Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323032.roa
File: 34352e36352e3232302e302f32322d3234203d3e20323032.roa (raw, json)
Hash identifier: EUR7GzFQIh4+jSMjrVmtA4e+ZAoGf+CFRWmkwFMVmWU=
Subject key identifier: A4:B3:A1:38:62:24:19:D0:E4:5E:8D:15:14:B4:12:2B:C8:A9:14:D3
Certificate issuer: /CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Certificate serial: 3322AA2E8E92A48B6C45CEC28532C6C407272A04
Authority key identifier: AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323032.roa
Signing time: Thu 06 Mar 2025 04:06:00 +0000
ROA not before: Thu 06 Mar 2025 04:01:00 +0000
ROA not after: Thu 05 Mar 2026 04:06:00 +0000
asID: 202
IP address blocks: 45.65.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:22:aa:2e:8e:92:a4:8b:6c:45:ce:c2:85:32:c6:c4:07:27:2a:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Validity
Not Before: Mar 6 04:01:00 2025 GMT
Not After : Mar 5 04:06:00 2026 GMT
Subject: CN=A4B3A138622419D0E45E8D1514B4122BC8A914D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e3:f5:96:b6:41:77:7d:4b:5e:7c:2a:77:57:
7a:7d:34:7f:06:b1:76:dc:bb:96:2f:f0:73:2b:2b:
65:6a:bc:66:cc:fb:b7:7f:21:b4:71:76:54:1a:95:
08:0e:d2:81:99:ff:2e:86:8e:71:ef:3d:9c:cd:1e:
21:e4:c4:a3:3f:01:da:85:46:d8:13:cc:fc:8e:fd:
61:a7:58:a1:01:90:20:a2:3d:86:35:94:1a:6c:ee:
5e:0e:ad:27:a3:b3:3b:50:62:85:d8:c0:13:52:76:
1f:9d:0a:7d:a9:39:c8:b2:72:c5:95:4c:69:a0:b3:
64:32:d1:fc:a5:e3:dd:49:4b:45:d8:6a:af:1e:18:
26:80:22:16:24:f6:f8:b4:0e:c6:6a:58:d1:49:6e:
cf:ef:3f:03:ce:a9:82:40:de:d7:81:c0:52:de:ba:
bb:2e:fc:d8:13:75:a6:35:48:fa:43:8c:8d:fd:22:
50:f1:9a:d3:c6:bb:6e:d5:41:87:f9:ae:49:0f:9a:
99:83:6b:d3:92:1f:36:54:db:3f:f1:19:db:37:64:
75:40:82:2e:e9:8a:3b:59:db:2a:58:e8:d1:d7:ce:
ae:89:43:d8:f1:e7:da:4a:24:09:5d:d8:5c:12:fb:
83:18:90:93:0d:89:c4:01:3d:fa:86:90:74:ff:94:
f1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B3:A1:38:62:24:19:D0:E4:5E:8D:15:14:B4:12:2B:C8:A9:14:D3
X509v3 Authority Key Identifier:
keyid:AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.220.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:34:de:64:b3:7c:e2:e2:d5:c1:81:76:66:29:95:ec:6a:0c:
25:36:bf:bc:6f:6d:63:ad:3f:3b:9a:09:61:97:75:c5:79:a2:
3d:54:97:c5:a9:1f:68:99:58:3e:7b:e1:e9:3d:18:53:08:1f:
f6:a8:71:c9:c3:c6:85:43:d3:f7:57:36:04:82:d3:a6:6e:bf:
c1:37:70:6d:6d:aa:d1:71:b2:64:0c:6f:38:da:c5:68:50:92:
5a:df:23:11:c5:2d:bb:07:e0:4e:ae:2f:a1:7e:d0:37:57:96:
55:43:38:79:1e:ba:29:df:55:59:17:13:eb:61:de:e2:3d:e6:
46:42:1a:74:64:c2:dd:54:ee:c9:8f:f5:bf:ac:af:8f:0f:3b:
fb:58:02:81:ae:4d:4e:0a:58:b7:80:8a:3c:d4:6d:fd:71:36:
c4:d9:67:da:ea:94:58:a0:50:2c:5d:62:97:78:34:0b:86:ef:
a4:73:6c:47:0c:96:79:54:ac:23:a2:5e:04:84:ec:43:a3:86:
6e:22:e7:5e:77:1e:3b:6f:1b:26:bd:59:96:31:23:3e:66:c6:
d0:cb:03:5b:8e:b2:a3:cd:fb:34:af:ae:2a:6d:b0:99:e3:44:
28:94:33:cf:c1:9e:e7:de:9e:03:0f:f3:8b:8a:23:c6:47:5c:
ed:13:16:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 13:45:07 2025 by rpki-client