:0e:c0:17:0f:f9:ee:b1:dc:8d:ad:ac:4a:
91:05:03:66:5e:f0:73:9e:9c:f2:4c:6d:49:f0:de:
e0:37:e5:4c:b9:e6:24:fd:38:9c:af:3a:59:79:4c:
30:63:f3:18:7a:94:ed:3f:3f:ec:6c:2e:ae:cb:27:
60:5e:99:2f:d9:fe:d6:8b:04:0b:27:a7:0c:a5:12:
09:55:58:a7:7f:8b:dc:e1:1e:fb:5c:6f:5a:ab:61:
6b:de:ef:d6:e5:cc:ae:c4:3e:4e:ae:8f:98:df:0a:
2a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:26:7C:E1:C4:E6:49:33:E4:50:E9:61:1E:CA:D0:6D:01:7A:CD:D5
X509v3 Authority Key Identifier:
keyid:9E:1D:7C:47:8D:88:0E:09:3C:83:DC:BE:1D:E4:0D:E8:8E:F8:54:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9E1D7C478D880E093C83DCBE1DE40DE88EF8546F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HMLUvn9tgWcSjVFsuG2WZspidAHjdii8gzPrwRFPF2Pn/1/3137372e3133362e3231362e302f32312d3234203d3e20323632383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.136.216.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:7f:ed:d7:41:57:0c:75:b6:46:d8:ce:66:cc:97:88:40:4b:
73:ba:35:b1:78:08:a6:72:f6:a0:07:0e:67:4e:10:e4:da:2b:
1f:1c:b8:55:42:e2:0b:89:dd:ff:cc:99:5b:0b:6a:0b:4a:b9:
8d:09:f3:73:5c:82:7e:a2:c2:be:09:7c:65:b7:ce:e0:80:e1:
44:28:5b:7f:f5:63:4a:d4:86:9a:06:4f:14:b3:73:89:01:60:
82:89:cd:d7:30:53:c5:2d:f2:32:20:76:65:38:59:c6:01:4d:
3c:cb:92:1a:81:52:07:e1:78:7f:fa:a8:c0:c0:d6:a8:43:37:
65:e9:bc:8f:8f:75:f0:da:1e:12:4d:51:23:1f:d6:0e:21:ca:
fc:18:87:1f:fa:3e:06:89:a5:96:c3:f5:67:fc:fd:02:20:95:
a3:fa:0d:7c:57:3b:29:45:4d:b5:1d:41:bf:ee:81:ac:b5:ea:
a7:65:6f:17:f4:6f:b7:fb:93:cc:28:3f:83:fc:ef:a5:1d:44:
85:a1:80:39:7c:fc:5c:85:0f:57:ac:c4:f0:b1:c0:6c:05:b1:
69:98:83:42:68:fb:b3:80:0d:14:48:04:24:0e:f7:2a:4a:ac:
36:c3:d4:de:e1:15:58:c1:57:68:d8:18:9b:e6:a8:75:32:fc:
4c:0b:4b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 10:28:07 2025 by rpki-client