Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323033.roa
File: 34352e36352e3232302e302f32322d3234203d3e20323033.roa (raw, json)
Hash identifier: cxO6IIL9FYl/S1JcP9ekX/bKJPpyhULDj81eVK4QpIQ=
Subject key identifier: 94:07:64:5E:70:13:A6:2D:5C:95:CE:F6:AB:87:54:A9:B8:A3:6F:94
Certificate issuer: /CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Certificate serial: 070D700B608051AC8D628B60F9F4E17A66FA0224
Authority key identifier: AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323033.roa
Signing time: Thu 06 Mar 2025 04:06:00 +0000
ROA not before: Thu 06 Mar 2025 04:01:00 +0000
ROA not after: Thu 05 Mar 2026 04:06:00 +0000
asID: 203
IP address blocks: 45.65.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:0d:70:0b:60:80:51:ac:8d:62:8b:60:f9:f4:e1:7a:66:fa:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D
Validity
Not Before: Mar 6 04:01:00 2025 GMT
Not After : Mar 5 04:06:00 2026 GMT
Subject: CN=9407645E7013A62D5C95CEF6AB8754A9B8A36F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:9c:71:64:2e:3f:3b:e7:3c:ee:f6:c7:7a:
4f:7c:1a:19:d3:dd:84:c3:2f:bc:c7:bb:d2:9a:9a:
f7:21:ba:ab:e2:60:eb:4c:51:c1:d5:86:4a:39:c8:
89:a1:fd:10:b6:cc:a7:3e:a7:b7:ba:54:f5:b6:72:
8b:ab:83:71:5b:5a:c9:54:9c:dc:ce:30:0f:3c:3f:
a0:3e:53:8b:a5:16:69:9d:47:12:61:54:93:bf:b6:
42:d7:2d:c1:1b:41:13:4a:9c:88:ff:bd:3a:63:52:
79:09:6c:69:9f:17:46:1d:e9:9c:bf:b5:e6:96:bd:
51:77:e9:12:c7:c4:12:84:ad:e1:51:7d:99:b2:48:
d0:70:9e:50:6a:93:f7:f1:cf:18:5e:48:80:83:b3:
70:4a:41:9e:88:92:7e:6c:5e:63:9c:2a:88:dd:db:
7e:7d:c0:47:73:91:0e:6d:d3:06:fd:f7:6a:68:9e:
cd:12:54:0e:a0:b6:a3:39:bb:e5:d7:33:e0:57:71:
cb:0d:57:57:6d:27:07:db:7c:73:ca:50:c4:fe:bd:
00:f3:47:5d:a3:50:df:49:c0:ec:d5:84:89:22:1d:
72:07:92:be:75:9c:76:60:8e:15:58:85:c3:c1:49:
c8:04:99:52:4f:01:7a:ac:8a:b4:97:2a:be:88:7c:
37:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:07:64:5E:70:13:A6:2D:5C:95:CE:F6:AB:87:54:A9:B8:A3:6F:94
X509v3 Authority Key Identifier:
keyid:AC:EC:AA:D2:9A:AF:75:12:6D:8D:2F:59:4F:C4:3A:B0:E7:B3:A1:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/ACECAAD29AAF75126D8D2F594FC43AB0E7B3A10D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HmfJiU8uRvjo5iJYQpRxK1eZ6k4xxJ5W2sQMF81Hf2nZ/2/34352e36352e3232302e302f32322d3234203d3e20323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:bf:a5:dc:82:e7:98:d5:04:d8:fc:d4:b7:fd:ba:f0:d4:e0:
9d:04:72:23:e4:e2:3b:0d:6d:9c:08:2d:e0:8f:ad:57:4c:64:
23:c8:52:5b:a3:7e:c0:77:89:ce:19:28:7e:9d:e0:e8:5c:01:
