Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31392e302f32342d3234203d3e20323636313635.roa
File: 37322e34342e31392e302f32342d3234203d3e20323636313635.roa (raw, json)
Hash identifier: +wBhJDFGtWx6rDyP3+QFDs+QYe5N06OI+FwOSDToKgc=
Subject key identifier: 73:30:5C:A8:7D:60:AF:5F:29:B8:31:5B:DB:BA:93:1C:3D:14:45:E2
Certificate issuer: /CN=DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C
Certificate serial: 70E8EA1982B5A70CCDDEEDA4FE3EA3A1F4FC4A76
Authority key identifier: DF:B1:65:A5:5B:30:AA:C4:E3:2C:EC:8F:E9:B4:38:6E:F0:EA:8D:3C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31392e302f32342d3234203d3e20323636313635.roa
Signing time: Mon 03 Mar 2025 23:55:58 +0000
ROA not before: Mon 03 Mar 2025 23:50:58 +0000
ROA not after: Mon 02 Mar 2026 23:55:58 +0000
asID: 266165
IP address blocks: 72.44.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.crl
rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 11 Apr 2025 02:53:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e8:ea:19:82:b5:a7:0c:cd:de:ed:a4:fe:3e:a3:a1:f4:fc:4a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C
Validity
Not Before: Mar 3 23:50:58 2025 GMT
Not After : Mar 2 23:55:58 2026 GMT
Subject: CN=73305CA87D60AF5F29B8315BDBBA931C3D1445E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:52:68:7e:2e:66:f2:d4:1a:84:d1:6b:3c:
84:fa:9f:6d:52:e4:49:61:54:4f:08:19:a5:a7:7b:
2a:c4:4e:4d:3f:4a:40:49:e0:b1:e0:ce:57:d8:3d:
12:15:61:f9:bb:c5:2e:7e:d5:c1:b7:d4:fd:97:02:
95:b0:f7:6f:17:e3:19:db:ee:7a:64:41:11:6a:3a:
67:bb:af:53:20:ad:85:74:12:11:a3:c8:20:23:12:
f2:c3:fe:3b:3a:84:10:b5:78:7d:d0:8a:ff:20:31:
6c:53:2c:cf:7b:8b:16:33:a0:e0:e3:fc:ff:47:7c:
54:e8:d2:9d:48:10:f5:d2:cb:9d:58:05:99:2f:17:
12:b9:da:9b:e5:35:3d:90:04:cd:fb:ab:40:f0:94:
02:6b:f6:dc:d0:fe:09:3c:15:62:6c:14:72:c3:ee:
a1:2a:4a:06:77:f1:f0:f6:30:d1:da:de:18:64:06:
44:5f:76:dd:25:27:55:09:72:19:d2:cb:4d:83:9f:
3c:8f:4c:63:f9:0c:6e:bd:fc:d0:64:ee:e7:d4:d2:
c6:55:0d:f1:c9:72:d0:db:95:98:97:84:eb:18:f9:
9a:35:28:81:d3:5f:d9:69:cf:e1:78:ff:ac:19:6b:
2a:73:b3:eb:6a:57:a4:dd:64:2d:bc:48:70:bc:a6:
54:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:30:5C:A8:7D:60:AF:5F:29:B8:31:5B:DB:BA:93:1C:3D:14:45:E2
X509v3 Authority Key Identifier:
keyid:DF:B1:65:A5:5B:30:AA:C4:E3:2C:EC:8F:E9:B4:38:6E:F0:EA:8D:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFB165A55B30AAC4E32CEC8FE9B4386EF0EA8D3C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/J4hsUgRH8mocXDA5BwSH2TTpDvsBdwqST43BEBJgEqj2/0/37322e34342e31392e302f32342d3234203d3e20323636313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
72.44.19.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e8:83:5b:9d:76:ad:3d:50:c4:8f:fd:2d:06:5b:11:a3:bb:
62:d2:69:ff:db:08:67:c8:db:bd:31:85:84:0d:de:cc:e3:0c:
44:bf:5b:09:76:ad:e4:f8:01:75:66:4d:fc:e1:d7:4e:4c:41:
17:86:98:d2:ab:65:de:b5:19:8e:db:0e:ae:d6:23:73:84:26:
25:45:4e:99:07:85:94:52:be:e6:3b:59:33:4d:91:88:14:9f:
2d:5d:5d:56:e7:2c:12:f0:aa:3f:44:12:17:e6:94:b5:39:5b:
91:35:10:b7:32:4d:0d:1f:d1:5c:26:0a:57:a1:48:f3:da:92:
9a:69:d5:82:fc:86:81:91:47:73:b4:3f:1c:67:7f:3f:34:99:
d2:59:2a:cc:18:d7:95:4b:b3:1a:ac:a7:e8:27:4c:98:d9:4b:
6b:41:bf:30:55:46:36:e3:b7:91:bf:a5:47:d5:d9:43:15:33:
3e:88:d8:3c:d0:75:d9:b0:5b:91:87:ce:e6:55:4e:55:52:96:
b8:e4:82:25:4d:b1:22:a0:b1:39:88:5d:d8:d5:bb:bc:95:33:
be:1e:d8:b2:a8:c5:7c:9b:9b:dd:2b:34:7d:29:73:2c:6e:9b:
77:f0:f5:65:95:d1:2e:87:fb:97:8a:79:e5:da:50:2e:9c:d3:
32:5c:51:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:05:48 2025 by rpki-client