Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HMavfXo8jgvwsFy53k4ELqxGyYaCXehp9Jzn9QrT2hS8/1/34352e3139312e3230342e302f32322d3234203d3e20323032.roa
File: 34352e3139312e3230342e302f32322d3234203d3e20323032.roa (raw, json)
Hash identifier: ybTBKs/NDZhYl7r5M/ce/9f7F/IEzFvXZuukGj7Uykw=
Subject key identifier: C4:87:CA:05:6B:F3:DF:FD:E2:54:DA:80:9F:EE:19:58:A4:8B:03:63
Certificate issuer: /CN=D495C627858363377EC2F78374A56D2330185EC0
Certificate serial: 4E056950AFA082FCEB6C57E3F30CDBA6504E2ACC
Authority key identifier: D4:95:C6:27:85:83:63:37:7E:C2:F7:83:74:A5:6D:23:30:18:5E:C0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D495C627858363377EC2F78374A56D2330185EC0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HMavfXo8jgvwsFy53k4ELqxGyYaCXehp9Jzn9QrT2hS8/1/34352e3139312e3230342e302f32322d3234203d3e20323032.roa
Signing time: Fri 07 Mar 2025 00:06:07 +0000
ROA not before: Fri 07 Mar 2025 00:01:07 +0000
ROA not after: Fri 06 Mar 2026 00:06:07 +0000
asID: 202
IP address blocks: 45.191.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:05:69:50:af:a0:82:fc:eb:6c:57:e3:f3:0c:db:a6:50:4e:2a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D495C627858363377EC2F78374A56D2330185EC0
Validity
Not Before: Mar 7 00:01:07 2025 GMT
Not After : Mar 6 00:06:07 2026 GMT
Subject: CN=C487CA056BF3DFFDE254DA809FEE1958A48B0363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:63:69:c3:dd:cf:68:dd:46:7d:45:bb:5b:e1:
e8:aa:f3:4a:f0:6e:15:0a:7e:d7:8c:fb:1b:71:ff:
de:be:82:fb:f1:b5:43:8a:66:36:70:a3:28:37:38:
64:57:5a:8c:9b:39:16:c9:5a:34:4f:b3:4e:da:87:
c1:dc:48:e7:3f:33:8b:81:d8:a0:4e:70:75:f9:99:
92:1a:1e:97:82:62:9d:a0:1c:51:02:b8:22:ba:bd:
6b:6c:03:a7:77:e7:4b:09:c9:d9:02:5e:1a:07:6b:
e0:d5:a4:91:91:45:31:92:ca:0a:ea:36:11:59:25:
91:b5:c0:fc:08:9c:6c:15:50:04:d9:46:b1:29:eb:
0b:5e:59:43:74:1e:d9:5d:a6:8e:2c:47:60:16:6f:
34:ec:ea:41:06:6c:de:05:ed:0a:7c:bf:2c:71:b6:
2e:1d:1c:35:42:12:0c:ff:f8:6c:55:82:df:1b:87:
fc:2d:f6:ee:22:be:4d:47:3c:7c:e2:18:99:65:94:
5a:67:31:00:cd:55:3e:7d:ef:18:26:2e:6a:ad:83:
6b:89:a4:1c:80:ca:38:3c:0a:1f:08:ca:7d:89:61:
0e:57:04:2a:de:4f:07:39:99:25:b8:be:9f:19:38:
85:61:cb:a3:ca:6c:1a:8c:98:43:81:63:77:6c:c2:
cc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:87:CA:05:6B:F3:DF:FD:E2:54:DA:80:9F:EE:19:58:A4:8B:03:63
X509v3 Authority Key Identifier:
keyid:D4:95:C6:27:85:83:63:37:7E:C2:F7:83:74:A5:6D:23:30:18:5E:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HMavfXo8jgvwsFy53k4ELqxGyYaCXehp9Jzn9QrT2hS8/1/D495C627858363377EC2F78374A56D2330185EC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D495C627858363377EC2F78374A56D2330185EC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HMavfXo8jgvwsFy53k4ELqxGyYaCXehp9Jzn9QrT2hS8/1/34352e3139312e3230342e302f32322d3234203d3e20323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.191.204.0/22
Signature Algorithm: sha256WithRSAEncryption
76:1c:83:9b:8f:21:f1:61:8d:40:48:36:40:eb:f3:5c:4a:a9:
57:92:a9:3e:47:90:fb:62:60:f1:b1:12:8a:b1:a0:e3:2b:7a:
41:7d:61:46:9d:c7:2e:41:9b:8e:ed:06:3d:72:6d:d3:65:7e:
11:f0:49:34:fc:26:a1:fb:73:0a:4e:c8:0f:ba:d3:63:7f:6b:
c6:d3:11:2b:f7:8f:78:37:da:67:e8:e5:88:9c:33:2c:09:71:
ea:aa:a4:da:f6:59:31:61:87:f1:29:dd:1d:aa:f2:55:b1:09:
bf:46:56:fb:31:87:a0:64:6b:d5:bf:0c:22:4e:b1:98:93:ae:
a1:a0:d1:0e:62:94:f9:d8:21:e5:2f:96:95:bc:76:0a:aa:4d:
00:4b:08:a0:93:c1:9c:a3:3c:b5:f6:d0:c8:6a:9b:15:02:01:
f9:6a:ff:be:67:74:34:a0:51:99:26:c0:4c:e8:3c:58:79:38:
9b:27:e7:d0:25:91:15:80:5b:45:54:78:d4:4e:49:b5:b5:bb:
9a:33:51:86:a3:37:9f:d9:60:76:4f:95:62:28:1f:84:eb:32:
bc:10:a8:14:60:04:f0:ba:02:b6:66:7b:62:29:60:09:bf:92:
8c:45:a5:fc:fa:9d:18:11:3d:bc:73:6b:22:a1:22:5a:1a:83:
07:96:e4:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:03:13 2025 by rpki-client