Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/34352e37312e34322e302f32332d3233203d3e20323733333136.roa
File: 34352e37312e34322e302f32332d3233203d3e20323733333136.roa (raw, json)
Hash identifier: /WcXu5lg2fI/Wt2JYE8L0Bp8WodZOceA+LVC4MlD3ts=
Subject key identifier: 2C:A0:7F:86:C1:80:8F:AF:65:08:3B:E4:FF:E5:76:AB:20:95:0F:2D
Certificate issuer: /CN=79798C354EE82F89133F9F2BDCA4F8220483498E
Certificate serial: 5B4B9600493E8597214BECA14EF3BBC4E78390A7
Authority key identifier: 79:79:8C:35:4E:E8:2F:89:13:3F:9F:2B:DC:A4:F8:22:04:83:49:8E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79798C354EE82F89133F9F2BDCA4F8220483498E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/34352e37312e34322e302f32332d3233203d3e20323733333136.roa
Signing time: Wed 05 Mar 2025 22:00:49 +0000
ROA not before: Wed 05 Mar 2025 21:55:49 +0000
ROA not after: Wed 04 Mar 2026 22:00:49 +0000
asID: 273316
IP address blocks: 45.71.42.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/79798C354EE82F89133F9F2BDCA4F8220483498E.crl
rsync://rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/79798C354EE82F89133F9F2BDCA4F8220483498E.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79798C354EE82F89133F9F2BDCA4F8220483498E.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 13 Apr 2025 08:47:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:4b:96:00:49:3e:85:97:21:4b:ec:a1:4e:f3:bb:c4:e7:83:90:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79798C354EE82F89133F9F2BDCA4F8220483498E
Validity
Not Before: Mar 5 21:55:49 2025 GMT
Not After : Mar 4 22:00:49 2026 GMT
Subject: CN=2CA07F86C1808FAF65083BE4FFE576AB20950F2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f5:8d:62:26:5b:ef:58:58:fa:3b:1a:6a:23:
1f:98:27:5c:9f:24:ff:83:7c:c0:ab:7f:29:3b:22:
cd:28:ab:e8:14:81:d4:32:3d:a1:1d:9b:cf:ed:52:
d1:6b:7b:66:f0:d6:a5:4d:14:d7:5a:2d:f9:2a:55:
fd:b5:00:a3:96:f5:80:50:de:52:de:75:03:f8:5c:
3b:bd:1b:5b:46:9d:5f:71:49:b2:c0:da:a6:fd:56:
ac:e5:89:81:a4:e8:2a:81:03:c6:b2:3f:e9:60:b2:
f0:0c:84:61:c7:d0:0a:d0:f1:50:aa:44:c7:a5:c0:
2c:d5:1a:43:67:74:aa:eb:5a:9e:66:00:e3:bf:c7:
20:e6:7b:ae:58:f1:63:ce:72:7d:db:64:95:74:b7:
15:89:09:e5:e4:02:99:de:d9:b1:ff:3a:64:62:73:
7e:1b:07:92:ad:6e:2f:2d:cf:48:22:6c:41:80:3b:
b9:a9:74:6d:2d:70:f7:92:4b:b7:0e:9c:bb:20:4e:
d1:86:26:cd:a0:ed:29:b1:3f:98:f6:41:4d:cd:af:
98:6a:12:ce:01:c7:3d:3e:1a:cb:2a:61:df:27:67:
e8:ae:4f:53:82:1d:6e:1d:de:25:79:aa:d5:07:f6:
d1:fd:a0:61:14:f2:d5:51:77:43:91:35:8b:13:dd:
9e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:7F:86:C1:80:8F:AF:65:08:3B:E4:FF:E5:76:AB:20:95:0F:2D
X509v3 Authority Key Identifier:
keyid:79:79:8C:35:4E:E8:2F:89:13:3F:9F:2B:DC:A4:F8:22:04:83:49:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/79798C354EE82F89133F9F2BDCA4F8220483498E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79798C354EE82F89133F9F2BDCA4F8220483498E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrAMf3G1ovpTQh5zePCdLFpqVtuLpZAwhFSGJnAx4ib8/1/34352e37312e34322e302f32332d3233203d3e20323733333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.42.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:79:c8:03:af:a7:29:d8:8a:26:09:ab:74:6b:6d:2f:23:f3:
d8:6b:0d:9f:81:29:1f:87:9f:54:3d:38:1e:fb:01:0e:b9:b8:
fa:e1:93:a7:c5:60:30:ac:bd:fe:87:81:b2:3e:71:48:89:e8:
6c:7a:f6:62:6f:05:ed:3f:d8:18:51:a6:bd:c6:de:ca:46:dc:
4b:16:d1:84:6d:8d:fc:7e:f3:a6:a3:ef:f2:12:b7:42:2c:03:
ee:3b:a0:45:e7:e1:ce:58:b4:b3:1a:c9:0c:89:13:64:96:78:
95:f0:5a:80:fb:1f:dc:03:29:c7:9b:9f:6d:69:3c:1f:51:82:
ad:1d:3c:52:82:93:01:ea:7e:1f:03:44:6d:b9:b0:f4:ca:11:
4a:32:52:26:f8:e9:b8:bb:04:fa:d8:76:30:32:fd:d9:ed:ce:
14:74:92:ad:a7:72:96:de:67:85:f1:ba:5d:a7:97:a1:c6:6d:
d2:17:0b:60:83:5d:bd:f7:e8:8b:8d:36:c5:b9:1f:ad:58:49:
d6:f2:e8:e0:db:2b:28:2d:db:06:05:8b:39:e9:4d:63:22:ab:
6d:3f:00:a1:e6:3a:58:b0:89:0e:8b:d1:16:7e:5d:47:31:fc:
76:66:5b:37:c9:15:1b:35:4e:b6:6a:5c:8e:47:5c:38:a9:2b:
00:1e:6d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:16:56 2025 by rpki-client