28:16:c6:57:a9:92:5d:14:2e:7a:5c:4c:05:c2:b7:4c:07:3d:
de:33:38:c7:b7:1c:cc:b7:4d:3a:dc:51:5d:ad:ae:66:e2:84:
48:cc:66:c3:fb:55:d1:f8:e2:4a:37:84:d7:62:bb:6c:63:f2:
c1:01:32:02:7d:f9:93:4a:4a:ca:05:2b:36:fe:72:81:79:53:
b6:69:19:0c:b1:63:47:39:1d:ea:d0:66:89:90:e9:ea:be:13:
1f:79:63:f5:90:c7:0b:f2:ef:3c:ae:48:f9:d4:18:77:05:71:
0f:f4:17:7d:b5:c2:cf:2d:e6:4e:a0:43:13:d6:66:93:03:58:
7b:2f:a4:51:c9:d1:47:f6:e3:16:6d:eb:b8:48:99:6d:e5:f9:
7f:1f:05:c6:4a:47:86:0f:6b:74:f9:21:19:27:ba:e3:0e:44:
fc:55:a0:45:11:fb:fc:26:77:e8:a5:59:ff:6b:6e:37:ec:94:
cf:b2:77:39:8b:48:40:f9:0e:cd:76:8c:f4:91:ec:31:ba:f5:
41:ec:b0:21
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUBw1wC2CAUayNYotg+fThemb6AiQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUNFQ0FBRDI5QUFGNzUxMjZEOEQyRjU5NEZDNDNBQjBF
N0IzQTEwRDAeFw0yNTAzMDYwNDAxMDBaFw0yNjAzMDUwNDA2MDBaMDMxMTAvBgNV
BAMTKDk0MDc2NDVFNzAxM0E2MkQ1Qzk1Q0VGNkFCODc1NEE5QjhBMzZGOTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JpxxZC4/O+c87vbHek98GhnT
3YTDL7zHu9KamvchuqviYOtMUcHVhko5yImh/RC2zKc+p7e6VPW2courg3FbWslU
nNzOMA88P6A+U4ulFmmdRxJhVJO/tkLXLcEbQRNKnIj/vTpjUnkJbGmfF0Yd6Zy/
teaWvVF36RLHxBKEreFRfZmySNBwnlBqk/fxzxheSICDs3BKQZ6Ikn5sXmOcKojd
2359wEdzkQ5t0wb992pons0SVA6gtqM5u+XXM+BXccsNV1dtJwfbfHPKUMT+vQDz
R12jUN9JwOzVhIkiHXIHkr51nHZgjhVYhcPBScgEmVJPAXqsirSXKr6IfDebAgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUlAdkXnATpi1clc72q4dUqbijb5QwHwYDVR0j
BBgwFoAUrOyq0pqvdRJtjS9ZT8Q6sOezoQ0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSG1mSmlVOHVSdmpvNWlKWVFwUnhLMWVaNms0eHhKNVcyc1FNRjgxSGYy
blovMi9BQ0VDQUFEMjlBQUY3NTEyNkQ4RDJGNTk0RkM0M0FCMEU3QjNBMTBELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0FDRUNBQUQyOUFBRjc1MTI2
RDhEMkY1OTRGQzQzQUIwRTdCM0ExMEQuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCB
kwYIKwYBBQUHMAuGgYZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0htZkppVTh1UnZqbzVpSllRcFJ4SzFlWjZrNHh4SjVXMnNRTUY4MUhmMm5aLzIv
MzQzNTJlMzYzNTJlMzIzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMDMz
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQCLUHcMA0GCSqGSIb3DQEBCwUAA4IBAQCjv6XcgueY1QTY/NS3
/brw1OCdBHIj5OI7DW2cCC3gj61XTGQjyFJbo37Ad4nOGSh+neDoXAEoFsZXqZJd
FC56XEwFwrdMBz3eMzjHtxzMt0063FFdra5m4oRIzGbD+1XR+OJKN4TXYrtsY/LB
ATICffmTSkrKBSs2/nKBeVO2aRkMsWNHOR3q0GaJkOnqvhMfeWP1kMcL8u88rkj5
1Bh3BXEP9Bd9tcLPLeZOoEMT1maTA1h7L6RRydFH9uMWbeu4SJlt5fl/HwXGSkeG
D2t0+SEZJ7rjDkT8VaBFEfv8JnfopVn/a2437JTPsnc5i0hA+Q7Ndoz0kewxuvVB
7LAh
-----END CERTIFICATE-----
Generated at Sat Apr 12 08:32:17 2025 by rpki-client