Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HmAZBWJZihigumcTjh3JSHbh62Wd9eWkw4qM1v2PepB4/0/323830343a373836343a3a2f33322d3334203d3e20323731323339.roa
File: 323830343a373836343a3a2f33322d3334203d3e20323731323339.roa (raw, json)
Hash identifier: uxP6pyhDkCXML9Jcd7Qk5UT660UK0QapmkHOHgo0WcY=
Subject key identifier: 23:3A:AC:DD:67:30:E4:1B:06:89:67:DC:E6:72:18:EA:A0:8A:8B:78
Certificate issuer: /CN=85B44C89427FA1CFB8491F84467C58597CE25783
Certificate serial: A4305C3FA53BCCA55D04F2D54147D2CAEFD5E8
Authority key identifier: 85:B4:4C:89:42:7F:A1:CF:B8:49:1F:84:46:7C:58:59:7C:E2:57:83
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85B44C89427FA1CFB8491F84467C58597CE25783.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HmAZBWJZihigumcTjh3JSHbh62Wd9eWkw4qM1v2PepB4/0/323830343a373836343a3a2f33322d3334203d3e20323731323339.roa
Signing time: Thu 01 Aug 2024 13:06:33 +0000
ROA not before: Thu 01 Aug 2024 13:01:33 +0000
ROA not after: Thu 31 Jul 2025 13:06:33 +0000
asID: 271239
IP address blocks: 2804:7864::/32 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
a4:30:5c:3f:a5:3b:cc:a5:5d:04:f2:d5:41:47:d2:ca:ef:d5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85B44C89427FA1CFB8491F84467C58597CE25783
Validity
Not Before: Aug 1 13:01:33 2024 GMT
Not After : Jul 31 13:06:33 2025 GMT
Subject: CN=233AACDD6730E41B068967DCE67218EAA08A8B78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:9a:23:93:f3:f3:51:be:b5:d9:46:bc:f1:
d2:ce:b3:21:83:5c:dc:22:1a:1b:b5:b8:7e:b7:29:
23:99:23:40:7a:84:b7:c2:1d:f3:25:a2:88:2c:0a:
fc:40:66:04:f4:07:96:f3:c5:ff:08:3c:f6:18:76:
3e:dc:d2:79:6f:9d:e8:85:49:45:2b:d3:ad:06:c1:
55:2d:a4:fc:70:c2:d1:b2:03:87:fb:88:0e:b4:de:
50:08:70:31:b0:8a:bc:aa:9c:5e:d8:10:02:c5:a2:
3c:cd:9e:32:c3:f5:da:82:eb:d8:19:1f:16:67:bc:
a8:17:2d:b2:36:e5:35:e9:3c:0f:b8:a8:69:9c:ab:
e3:70:f6:b3:2e:5e:1d:3b:42:91:a8:15:51:65:09:
31:cd:1b:49:46:9f:63:aa:69:01:49:01:b3:fe:30:
8f:df:67:08:df:af:b7:1f:9d:37:1a:6d:c0:bf:43:
f4:e3:6f:bf:30:d6:03:11:91:6f:57:57:d4:b5:2c:
dd:d3:70:0f:fb:9e:8a:ce:74:c1:3f:c0:47:a0:8c:
77:6c:0d:ee:32:4f:46:bf:42:ec:fd:ca:78:fa:80:
1b:ae:4f:b6:b2:8c:58:1c:aa:1b:ab:e2:97:5a:51:
d4:5b:31:8e:ab:f7:86:95:35:56:ff:7d:8c:9d:ff:
0c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3A:AC:DD:67:30:E4:1B:06:89:67:DC:E6:72:18:EA:A0:8A:8B:78
X509v3 Authority Key Identifier:
keyid:85:B4:4C:89:42:7F:A1:CF:B8:49:1F:84:46:7C:58:59:7C:E2:57:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HmAZBWJZihigumcTjh3JSHbh62Wd9eWkw4qM1v2PepB4/0/85B44C89427FA1CFB8491F84467C58597CE25783.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85B44C89427FA1CFB8491F84467C58597CE25783.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HmAZBWJZihigumcTjh3JSHbh62Wd9eWkw4qM1v2PepB4/0/323830343a373836343a3a2f33322d3334203d3e20323731323339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:7864::/32
Signature Algorithm: sha256WithRSAEncryption
42:cc:c5:18:ee:2a:5b:c9:b8:8a:3c:0d:eb:9b:c5:82:69:72:
35:b6:95:54:a3:6a:58:37:9f:1b:6e:0f:6a:8b:42:ea:78:f5:
01:8e:21:18:95:d9:3c:57:d6:0b:a4:f6:88:17:db:39:de:04:
3d:90:0b:60:56:aa:70:a3:39:ca:38:13:5e:b1:a6:f8:9d:36:
32:f8:99:88:41:8b:09:25:0d:ff:a1:54:9f:4f:83:ad:a3:68:
44:30:d8:a9:4f:58:68:2d:dd:a5:43:1f:a9:9b:23:11:fb:83:
db:62:b1:ce:8c:95:0b:be:06:7e:bc:70:c0:a6:54:ce:29:fb:
6a:5c:d6:6f:50:2b:91:e4:f6:6f:7b:65:02:bc:3a:44:8b:87:
79:d3:63:b3:de:d8:f4:e0:04:a6:d9:7c:02:a4:69:55:2c:c3:
33:d0:2c:bb:63:41:a1:65:ba:2c:73:1c:9c:d0:d6:ff:45:8a:
ba:c9:a8:84:71:25:68:02:2a:05:03:11:4d:6b:72:5d:6b:6e:
07:10:cd:55:db:f1:e6:15:f2:1f:77:d3:ae:0b:4e:85:0b:79:
4f:48:05:aa:9e:b9:81:8d:12:c8:38:bc:8a:19:96:f5:0f:7d:
4a:e5:06:a1:13:05:0d:3e:ca:da:82:ee:9f:c8:15:0f:28:15:
be:bf:3f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:31:27 2025 by rpki-client