Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3136382e3233322e3234302e302f32322d3232203d3e20323634393532.roa
File: 3136382e3233322e3234302e302f32322d3232203d3e20323634393532.roa (raw, json)
Hash identifier: kc9dcxnbdd9HpzNC31JcHph2MuEDqW+mI2YIaJj6i3M=
Subject key identifier: E4:C3:1A:9E:A6:B2:63:5F:21:D2:74:31:78:73:CA:5C:F9:FA:AE:CF
Certificate issuer: /CN=3E212DB1B302950E59672700155B176D07CFDAEA
Certificate serial: 5C6D7C8F04FB96C45EA35CE8C8E670A45AA0856B
Authority key identifier: 3E:21:2D:B1:B3:02:95:0E:59:67:27:00:15:5B:17:6D:07:CF:DA:EA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3E212DB1B302950E59672700155B176D07CFDAEA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3136382e3233322e3234302e302f32322d3232203d3e20323634393532.roa
Signing time: Tue 01 Apr 2025 15:26:45 +0000
ROA not before: Tue 01 Apr 2025 15:21:45 +0000
ROA not after: Tue 31 Mar 2026 15:26:45 +0000
asID: 264952
IP address blocks: 168.232.240.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3E212DB1B302950E59672700155B176D07CFDAEA.crl
rsync://rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3E212DB1B302950E59672700155B176D07CFDAEA.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3E212DB1B302950E59672700155B176D07CFDAEA.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 16:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:6d:7c:8f:04:fb:96:c4:5e:a3:5c:e8:c8:e6:70:a4:5a:a0:85:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E212DB1B302950E59672700155B176D07CFDAEA
Validity
Not Before: Apr 1 15:21:45 2025 GMT
Not After : Mar 31 15:26:45 2026 GMT
Subject: CN=E4C31A9EA6B2635F21D274317873CA5CF9FAAECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:12:a7:98:3f:ca:dd:39:96:2e:49:61:d8:
fb:0f:bd:7e:6a:39:b2:99:a2:cb:00:61:18:39:36:
8a:f7:ce:60:d0:0b:2d:9f:ce:26:46:20:b7:88:de:
9e:ad:17:d4:1a:65:10:75:ee:7b:90:20:a1:79:da:
c1:28:50:9f:20:d0:d6:52:14:16:01:63:d1:a4:72:
54:94:95:89:2c:42:88:11:d9:59:29:f9:93:70:63:
4a:d3:d5:1b:4b:86:d4:25:1a:aa:de:ba:3f:fe:1c:
37:c6:80:f5:d9:0f:ce:72:e3:f8:54:01:00:01:f5:
51:51:30:a2:7f:23:e2:62:6b:7b:7c:f0:fb:49:10:
89:2c:ac:3d:d2:b6:26:db:9c:e2:0a:5d:5e:5d:6f:
a5:68:85:a9:6f:d3:e6:2d:67:cd:42:f9:b9:b0:f7:
ed:9f:bb:99:91:bb:f1:d2:02:23:82:46:cf:fc:f3:
56:06:71:d3:34:60:75:33:26:5e:41:d7:c4:72:56:
f2:22:d6:43:d3:ab:7c:bc:35:30:8e:d9:1c:ad:94:
1e:e0:dc:59:d3:88:e3:d9:97:0b:57:fc:8f:dd:2e:
d3:79:ab:02:d6:80:ab:c4:f5:1d:88:ea:22:3a:2d:
d7:fe:cd:95:b5:59:d9:7b:ba:8a:21:0f:fa:e3:eb:
ae:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C3:1A:9E:A6:B2:63:5F:21:D2:74:31:78:73:CA:5C:F9:FA:AE:CF
X509v3 Authority Key Identifier:
keyid:3E:21:2D:B1:B3:02:95:0E:59:67:27:00:15:5B:17:6D:07:CF:DA:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3E212DB1B302950E59672700155B176D07CFDAEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3E212DB1B302950E59672700155B176D07CFDAEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HuUsg4KdrKFxq9qg8LzgkVLkqdAEc9km7eVdyDFRCSKa/0/3136382e3233322e3234302e302f32322d3232203d3e20323634393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.232.240.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:50:e5:55:ec:ec:a5:51:68:f8:cd:26:22:18:29:a4:49:f7:
3c:92:65:9d:5f:b2:f7:94:cc:39:a1:e5:b2:44:26:c4:3d:46:
b2:91:fe:69:a3:37:18:9e:84:ec:d4:d6:c8:20:66:da:93:b9:
4a:fb:56:c9:cd:e5:9a:29:cd:ee:cc:0c:76:89:7e:22:14:0c:
c6:d1:d7:50:07:28:49:d2:b8:7e:f9:02:a9:23:9f:c9:07:2c:
43:9c:42:55:8d:cc:f6:56:5b:76:e3:da:e2:d2:89:cf:c8:bf:
b7:a2:47:b0:0b:78:36:a2:bd:e5:43:b5:d4:28:b1:b9:af:57:
aa:45:46:b6:7b:ad:19:6b:1c:a5:f2:26:29:27:d0:f0:3c:46:
64:a0:79:38:b3:8a:c5:2d:a4:d0:be:22:3b:a0:fa:31:69:e7:
c2:14:a4:51:a6:04:27:41:fb:8b:b6:44:90:fb:22:b7:ed:69:
3f:e8:4e:33:00:96:05:3b:dc:57:1f:28:b0:d2:8d:5e:f6:8c:
c7:68:b2:b6:ac:9c:fb:b6:e4:dc:5e:00:0a:12:5f:75:82:be:
a1:4d:80:a3:55:20:18:51:d7:61:1a:70:c4:62:e3:ab:68:f3:
ae:a3:01:e6:31:a6:7b:0f:33:e6:ac:f5:81:f7:be:43:7b:a5:
23:59:3b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:11:22 2025 by rpki-client