Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/3133382e3131372e3137322e302f32342d3234203d3e20323634323337.roa
File: 3133382e3131372e3137322e302f32342d3234203d3e20323634323337.roa (raw, json)
Hash identifier: 3xJJOasBl7tmT2UJ3R3jEyWJ9hbTOjQyngQeFZM1+lY=
Subject key identifier: B9:6E:29:68:31:04:19:0B:6D:7E:48:CC:AF:AA:67:77:F0:50:D6:FC
Certificate issuer: /CN=66D5AB14A687F80E7A5A3698F13E2B2421405A11
Certificate serial: 0E8AC13134B41800E7B49C1157FFEA8A8EAB4E0C
Authority key identifier: 66:D5:AB:14:A6:87:F8:0E:7A:5A:36:98:F1:3E:2B:24:21:40:5A:11
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/3133382e3131372e3137322e302f32342d3234203d3e20323634323337.roa
Signing time: Wed 05 Mar 2025 19:00:31 +0000
ROA not before: Wed 05 Mar 2025 18:55:31 +0000
ROA not after: Wed 04 Mar 2026 19:00:31 +0000
asID: 264237
IP address blocks: 138.117.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.crl
rsync://rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:58:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:8a:c1:31:34:b4:18:00:e7:b4:9c:11:57:ff:ea:8a:8e:ab:4e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66D5AB14A687F80E7A5A3698F13E2B2421405A11
Validity
Not Before: Mar 5 18:55:31 2025 GMT
Not After : Mar 4 19:00:31 2026 GMT
Subject: CN=B96E29683104190B6D7E48CCAFAA6777F050D6FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:80:b2:88:2e:b7:bc:20:a8:22:83:1c:4d:3b:
8d:e7:43:ac:9e:f3:ff:ec:ef:83:2d:4e:c8:70:31:
48:f0:26:ae:fc:25:ab:dc:64:f4:7b:f4:9f:9b:e6:
1f:71:5a:26:99:35:da:9b:86:21:41:c1:85:4b:85:
33:bd:fb:35:36:ab:48:ef:9e:31:f8:98:a3:48:7a:
13:05:ad:61:2a:21:59:59:af:e5:e8:20:b2:43:70:
75:fb:e2:18:f7:36:63:c2:bf:5a:40:48:a4:de:97:
86:dc:27:96:d0:61:5c:dc:b4:2c:c0:49:90:56:17:
6b:a5:ec:bb:80:2a:49:17:a2:60:c2:bc:78:4a:0d:
9d:ee:af:45:aa:22:4e:f7:de:36:ce:53:e7:36:c1:
91:6f:6c:b5:aa:69:aa:64:df:98:c4:2a:78:f4:18:
4d:3c:f2:f5:a3:a5:d0:6e:cd:33:72:ba:be:a1:d6:
02:80:cd:53:28:f0:b0:7c:19:d0:0f:41:1c:66:15:
6d:38:9c:31:8d:04:bb:0c:9b:84:4f:42:30:be:c0:
15:9c:b0:4f:d5:fb:47:86:80:ae:16:32:93:86:86:
b2:3e:16:74:32:3c:35:c7:c7:d2:a7:3f:75:4c:dc:
48:37:49:b2:d3:42:a2:80:4c:db:08:7a:e9:a3:8d:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6E:29:68:31:04:19:0B:6D:7E:48:CC:AF:AA:67:77:F0:50:D6:FC
X509v3 Authority Key Identifier:
keyid:66:D5:AB:14:A6:87:F8:0E:7A:5A:36:98:F1:3E:2B:24:21:40:5A:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66D5AB14A687F80E7A5A3698F13E2B2421405A11.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HhMBNjDFjj9QdEuhhfzwyM88GR8ZUmVJDag9UNgLQvdP/1/3133382e3131372e3137322e302f32342d3234203d3e20323634323337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.172.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f6:e1:e0:b4:7e:cb:51:18:50:ed:37:e9:c9:98:0f:c8:a0:
15:d6:d3:45:a1:fa:28:de:a2:7d:54:e6:cf:95:13:fd:54:0e:
71:7b:2e:98:fe:04:08:54:af:48:4c:cc:1d:da:1a:f8:09:52:
52:02:f9:c7:89:f0:c4:67:af:fe:44:7d:58:2a:e8:e7:64:a2:
25:20:f2:b2:15:55:07:dc:fe:d7:c2:c0:b9:dc:aa:72:d3:62:
ab:22:30:82:3c:43:41:dc:d8:22:9f:32:93:24:ad:e3:24:8c:
a7:a6:15:06:1c:13:cd:0c:fe:a3:bf:f8:e7:e2:da:11:a3:5b:
58:21:57:b0:f6:f2:89:9a:de:00:5f:87:7d:b6:00:b2:3a:df:
63:ab:fc:e5:a2:dc:3e:e5:32:f0:68:3a:9d:0a:1e:cc:66:b7:
48:b9:48:a6:ee:f8:36:5e:0a:1d:3a:27:ed:9f:9c:a7:07:54:
d5:35:50:68:59:a7:d5:c4:64:c5:e1:c1:9b:1c:06:6a:85:aa:
cd:f0:c3:6b:9c:ec:21:c6:a7:f0:f9:e1:57:9b:6a:55:db:0e:
f1:0e:1f:6e:c8:4c:5e:ae:29:80:71:d2:93:e2:eb:b4:e3:f1:
85:ab:f3:9d:3e:47:98:c3:91:9d:f5:19:c9:a3:fe:c8:55:65:
8f:43:b1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 12:42:56 2025 by rpki-client