Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HNaqN3rdkANPqQdw8dfkadQvQGVq1QoTA2BsiBTdsgkT/0/34352e3136322e39342e302f32332d3233203d3e20323638353137.roa
File: 34352e3136322e39342e302f32332d3233203d3e20323638353137.roa (raw, json)
Hash identifier: 0Bt23eFXG+1zBuzHooVJsQ2rJKgMUZbkpq5PmKIxguU=
Subject key identifier: 88:5B:0C:70:E2:B1:EE:09:2B:1B:2B:69:9B:84:79:5B:DB:4C:78:A8
Certificate issuer: /CN=32D32D34674F0161657AF3F71B992CAF74E2BBB9
Certificate serial: 511B405433C73C67807713D082BAA544A48A8A40
Authority key identifier: 32:D3:2D:34:67:4F:01:61:65:7A:F3:F7:1B:99:2C:AF:74:E2:BB:B9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/32D32D34674F0161657AF3F71B992CAF74E2BBB9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HNaqN3rdkANPqQdw8dfkadQvQGVq1QoTA2BsiBTdsgkT/0/34352e3136322e39342e302f32332d3233203d3e20323638353137.roa
Signing time: Sat 27 Jul 2024 20:04:50 +0000
ROA not before: Sat 27 Jul 2024 19:59:50 +0000
ROA not after: Sat 26 Jul 2025 20:04:50 +0000
asID: 268517
IP address blocks: 45.162.94.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:1b:40:54:33:c7:3c:67:80:77:13:d0:82:ba:a5:44:a4:8a:8a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32D32D34674F0161657AF3F71B992CAF74E2BBB9
Validity
Not Before: Jul 27 19:59:50 2024 GMT
Not After : Jul 26 20:04:50 2025 GMT
Subject: CN=885B0C70E2B1EE092B1B2B699B84795BDB4C78A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:83:b0:21:36:76:dc:f5:16:a0:96:96:63:6f:
0a:3c:88:0c:2f:0b:2b:27:c0:4e:f3:cc:e2:28:d6:
d8:b3:49:57:aa:11:a1:cd:0b:b0:4c:de:35:98:fe:
2e:3f:8f:db:f6:e8:d2:17:d8:95:b8:44:94:e4:6e:
76:e2:fd:01:d9:43:57:71:bb:50:71:ff:32:b8:74:
91:ee:08:03:ca:a4:fa:7a:a9:4c:54:04:0d:9f:4d:
8a:dd:0a:c4:40:84:ca:d2:15:7f:1c:a2:54:92:ef:
79:c7:89:83:18:5f:1e:78:7f:68:d6:07:37:c5:e3:
0f:14:7d:74:50:f2:35:b3:e4:ed:8c:a7:d3:4a:1b:
58:ef:85:3b:32:6b:bf:09:4e:40:c3:97:e6:d6:fa:
5b:8e:0c:54:49:45:81:fd:66:22:01:e0:b2:65:8c:
2f:a6:c7:4d:e2:7a:07:13:c7:c0:51:a6:bc:38:91:
4a:c9:63:22:a2:50:a4:2d:e3:aa:4f:11:ec:7c:2d:
94:7f:71:6c:c0:6b:4c:8a:7e:dd:4e:37:88:fe:00:
4a:e5:c7:0d:58:e6:9e:75:57:63:28:58:bd:0d:3b:
f3:43:6d:0d:40:47:96:a1:8b:1e:84:2e:0b:29:22:
c7:c3:f3:86:3e:76:11:04:a4:b8:c8:b8:69:bb:03:
aa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5B:0C:70:E2:B1:EE:09:2B:1B:2B:69:9B:84:79:5B:DB:4C:78:A8
X509v3 Authority Key Identifier:
keyid:32:D3:2D:34:67:4F:01:61:65:7A:F3:F7:1B:99:2C:AF:74:E2:BB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HNaqN3rdkANPqQdw8dfkadQvQGVq1QoTA2BsiBTdsgkT/0/32D32D34674F0161657AF3F71B992CAF74E2BBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/32D32D34674F0161657AF3F71B992CAF74E2BBB9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HNaqN3rdkANPqQdw8dfkadQvQGVq1QoTA2BsiBTdsgkT/0/34352e3136322e39342e302f32332d3233203d3e20323638353137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.162.94.0/23
Signature Algorithm: sha256WithRSAEncryption
73:11:34:a1:0b:5d:67:f2:b4:71:9d:13:3c:c0:c6:f4:ee:e8:
67:ee:57:7e:87:5e:e1:a1:3e:01:a1:0f:5a:dd:b0:e6:af:ae:
4a:1f:fc:e7:b0:a2:45:26:13:d9:b5:7b:40:c4:07:e8:de:20:
04:69:7a:41:aa:93:5b:de:bd:aa:0e:f4:68:6d:66:20:38:0d:
9c:a5:65:52:0b:a9:d3:75:17:21:0c:11:ba:03:52:9e:8d:87:
54:f6:00:0b:28:86:63:b0:fe:f8:1e:b7:2f:d1:ac:d5:a1:72:
11:75:52:5d:4f:12:2a:fc:58:bf:de:be:4a:76:22:14:51:f8:
61:53:5e:8b:aa:cb:c8:04:92:5f:b4:5b:1f:18:6b:a8:60:65:
86:e6:16:70:43:68:af:9e:b0:ad:50:07:ab:38:10:0b:cf:cf:
7d:c3:3c:83:a0:eb:75:c9:9f:ab:e6:ec:e3:6f:2c:c6:5b:8a:
e5:75:e9:f7:83:00:95:f9:e4:c3:7b:40:44:93:5e:bd:c6:01:
1a:59:d7:8b:00:88:03:df:10:79:f9:3c:3e:e6:01:1c:86:ff:
7e:e6:87:91:bc:9b:04:e9:94:ab:06:1e:c2:89:ad:01:be:4a:
e6:fb:da:2d:c3:c7:51:d9:89:96:34:b2:d0:ac:d8:f1:d9:45:
d2:df:f5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:44:55 2025 by rpki-client