Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HMLbExkmsrQTi3GWpZU5g9phogpbGb6hJmX7ZV2W2MSJ/0/323830343a3361383a3a2f33322d3332203d3e203533313935.roa
File: 323830343a3361383a3a2f33322d3332203d3e203533313935.roa (raw, json)
Hash identifier: OA2vZ7+XsyfaK/IkZPxzYl7scoe7lGnc/55FWHOKmKM=
Subject key identifier: A3:D1:44:64:48:27:B8:8B:5D:21:97:1E:6C:3C:32:C6:20:76:A7:01
Certificate issuer: /CN=D5F6B7FF6F96819DAFFD6CEF219B89ADF3E3CF77
Certificate serial: 212745A023151844DDA270AFA986531521911AA2
Authority key identifier: D5:F6:B7:FF:6F:96:81:9D:AF:FD:6C:EF:21:9B:89:AD:F3:E3:CF:77
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D5F6B7FF6F96819DAFFD6CEF219B89ADF3E3CF77.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HMLbExkmsrQTi3GWpZU5g9phogpbGb6hJmX7ZV2W2MSJ/0/323830343a3361383a3a2f33322d3332203d3e203533313935.roa
Signing time: Fri 23 Aug 2024 20:00:04 +0000
ROA not before: Fri 23 Aug 2024 19:55:04 +0000
ROA not after: Fri 22 Aug 2025 20:00:04 +0000
asID: 53195
IP address blocks: 2804:3a8::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:27:45:a0:23:15:18:44:dd:a2:70:af:a9:86:53:15:21:91:1a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5F6B7FF6F96819DAFFD6CEF219B89ADF3E3CF77
Validity
Not Before: Aug 23 19:55:04 2024 GMT
Not After : Aug 22 20:00:04 2025 GMT
Subject: CN=A3D144644827B88B5D21971E6C3C32C62076A701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d2:44:66:68:fa:50:3d:46:60:7e:70:44:44:
46:45:65:15:14:43:2e:cc:bf:ce:99:9b:49:11:61:
0c:47:ef:e7:ff:3c:5d:3b:71:0d:dd:7e:09:0f:cd:
16:b5:74:02:af:be:db:b9:38:0f:da:15:cd:99:53:
71:85:83:c4:cd:ce:bc:20:b1:26:27:2d:68:76:ed:
34:ff:0c:51:0a:1e:99:39:f8:90:41:ff:cb:ff:17:
14:8b:09:d1:2c:18:75:b9:0d:98:94:25:a1:8a:77:
c0:ad:8f:c4:f8:2a:19:98:28:8d:6b:18:b2:b2:69:
ad:c7:e3:90:da:05:0f:bb:f3:31:e5:4c:3f:94:d1:
39:b6:8e:76:44:a6:5e:1e:1c:91:22:68:d9:85:91:
44:1e:63:0b:b9:ea:93:b6:9a:dc:e9:23:0f:e5:78:
45:a1:01:15:1e:bd:df:0c:61:29:1b:1c:20:4e:f6:
f1:e1:b8:2b:33:57:c8:31:d5:f3:82:13:c4:5b:67:
ef:ee:0d:18:3a:bc:bc:63:34:39:ca:04:40:4e:aa:
65:9b:65:23:6e:62:08:99:1f:c9:14:ae:47:3a:43:
00:10:8a:8b:db:8f:8f:7d:16:dd:44:a4:a1:df:16:
37:d7:02:38:af:33:7a:df:c2:f4:70:57:5f:6b:16:
2a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D1:44:64:48:27:B8:8B:5D:21:97:1E:6C:3C:32:C6:20:76:A7:01
X509v3 Authority Key Identifier:
keyid:D5:F6:B7:FF:6F:96:81:9D:AF:FD:6C:EF:21:9B:89:AD:F3:E3:CF:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HMLbExkmsrQTi3GWpZU5g9phogpbGb6hJmX7ZV2W2MSJ/0/D5F6B7FF6F96819DAFFD6CEF219B89ADF3E3CF77.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D5F6B7FF6F96819DAFFD6CEF219B89ADF3E3CF77.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HMLbExkmsrQTi3GWpZU5g9phogpbGb6hJmX7ZV2W2MSJ/0/323830343a3361383a3a2f33322d3332203d3e203533313935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3a8::/32
Signature Algorithm: sha256WithRSAEncryption
7b:9e:5d:88:9a:29:b1:58:63:2d:5b:3a:b9:1c:4a:93:63:ed:
7c:01:f8:00:ec:f9:b3:af:54:2a:3f:02:c5:3b:00:e4:8e:91:
43:f1:9f:7e:55:12:d5:2a:3a:26:5d:21:ed:49:d2:b8:01:40:
b6:e1:30:91:16:c2:3c:dd:4d:c2:ad:7f:04:55:1e:82:4d:a6:
02:2d:ec:26:db:5c:ec:9e:31:40:01:88:7d:a4:94:da:58:ea:
b2:08:33:f9:05:cc:be:e2:63:fe:e5:05:db:f3:de:c9:37:26:
27:0a:c8:ab:31:05:33:8b:bc:3b:5a:f9:9b:37:62:fb:02:a6:
94:3c:fb:09:75:77:b2:f2:3d:61:73:68:72:88:5b:4e:e1:d6:
ec:07:d3:52:00:af:b7:55:9b:d1:28:20:94:b9:d7:d6:95:fe:
5a:35:94:79:de:b0:32:a7:bc:f2:62:ab:6d:65:40:db:46:fb:
bc:94:c1:4c:fe:7e:f3:0d:d0:90:6e:93:9f:56:51:cc:e6:31:
93:cb:94:36:03:df:e5:99:6a:6f:12:04:e7:c6:83:68:18:b6:
47:3d:e2:84:83:1d:04:35:33:b0:e9:a1:d0:46:69:bf:48:bd:
17:71:99:78:c1:2e:d9:11:36:db:b9:3d:62:47:b1:b2:c6:6f:
a9:6e:7f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:39:15 2025 by rpki-client