Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31362e302f32332d3233203d3e20323636313635.roa
File: 37322e34342e31362e302f32332d3233203d3e20323636313635.roa (raw, json)
Hash identifier: d2DqpCm8NZzvgsTmSLKzULB2GQCl8wAYyZ5b7GSQ2QU=
Subject key identifier: 68:32:0E:F9:E3:D6:4D:35:71:30:B4:9F:5E:CF:BF:02:50:A9:17:1A
Certificate issuer: /CN=DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C
Certificate serial: 208363264346E8EA0FF81D0541FBC6CBCEDFB821
Authority key identifier: DF:B1:65:A5:5B:30:AA:C4:E3:2C:EC:8F:E9:B4:38:6E:F0:EA:8D:3C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31362e302f32332d3233203d3e20323636313635.roa
Signing time: Mon 03 Mar 2025 23:55:32 +0000
ROA not before: Mon 03 Mar 2025 23:50:32 +0000
ROA not after: Mon 02 Mar 2026 23:55:32 +0000
asID: 266165
IP address blocks: 72.44.16.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:83:63:26:43:46:e8:ea:0f:f8:1d:05:41:fb:c6:cb:ce:df:b8:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C
Validity
Not Before: Mar 3 23:50:32 2025 GMT
Not After : Mar 2 23:55:32 2026 GMT
Subject: CN=68320EF9E3D64D357130B49F5ECFBF0250A9171A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:94:ad:b5:62:59:fd:40:a3:6f:6d:87:11:1a:
be:9f:e7:52:4e:aa:4d:db:de:0f:05:67:70:e0:cc:
a7:33:53:09:fd:d4:76:6f:66:36:12:5f:29:f3:b9:
30:23:ec:f5:51:59:66:33:dc:83:bf:00:7d:18:79:
e3:63:91:2d:e6:d3:07:a1:bb:05:fa:45:66:27:4b:
c4:cf:28:d5:54:24:65:9c:e5:90:3b:15:f5:2d:ea:
52:80:e1:07:cf:e5:f7:77:78:32:7b:ec:53:d4:42:
cb:b5:8a:6e:90:fd:6d:7e:31:ba:4d:85:ab:cc:71:
94:87:0b:5a:c9:e1:04:ff:30:33:b6:c6:fa:5c:58:
79:5b:92:21:7d:1d:c5:5c:2f:52:b2:1d:e1:a0:be:
2f:d6:de:4e:c5:76:dd:30:f7:02:ab:0c:ee:41:e0:
43:55:0e:fb:a1:cb:b7:5b:da:45:0a:7f:62:6c:b2:
8e:3b:5c:a8:13:63:5a:43:8b:9c:1b:f6:74:06:d7:
8f:fd:22:3a:74:79:84:11:34:76:e2:3d:60:1b:54:
16:79:3c:97:af:18:5b:1e:23:5b:14:fb:9a:a6:ab:
d3:b9:57:8d:38:07:cb:29:b6:5d:fe:33:7a:96:c9:
13:ef:13:19:b2:08:5c:63:ab:a6:51:42:57:e8:0b:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:32:0E:F9:E3:D6:4D:35:71:30:B4:9F:5E:CF:BF:02:50:A9:17:1A
X509v3 Authority Key Identifier:
keyid:DF:B1:65:A5:5B:30:AA:C4:E3:2C:EC:8F:E9:B4:38:6E:F0:EA:8D:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31362e302f32332d3233203d3e20323636313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
72.44.16.0/23
Signature Algorithm: sha256WithRSAEncryption
24:d3:fe:cf:8b:a5:52:33:ad:61:cf:13:e7:d0:e1:6a:b1:0b:
7c:cc:81:70:e5:b0:c8:11:6a:e8:b8:ae:35:b4:f5:fc:db:ed:
