Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/3137302e38312e36382e302f32322d3234203d3e20323636343039.roa
File: 3137302e38312e36382e302f32322d3234203d3e20323636343039.roa (raw, json)
Hash identifier: jtKixvv37nWrLdMN3xy+3oXEsTzkoEmYOmIr6N1xzhk=
Subject key identifier: 1F:80:D5:F5:0F:3C:D6:6D:DF:41:45:39:1C:CE:60:AE:79:EC:38:40
Certificate issuer: /CN=314F41E3C4735B02BD8E51866CB2C95BAA6B192D
Certificate serial: 3D91340D92EAF153E3E2F4FF1FF735C27D0B48FC
Authority key identifier: 31:4F:41:E3:C4:73:5B:02:BD:8E:51:86:6C:B2:C9:5B:AA:6B:19:2D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/3137302e38312e36382e302f32322d3234203d3e20323636343039.roa
Signing time: Thu 06 Mar 2025 13:16:59 +0000
ROA not before: Thu 06 Mar 2025 13:11:59 +0000
ROA not after: Thu 05 Mar 2026 13:16:59 +0000
asID: 266409
IP address blocks: 170.81.68.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.crl
rsync://rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 10 Apr 2025 15:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:91:34:0d:92:ea:f1:53:e3:e2:f4:ff:1f:f7:35:c2:7d:0b:48:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314F41E3C4735B02BD8E51866CB2C95BAA6B192D
Validity
Not Before: Mar 6 13:11:59 2025 GMT
Not After : Mar 5 13:16:59 2026 GMT
Subject: CN=1F80D5F50F3CD66DDF4145391CCE60AE79EC3840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:88:86:fd:1f:23:d6:23:28:b5:56:4f:8a:52:
35:38:31:c5:cc:6a:51:f9:49:0c:49:49:a3:40:8b:
9a:4c:ec:16:73:77:22:5d:cd:d8:02:28:3c:00:99:
5a:0f:ea:af:d4:c2:09:c5:e0:b0:a7:d5:18:4f:ec:
19:93:d8:5e:d8:dd:ce:ab:fe:a4:da:74:64:ae:9f:
9c:54:e5:07:16:e8:bb:20:32:70:85:dc:8a:7b:78:
93:de:72:4b:6c:19:d4:de:67:7c:82:1d:8d:0c:c1:
b8:2d:88:31:7f:ca:e0:7a:1a:4b:f2:21:07:77:f0:
28:c9:74:f0:68:84:88:1e:20:9d:92:b5:ca:86:ff:
7a:5f:45:1a:7e:b0:29:e4:05:30:4a:92:6b:44:05:
6f:f8:8a:b9:5e:32:e8:da:7a:bd:01:f9:99:d7:46:
78:0f:ac:7e:40:b9:ee:08:c1:70:2b:39:9b:31:17:
29:05:73:16:2f:18:fb:f1:6c:10:62:7e:81:d9:e9:
da:24:58:06:2d:cf:17:b2:6a:37:11:c0:f3:e1:bb:
f3:b1:a5:77:cb:d0:5e:f4:e3:a8:1a:49:2f:2c:f0:
31:91:8b:f0:a9:8a:bf:a8:5b:6d:74:3d:0c:32:bc:
a2:cb:d1:ea:9b:b9:dd:c7:49:5c:88:15:33:20:58:
ea:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:80:D5:F5:0F:3C:D6:6D:DF:41:45:39:1C:CE:60:AE:79:EC:38:40
X509v3 Authority Key Identifier:
keyid:31:4F:41:E3:C4:73:5B:02:BD:8E:51:86:6C:B2:C9:5B:AA:6B:19:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/314F41E3C4735B02BD8E51866CB2C95BAA6B192D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HrTsAhFRBVkoAbDjz8zL2JvZpcWfh1Sswe2FdQqHaWu2/1/3137302e38312e36382e302f32322d3234203d3e20323636343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.81.68.0/22
Signature Algorithm: sha256WithRSAEncryption
44:a4:64:fc:55:6a:9c:b7:3a:d7:48:41:66:51:96:6d:1c:a1:
90:da:1e:d5:ea:3d:6d:c6:18:3c:83:78:42:19:01:e0:4f:10:
74:9a:ba:ca:09:28:ee:8e:5d:be:c2:03:be:18:fe:9b:9a:82:
6b:9d:44:c0:68:10:cd:88:cf:e8:56:4f:6b:52:a2:6a:94:bf:
d5:4d:29:65:ce:cc:6b:4a:dc:96:d8:0c:26:57:78:08:da:fe:
7d:5c:77:d0:a4:e8:91:1d:0a:c6:81:bc:a3:02:a2:c8:8d:32:
8d:93:75:39:bf:f1:c7:49:8b:d0:77:0d:38:7f:17:e9:9f:a5:
52:2b:59:ba:e2:34:3f:3e:ae:cd:08:93:d2:3c:4a:2f:b4:d5:
63:e2:61:ea:01:b5:81:1f:8f:75:fe:ee:34:5c:53:8b:b8:23:
de:e8:a3:7c:96:4a:1c:34:7a:57:d1:f7:e4:cc:9f:55:29:f2:
62:e0:5b:6b:50:1c:0f:c6:b4:ab:08:ab:8f:f7:bf:21:d4:67:
3b:84:56:3a:98:bc:0a:b1:7c:5e:51:80:7d:c3:cb:a5:01:9d:
92:db:44:f9:b7:fb:25:8c:aa:6b:df:0a:e1:6a:48:ea:80:c8:
19:21:9a:49:50:54:d9:fc:44:b0:98:85:9b:42:10:c4:3d:52:
68:73:4c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 03:21:05 2025 by rpki-client