Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a3a2f33342d3334203d3e20323635333737.roa
File: 323830343a333332343a3a2f33342d3334203d3e20323635333737.roa (raw, json)
Hash identifier: CRPJCw0trNU3LSJUJ1amYvMXs8/paBkR35eiTmLMARU=
Subject key identifier: 3D:8E:4C:19:2D:F8:16:32:82:21:86:E6:29:D2:8F:84:26:59:B2:95
Certificate issuer: /CN=A4C9B133126401D92DA5457C573EA0078BF42BA8
Certificate serial: 5CC97DF36B4DBF58B2E1ED642921E5C241A65135
Authority key identifier: A4:C9:B1:33:12:64:01:D9:2D:A5:45:7C:57:3E:A0:07:8B:F4:2B:A8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a3a2f33342d3334203d3e20323635333737.roa
Signing time: Thu 06 Mar 2025 22:52:52 +0000
ROA not before: Thu 06 Mar 2025 22:47:52 +0000
ROA not after: Thu 05 Mar 2026 22:52:52 +0000
asID: 265377
IP address blocks: 2804:3324::/34 maxlen: 34
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.crl
rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 09:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:c9:7d:f3:6b:4d:bf:58:b2:e1:ed:64:29:21:e5:c2:41:a6:51:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4C9B133126401D92DA5457C573EA0078BF42BA8
Validity
Not Before: Mar 6 22:47:52 2025 GMT
Not After : Mar 5 22:52:52 2026 GMT
Subject: CN=3D8E4C192DF81632822186E629D28F842659B295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1e:e9:d1:99:f4:18:45:5c:67:f0:47:f4:70:
f0:1f:bc:7b:5e:cf:d7:32:7b:ed:fd:52:f1:ec:fb:
e0:76:97:d4:b6:80:8e:2a:0c:9e:c7:c1:3d:c7:8e:
ba:2e:8a:9e:8d:06:5f:1c:41:e9:00:64:c9:f0:2d:
cf:f7:a4:d1:08:90:5c:c1:1b:fd:77:a2:de:df:bd:
df:d7:3e:0b:e0:6b:17:6a:c2:c2:cb:5a:bf:47:00:
03:d0:79:94:cb:ec:6f:19:4a:e1:f5:23:1e:ae:3c:
41:0d:f4:ac:c1:65:a7:4f:7a:cd:aa:97:86:40:92:
17:f3:42:1c:22:95:3a:ff:5a:53:ec:77:5b:c8:46:
52:39:60:0c:ed:a9:7a:70:09:f0:32:a5:3f:03:93:
2d:75:b1:f6:d8:37:50:e6:e8:23:6e:81:c0:70:41:
c1:ef:8e:15:bf:38:fc:15:e8:b3:df:79:78:c9:cc:
cb:3e:30:eb:48:41:33:12:42:34:9e:25:dd:29:88:
95:1b:f7:fe:12:58:09:dd:50:a9:47:d5:22:fc:3b:
9f:b2:5f:73:cf:12:5a:ba:ab:d8:0b:a7:4b:dc:2a:
f7:21:e9:a9:e8:09:e7:62:0a:0b:cf:84:d0:ac:f6:
fa:59:fd:7f:f5:80:31:51:e7:94:01:d2:77:32:19:
6e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:8E:4C:19:2D:F8:16:32:82:21:86:E6:29:D2:8F:84:26:59:B2:95
X509v3 Authority Key Identifier:
keyid:A4:C9:B1:33:12:64:01:D9:2D:A5:45:7C:57:3E:A0:07:8B:F4:2B:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A4C9B133126401D92DA5457C573EA0078BF42BA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/He7bPZqear8UkEq3odf9SEZSYvbQ9uP444qhs5qZbJGQ/1/323830343a333332343a3a2f33342d3334203d3e20323635333737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3324::/34
Signature Algorithm: sha256WithRSAEncryption
