Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HTyh3GZCFbbAYpNH1kXoHxxitJaWYWR4P3Pog2N5BrRH/1/3137302e302e36382e302f32322d3332203d3e20323634393633.roa
File: 3137302e302e36382e302f32322d3332203d3e20323634393633.roa (raw, json)
Hash identifier: BTbjmwjyqpdTKLLMQI6z/WnAE87x4tBFK6JSAunFNdI=
Subject key identifier: 58:FB:4D:16:83:E6:32:85:05:60:D3:71:98:A2:D9:F7:4E:C5:6A:6E
Certificate issuer: /CN=B8AF00843C9024B68AE3EC4331E753B7B2B422DF
Certificate serial: 6C5ED5F95A35ECA7E1A96F2B448A2DA0CA557C59
Authority key identifier: B8:AF:00:84:3C:90:24:B6:8A:E3:EC:43:31:E7:53:B7:B2:B4:22:DF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B8AF00843C9024B68AE3EC4331E753B7B2B422DF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HTyh3GZCFbbAYpNH1kXoHxxitJaWYWR4P3Pog2N5BrRH/1/3137302e302e36382e302f32322d3332203d3e20323634393633.roa
Signing time: Thu 06 Mar 2025 17:53:33 +0000
ROA not before: Thu 06 Mar 2025 17:48:33 +0000
ROA not after: Thu 05 Mar 2026 17:53:33 +0000
asID: 264963
IP address blocks: 170.0.68.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:5e:d5:f9:5a:35:ec:a7:e1:a9:6f:2b:44:8a:2d:a0:ca:55:7c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8AF00843C9024B68AE3EC4331E753B7B2B422DF
Validity
Not Before: Mar 6 17:48:33 2025 GMT
Not After : Mar 5 17:53:33 2026 GMT
Subject: CN=58FB4D1683E632850560D37198A2D9F74EC56A6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:3e:b5:80:b5:b7:fb:d1:a0:98:9e:a3:8b:
c1:d1:77:88:95:9c:60:61:52:70:53:a3:84:51:91:
ae:02:a7:43:1c:fc:52:68:f6:52:0a:84:24:fa:33:
94:da:4a:8a:4c:97:38:cc:77:6c:ce:84:f9:98:b5:
35:20:3e:ef:0e:e6:d8:36:d9:2e:e1:18:dc:d6:a8:
dd:64:7b:60:fd:b3:06:38:da:4d:1d:d2:a5:94:29:
c2:80:1e:fd:b8:90:f2:91:f6:f8:3f:bb:cc:22:31:
21:71:5d:d8:66:06:6e:bc:41:ad:84:5c:a2:27:f8:
cd:86:6f:cf:a3:5c:65:5e:2c:13:64:e8:0f:22:1a:
af:84:2d:2c:9d:04:7b:b2:a5:42:cf:94:fb:1e:c0:
55:75:9d:09:13:1a:69:56:52:8f:01:64:60:5c:24:
80:59:f8:66:32:81:2a:27:d8:fe:7d:4b:ea:a9:99:
52:8f:46:3c:cf:03:cc:8c:a4:43:1b:56:21:85:59:
9d:35:6f:c1:29:93:f7:ff:ec:0c:f1:81:ff:0e:e8:
f7:be:0c:3d:ac:d9:29:ae:46:a3:8b:c9:17:57:68:
d5:68:dd:78:7d:c2:4f:26:96:a7:78:78:8a:82:1e:
66:94:f4:d6:a1:3e:d7:1a:b2:1a:ae:17:a9:d3:3e:
03:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FB:4D:16:83:E6:32:85:05:60:D3:71:98:A2:D9:F7:4E:C5:6A:6E
X509v3 Authority Key Identifier:
keyid:B8:AF:00:84:3C:90:24:B6:8A:E3:EC:43:31:E7:53:B7:B2:B4:22:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HTyh3GZCFbbAYpNH1kXoHxxitJaWYWR4P3Pog2N5BrRH/1/B8AF00843C9024B68AE3EC4331E753B7B2B422DF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B8AF00843C9024B68AE3EC4331E753B7B2B422DF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HTyh3GZCFbbAYpNH1kXoHxxitJaWYWR4P3Pog2N5BrRH/1/3137302e302e36382e302f32322d3332203d3e20323634393633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.68.0/22
