Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/323830343a336439303a3a2f33322d3438203d3e20323032.roa
File: 323830343a336439303a3a2f33322d3438203d3e20323032.roa (raw, json)
Hash identifier: WpFnDTmY8zk59PrfyxW6Djzy0QYg50QAK1Hv57G5E+A=
Subject key identifier: B6:C9:EF:E7:54:7A:0C:B2:FE:D0:63:CA:4A:92:7C:68:30:49:B7:3F
Certificate issuer: /CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Certificate serial: 34C973E0D4FAFD3F69D09C62AF9327C8A3AED67A
Authority key identifier: AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/323830343a336439303a3a2f33322d3438203d3e20323032.roa
Signing time: Thu 06 Mar 2025 04:06:00 +0000
ROA not before: Thu 06 Mar 2025 04:01:00 +0000
ROA not after: Thu 05 Mar 2026 04:06:00 +0000
asID: 202
IP address blocks: 2804:3d90::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:c9:73:e0:d4:fa:fd:3f:69:d0:9c:62:af:93:27:c8:a3:ae:d6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Validity
Not Before: Mar 6 04:01:00 2025 GMT
Not After : Mar 5 04:06:00 2026 GMT
Subject: CN=B6C9EFE7547A0CB2FED063CA4A927C683049B73F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:96:da:89:50:c5:68:9a:33:bc:42:33:a6:
a1:af:e6:d8:1b:ec:0f:64:6f:90:d8:9d:86:22:17:
8a:a4:a4:ea:77:1b:d6:1e:3f:43:3c:92:b5:d6:0c:
2b:cf:18:47:26:7f:4e:a9:4a:6b:e4:fd:f9:8a:3c:
54:8e:af:55:ef:69:27:55:34:80:c0:ff:80:da:de:
1b:41:be:62:98:c5:29:fb:cb:27:d4:7b:15:45:c5:
dd:e8:f8:5a:15:76:dc:ed:aa:15:76:9b:7e:d8:fc:
f1:06:8d:f7:56:5f:78:30:11:86:d4:8a:d6:28:93:
c0:62:2b:9a:1c:e6:09:a2:ae:39:85:c0:0c:f5:2f:
4f:bb:63:c2:19:51:87:4b:5c:47:b7:db:83:67:28:
60:d5:c1:fb:b0:2a:18:56:5e:07:30:d5:5c:50:8d:
0a:8c:e3:92:aa:70:92:bc:b5:0f:99:91:6d:f5:c2:
10:8d:0a:83:93:e9:a6:60:0f:83:69:e4:51:58:90:
2e:31:c0:3f:8a:21:96:fd:2a:3d:e9:c6:d4:bc:a0:
8f:6d:28:9f:0b:4a:16:57:76:7a:47:92:ba:1a:88:
c5:c7:e3:8b:10:26:3d:c2:e2:3f:74:96:d1:f5:fb:
70:49:ec:f1:42:a9:07:c3:54:98:cb:bd:d4:6c:13:
fa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C9:EF:E7:54:7A:0C:B2:FE:D0:63:CA:4A:92:7C:68:30:49:B7:3F
X509v3 Authority Key Identifier:
keyid:AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/323830343a336439303a3a2f33322d3438203d3e20323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3d90::/32
Signature Algorithm: sha256WithRSAEncryption
3b:5c:7b:32:ff:d5:c3:7e:5d:82:3d:05:31:de:5e:d5:49:1c:
94:a4:66:c7:de:d2:de:64:57:cf:cf:ed:c2:31:a7:dc:fe:7b:
72:71:7c:c2:8a:0c:40:b8:5b:20:1d:be:a3:97:f8:87:fd:9e:
9a:3c:71:1c:96:9d:dc:5f:c8:8e:fa:62:14:04:be:aa:a4:64:
92:3e:91:1d:39:a7:35:ab:43:79:be:34:51:5f:d4:a7:e3:5f:
9f:00:e0:c3:8b:fa:71:da:89:6c:d5:e1:51:2c:c6:43:68:0c:
ec:8d:6b:3d:3f:af:89:5e:60:eb:3f:ec:7a:79:42:d7:9b:d3:
cd:b6:81:6c:1e:7a:bd:1d:61:d3:28:5d:6b:8c:46:f3:5a:a5:
f4:07:31:83:28:e1:ea:23:61:a3:0a:8f:81:ad:89:57:75:d0:
7c:70:fd:92:7a:63:4c:7b:5e:7b:9e:db:8b:dd:10:cf:94:3c:
8b:87:f7:a8:95:fe:93:53:70:68:a9:e4:51:ef:86:b6:75:9b:
17:1d:e9:55:69:9a:1a:1d:a3:6b:7c:17:47:3e:cc:14:e2:e3:
45:3a:59:99:2f:bd:06:a0:f7:00:0e:ad:cc:25:d2:e9:89:e0:
13:be:8e:ce:c9:4f:7d:0e:48:16:f1:fb:da:28:ef:79:3c:95:
b6:b8:42:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:04:55 2025 by rpki-client