Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HXniMnv8y9EmJCjx2uu9BWC91L6TdynFHG8UgNZow7aZ/1/323830343a38383a3a2f33322d3332203d3e203238313335.roa
File: 323830343a38383a3a2f33322d3332203d3e203238313335.roa (raw, json)
Hash identifier: xTxr+NdjOUuFz3/N2edzkdpKHhB7+4kjgWvKeswi3ks=
Subject key identifier: EE:50:CC:BD:BC:13:E3:8C:19:C3:BD:7C:F5:75:6E:FA:99:F6:2D:6E
Certificate issuer: /CN=CD6B92DF78E70B390376FC99E832428600EEDFB7
Certificate serial: 08476697D288FDC06990F1A0700F369AA1970A7C
Authority key identifier: CD:6B:92:DF:78:E7:0B:39:03:76:FC:99:E8:32:42:86:00:EE:DF:B7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD6B92DF78E70B390376FC99E832428600EEDFB7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HXniMnv8y9EmJCjx2uu9BWC91L6TdynFHG8UgNZow7aZ/1/323830343a38383a3a2f33322d3332203d3e203238313335.roa
Signing time: Thu 04 Apr 2024 20:10:43 +0000
ROA not before: Thu 04 Apr 2024 20:05:43 +0000
ROA not after: Thu 03 Apr 2025 20:10:43 +0000
asID: 28135
IP address blocks: 2804:88::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:47:66:97:d2:88:fd:c0:69:90:f1:a0:70:0f:36:9a:a1:97:0a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD6B92DF78E70B390376FC99E832428600EEDFB7
Validity
Not Before: Apr 4 20:05:43 2024 GMT
Not After : Apr 3 20:10:43 2025 GMT
Subject: CN=EE50CCBDBC13E38C19C3BD7CF5756EFA99F62D6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:8c:55:8d:dd:c7:d4:7b:3b:a1:7c:77:53:
6f:19:42:7c:2e:17:6a:61:3b:0c:63:86:39:a4:e4:
2f:6e:7c:d9:03:f8:f7:54:af:63:4c:31:72:8c:e9:
aa:57:31:ee:81:d0:d2:2d:87:1d:93:fb:65:8c:a7:
07:6a:a3:32:e9:f2:8c:a5:8f:f4:d9:85:97:84:f5:
de:4a:bf:03:00:68:23:04:78:13:4a:39:14:b4:0d:
67:f7:41:22:0c:8f:13:9c:ed:c1:80:33:36:63:33:
70:d2:7d:f2:2e:34:93:c5:28:fb:43:5f:a7:b3:24:
ba:f3:9d:f1:76:7d:8c:52:85:93:0b:0e:7b:46:1c:
88:53:c2:7b:da:5a:12:f8:4a:c4:96:3f:68:e1:94:
a5:42:f6:b2:45:cf:89:df:42:b3:46:8e:a6:6f:c9:
a5:49:03:84:3d:04:26:5e:ef:2c:da:44:84:47:fe:
82:46:c2:d1:34:b0:e5:72:91:69:2c:65:9f:f7:bc:
81:2e:dc:02:c3:a5:fb:3f:57:df:b9:b4:69:bb:4a:
98:67:ba:6b:61:d4:58:43:8e:50:b7:2a:1f:11:9a:
47:a4:72:6e:3a:3e:81:b5:d0:43:3f:42:91:0d:5d:
c1:c2:c3:d0:77:84:e5:1e:56:2c:a7:d4:5b:08:04:
3f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:50:CC:BD:BC:13:E3:8C:19:C3:BD:7C:F5:75:6E:FA:99:F6:2D:6E
X509v3 Authority Key Identifier:
keyid:CD:6B:92:DF:78:E7:0B:39:03:76:FC:99:E8:32:42:86:00:EE:DF:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HXniMnv8y9EmJCjx2uu9BWC91L6TdynFHG8UgNZow7aZ/1/CD6B92DF78E70B390376FC99E832428600EEDFB7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CD6B92DF78E70B390376FC99E832428600EEDFB7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HXniMnv8y9EmJCjx2uu9BWC91L6TdynFHG8UgNZow7aZ/1/323830343a38383a3a2f33322d3332203d3e203238313335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:88::/32
Signature Algorithm: sha256WithRSAEncryption
29:e0:00:60:df:93:09:1b:93:ad:99:df:4d:ca:40:f1:89:0c:
9f:b0:8f:f4:0d:85:f1:cb:5f:9c:3a:0d:7a:0b:87:74:4b:6f:
fa:8b:a2:13:70:40:45:1c:01:7a:e1:e3:f5:30:96:c7:a9:b8:
c7:60:c0:79:68:a8:93:61:b0:da:78:a6:c0:b7:09:c6:94:73:
be:bc:d1:84:ae:ec:48:cd:5c:5c:be:c9:d4:eb:e3:48:94:da:
11:76:86:3b:2a:78:c3:9c:35:18:b1:5e:38:99:cf:65:f7:27:
0d:17:eb:ab:07:f3:19:0d:19:01:a9:2c:bd:21:23:fe:b8:ae:
ee:8d:60:a9:f9:3f:a6:a1:75:23:4f:5d:8f:af:12:04:8d:f5:
11:03:c2:cc:bf:f9:23:02:4c:52:66:f3:6d:30:cd:7f:20:38:
ef:e3:1e:b3:86:69:b6:be:98:5f:6b:c1:54:1f:30:95:6e:03:
75:77:e6:44:03:95:72:85:f2:e6:eb:55:c6:e0:63:bf:21:5e:
55:51:47:2f:27:dc:de:52:ae:ea:1e:2d:4d:1a:3c:ca:b0:a6:
04:e5:12:a8:42:39:4e:4c:db:93:3e:a2:30:50:26:71:d2:13:
86:66:2d:fa:e6:00:b9:a5:c9:f1:72:c8:53:16:a9:a4:38:65:
97:23:b3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 09:21:49 2025 by rpki-client