Signature Algorithm: sha256WithRSAEncryption
37:b6:a8:d3:52:78:78:78:35:c0:07:60:94:75:9d:99:5e:72:
4c:ff:43:dc:a0:ca:77:74:f4:01:83:62:9f:9d:ec:00:8d:f1:
64:d3:9c:c0:b9:78:a7:ea:8a:36:c0:ea:1b:8c:18:1b:fb:93:
6f:a4:8f:2f:a0:1f:dd:87:6b:a4:84:35:72:c6:54:b4:fd:0b:
82:c6:42:f4:6a:db:d8:2e:82:fb:fb:69:f2:f3:e1:d3:2e:9f:
08:d5:84:ef:f5:7c:88:6a:23:6c:8e:c2:f3:a7:bd:1b:ba:aa:
8f:ad:f7:25:a1:22:a2:f4:e2:72:43:b3:8b:23:75:8c:75:16:
37:b7:ac:28:4b:59:5c:32:a2:1d:53:68:82:df:28:44:3c:b6:
08:06:5e:34:45:a9:53:6b:0e:23:6c:0b:59:7e:e3:80:c6:9e:
f0:79:8e:b0:b8:4b:40:38:d8:76:ed:ca:92:0b:12:bc:1c:a4:
46:49:cf:0b:37:b3:db:f2:e1:5e:9e:68:70:68:50:92:c2:9b:
c9:5a:c1:b5:83:f5:20:d2:17:49:97:a8:68:72:8e:74:7d:6f:
9f:23:de:00:fb:0d:ba:3a:ab:90:68:c0:8e:af:3c:da:d3:a9:
f5:b6:d2:e5:30:13:ca:0d:2a:37:47:57:6b:2f:76:df:1f:0e:
a4:f0:2d:9a
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUbF7V+Vo17KfhqW8rRIotoMpVfFkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjhBRjAwODQzQzkwMjRCNjhBRTNFQzQzMzFFNzUzQjdC
MkI0MjJERjAeFw0yNTAzMDYxNzQ4MzNaFw0yNjAzMDUxNzUzMzNaMDMxMTAvBgNV
BAMTKDU4RkI0RDE2ODNFNjMyODUwNTYwRDM3MTk4QTJEOUY3NEVDNTZBNkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMBz61gLW3+9GgmJ6ji8HRd4iV
nGBhUnBTo4RRka4Cp0Mc/FJo9lIKhCT6M5TaSopMlzjMd2zOhPmYtTUgPu8O5tg2
2S7hGNzWqN1ke2D9swY42k0d0qWUKcKAHv24kPKR9vg/u8wiMSFxXdhmBm68Qa2E
XKIn+M2Gb8+jXGVeLBNk6A8iGq+ELSydBHuypULPlPsewFV1nQkTGmlWUo8BZGBc
JIBZ+GYygSon2P59S+qpmVKPRjzPA8yMpEMbViGFWZ01b8Epk/f/7Azxgf8O6Pe+
DD2s2SmuRqOLyRdXaNVo3Xh9wk8mlqd4eIqCHmaU9NahPtcashquF6nTPgO7AgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUWPtNFoPmMoUFYNNxmKLZ907Fam4wHwYDVR0j
BBgwFoAUuK8AhDyQJLaK4+xDMedTt7K0It8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSFR5aDNHWkNGYmJBWXBOSDFrWG9IeHhpdEphV1lXUjRQM1BvZzJONUJy
UkgvMS9COEFGMDA4NDNDOTAyNEI2OEFFM0VDNDMzMUU3NTNCN0IyQjQyMkRGLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0I4QUYwMDg0M0M5MDI0QjY4
QUUzRUM0MzMxRTc1M0I3QjJCNDIyREYuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0hUeWgzR1pDRmJiQVlwTkgxa1hvSHh4aXRKYVdZV1I0UDNQb2cyTjVCclJILzEv
MzEzNzMwMmUzMDJlMzYzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMyMzYzNDM5
MzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAqoARDANBgkqhkiG9w0BAQsFAAOCAQEAN7ao01J4eHg1
wAdglHWdmV5yTP9D3KDKd3T0AYNin53sAI3xZNOcwLl4p+qKNsDqG4wYG/uTb6SP
L6Af3YdrpIQ1csZUtP0LgsZC9Grb2C6C+/tp8vPh0y6fCNWE7/V8iGojbI7C86e9
G7qqj633JaEiovTickOziyN1jHUWN7esKEtZXDKiHVNogt8oRDy2CAZeNEWpU2sO
I2wLWX7jgMae8HmOsLhLQDjYdu3KkgsSvBykRknPCzez2/LhXp5ocGhQksKbyVrB
tYP1INIXSZeoaHKOdH1vnyPeAPsNujqrkGjAjq882tOp9bbS5TATyg0qN0dXay92
3x8OpPAtmg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:52 2025 by rpki-client