8e:08:7b:b8:65:f5:e7:be:34:29:12:27:77:c7:9b:f8:1c:2d:
60:bf:91:ce:5f:96:0a:17:57:7c:61:5a:d8:0a:29:57:35:ed:
69:20:ae:9c:d2:f2:80:e9:cb:40:1f:8e:cc:1b:d4:42:c3:80:
27:38:9d:e0:fa:99:c6:6c:e6:d0:9f:7c:83:54:63:8d:ad:78:
ab:46:c5:9e:3c:c6:94:34:59:d1:1a:34:85:4e:3f:78:f0:56:
ef:1c:ba:e4:cf:14:fb:ec:10:ae:f6:48:d3:be:e8:28:35:6d:
97:be:8f:70:b0:21:15:41:e1:d8:e4:aa:ab:6c:b7:71:9d:58:
d1:6f:3c:87:28:88:40:ad:0b:13:c5:7a:56:87:bd:7b:aa:ed:
ff:b9:8b:44:df:2d:ca:9a:4d:90:0c:da:f1:74:c0:9f:b5:82:
45:73:f3:48:1f:a4:8a:aa:56:bf:e4:d2:74:e6:b3:6e:f3:f0:
85:70:2a:97:f0:51:a5:11:fe:39:a6:e4:c8:e2:ad:43:12:15:
8a:57:cd:57:7e:0b:86:84:37:f0:2b:c6:0c:64:ff:d8:f7:dd:
0e:7a:a8:1e:32:65:db:9d:90:ac:24:42:0c:27:ca:cd:c4:85:
33:f2:25:89:a4:47:c0:d3:96:91:9d:1e:b1:89:af:7e:c8:26:
48:ad:2a:74
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUXMl982tNv1iy4e1kKSHlwkGmUTUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTRDOUIxMzMxMjY0MDFEOTJEQTU0NTdDNTczRUEwMDc4
QkY0MkJBODAeFw0yNTAzMDYyMjQ3NTJaFw0yNjAzMDUyMjUyNTJaMDMxMTAvBgNV
BAMTKDNEOEU0QzE5MkRGODE2MzI4MjIxODZFNjI5RDI4Rjg0MjY1OUIyOTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2HunRmfQYRVxn8Ef0cPAfvHte
z9cye+39UvHs++B2l9S2gI4qDJ7HwT3Hjrouip6NBl8cQekAZMnwLc/3pNEIkFzB
G/13ot7fvd/XPgvgaxdqwsLLWr9HAAPQeZTL7G8ZSuH1Ix6uPEEN9KzBZadPes2q
l4ZAkhfzQhwilTr/WlPsd1vIRlI5YAztqXpwCfAypT8Dky11sfbYN1Dm6CNugcBw
QcHvjhW/OPwV6LPfeXjJzMs+MOtIQTMSQjSeJd0piJUb9/4SWAndUKlH1SL8O5+y
X3PPElq6q9gLp0vcKvch6anoCediCgvPhNCs9vpZ/X/1gDFR55QB0ncyGW6nAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUPY5MGS34FjKCIYbmKdKPhCZZspUwHwYDVR0j
BBgwFoAUpMmxMxJkAdktpUV8Vz6gB4v0K6gwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSGU3YlBacWVhcjhVa0VxM29kZjlTRVpTWXZiUTl1UDQ0NHFoczVxWmJK
R1EvMS9BNEM5QjEzMzEyNjQwMUQ5MkRBNTQ1N0M1NzNFQTAwNzhCRjQyQkE4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0E0QzlCMTMzMTI2NDAxRDky
REE1NDU3QzU3M0VBMDA3OEJGNDJCQTguY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0hlN2JQWnFlYXI4VWtFcTNvZGY5U0VaU1l2YlE5dVA0NDRxaHM1cVpiSkdRLzEv
MzIzODMwMzQzYTMzMzMzMjM0M2EzYTJmMzMzNDJkMzMzNDIwM2QzZTIwMzIzNjM1
MzMzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH
AQH/BBIwEDAOBAIAAjAIAwYGKAQzJAAwDQYJKoZIhvcNAQELBQADggEBAI4Ie7hl
9ee+NCkSJ3fHm/gcLWC/kc5flgoXV3xhWtgKKVc17WkgrpzS8oDpy0Afjswb1ELD
gCc4neD6mcZs5tCffINUY42teKtGxZ48xpQ0WdEaNIVOP3jwVu8cuuTPFPvsEK72
SNO+6Cg1bZe+j3CwIRVB4djkqqtst3GdWNFvPIcoiECtCxPFelaHvXuq7f+5i0Tf
LcqaTZAM2vF0wJ+1gkVz80gfpIqqVr/k0nTms27z8IVwKpfwUaUR/jmm5MjirUMS
FYpXzVd+C4aEN/Arxgxk/9j33Q56qB4yZdudkKwkQgwnys3EhTPyJYmkR8DTlpGd
HrGJr37IJkitKnQ=
-----END CERTIFICATE-----
Generated at Thu Apr 10 20:22:54 2025 by rpki-client