14:62:39:19:01:3a:ee:a2:6f:63:cb:85:48:73:b9:a5:ff:83:
e8:61:fd:00:8f:9e:42:03:da:4b:42:d6:3b:fd:df:09:ae:80:
11:e6:69:e4:ea:12:79:13:ec:d7:6e:bb:27:69:c8:c0:5a:01:
a6:ce:b4:64:d8:61:d2:3b:b9:b7:7a:e8:cb:4f:87:65:f5:39:
06:73:ad:7e:9f:c2:4f:f1:de:81:f7:d5:d3:43:87:55:f3:5e:
3c:21:6a:9e:39:bf:48:21:e8:65:2f:5f:eb:50:1f:b4:d9:df:
0d:ff:c3:a1:ad:04:20:02:e3:e0:46:8b:0e:8e:42:1a:eb:0d:
3d:d6:a9:40:3f:02:06:15:31:1a:2d:5a:3f:8f:76:d8:79:12:
0e:5b:89:fb:67:20:7c:da:ab:3c:9a:61:7c:db:6a:66:be:42:
e7:01:41:b1:8c:b9:64:6c:54:23:35:36:9e:22:5e:5c:31:d4:
da:58:60:d7:ee:58:ce:8b:7e:9d:b9:73:4b:c6:23:3c:74:68:
33:af:93:57:a0:73:da:af:e6:70:78:69:aa:25:57:d9:cb:41:
44:48:69:af
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUIINjJkNG6OoP+B0FQfvGy87fuCEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREZCMTY1QTU1QjMwQUFDNEUzMkNFQzhGRTlCNDM4NkVG
MEVBOEQzQzAeFw0yNTAzMDMyMzUwMzJaFw0yNjAzMDIyMzU1MzJaMDMxMTAvBgNV
BAMTKDY4MzIwRUY5RTNENjREMzU3MTMwQjQ5RjVFQ0ZCRjAyNTBBOTE3MUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4lK21Yln9QKNvbYcRGr6f51JO
qk3b3g8FZ3DgzKczUwn91HZvZjYSXynzuTAj7PVRWWYz3IO/AH0YeeNjkS3m0weh
uwX6RWYnS8TPKNVUJGWc5ZA7FfUt6lKA4QfP5fd3eDJ77FPUQsu1im6Q/W1+MbpN
havMcZSHC1rJ4QT/MDO2xvpcWHlbkiF9HcVcL1KyHeGgvi/W3k7Fdt0w9wKrDO5B
4ENVDvuhy7db2kUKf2Jsso47XKgTY1pDi5wb9nQG14/9Ijp0eYQRNHbiPWAbVBZ5
PJevGFseI1sU+5qmq9O5V404B8sptl3+M3qWyRPvExmyCFxjq6ZRQlfoC1aXAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQUaDIO+ePWTTVxMLSfXs+/AlCpFxowHwYDVR0j
BBgwFoAU37FlpVswqsTjLOyP6bQ4bvDqjTwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSjRoc1VnUkg4bW9jWERBNUJ3U0gyVFRwRHZzQmR3cVNUNDNCRUJKZ0Vx
ajIvMC9ERkIxNjVBNTVCMzBBQUM0RTMyQ0VDOEZFOUI0Mzg2RUYwRUE4RDNDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RGQjE2NUE1NUIzMEFBQzRF
MzJDRUM4RkU5QjQzODZFRjBFQThEM0MuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0o0aHNVZ1JIOG1vY1hEQTVCd1NIMlRUcER2c0Jkd3FTVDQzQkVCSmdFcWoyLzAv
MzczMjJlMzQzNDJlMzEzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzYzNjMx
MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAUgsEDANBgkqhkiG9w0BAQsFAAOCAQEAJNP+z4ulUjOt
Yc8T59DharELfMyBcOWwyBFq6LiuNbT1/NvtFGI5GQE67qJvY8uFSHO5pf+D6GH9
AI+eQgPaS0LWO/3fCa6AEeZp5OoSeRPs1267J2nIwFoBps60ZNhh0ju5t3roy0+H
ZfU5BnOtfp/CT/HegffV00OHVfNePCFqnjm/SCHoZS9f61AftNnfDf/Doa0EIALj
4EaLDo5CGusNPdapQD8CBhUxGi1aP4922HkSDluJ+2cgfNqrPJphfNtqZr5C5wFB
sYy5ZGxUIzU2niJeXDHU2lhg1+5Yzot+nblzS8YjPHRoM6+TV6Bz2q/mcHhpqiVX
2ctBREhprw==
-----END CERTIFICATE-----
Generated at Fri Jun 6 19:46:56 2025 by rpki-client