Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
File: 323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa (raw, json)
Hash identifier: 1uk1M0uwJvRb9OXmJ4PxduLRuf9B7hLeWClw5sIt/fQ=
Subject key identifier: 1B:04:03:63:B2:24:FE:0F:F9:AC:D9:9A:45:4D:A0:2C:06:0A:F1:06
Certificate issuer: /CN=7AF25128E87AF79DE2104B621EEDA3FBA5B39EFA
Certificate serial: 699B9F26BE7169AAC975E5F1AA56883D85222F6D
Authority key identifier: 7A:F2:51:28:E8:7A:F7:9D:E2:10:4B:62:1E:ED:A3:FB:A5:B3:9E:FA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AF25128E87AF79DE2104B621EEDA3FBA5B39EFA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
Signing time: Fri 01 Aug 2025 15:35:28 +0000
ROA not before: Fri 01 Aug 2025 15:30:28 +0000
ROA not after: Fri 31 Jul 2026 15:35:28 +0000
asID: 273728
IP address blocks: 2804:8b5c:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:9b:9f:26:be:71:69:aa:c9:75:e5:f1:aa:56:88:3d:85:22:2f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7AF25128E87AF79DE2104B621EEDA3FBA5B39EFA
Validity
Not Before: Aug 1 15:30:28 2025 GMT
Not After : Jul 31 15:35:28 2026 GMT
Subject: CN=1B040363B224FE0FF9ACD99A454DA02C060AF106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:de:5b:ad:6a:d6:b2:06:07:7d:01:99:d5:8b:
c8:8d:ff:32:73:61:3d:ee:2a:4a:67:63:f3:e4:57:
8b:79:b0:dc:da:f9:81:f5:21:75:a3:62:b8:c4:aa:
fa:86:fd:0c:bc:d1:0c:4c:a5:98:31:61:3a:5c:75:
d0:c9:1d:f7:4b:ee:75:11:be:cd:14:18:9b:e8:f0:
4b:c7:85:ab:76:69:37:b2:ab:b8:ff:31:fc:36:4c:
4b:e4:4d:b4:f5:5b:2d:a0:8a:88:bb:d8:71:4c:37:
01:24:22:a2:f5:ec:9f:b3:71:9c:8c:d8:5d:e5:ce:
55:f3:80:15:d9:13:b0:d9:1a:d2:a5:e9:f3:84:37:
88:90:62:26:ab:e2:d0:f2:d8:27:ec:98:65:22:d5:
45:14:0e:07:cf:e0:4d:95:4d:82:f5:fe:3a:be:c2:
54:8d:e9:97:4d:fc:45:8a:65:03:2b:80:8b:b8:4d:
1d:f5:77:e5:98:30:dd:eb:cc:f1:75:0f:b5:6c:5f:
17:7a:85:e9:23:f0:5a:67:ac:c3:c3:5b:f6:bd:30:
d4:0b:bd:7d:06:f1:9c:7c:98:36:c1:0f:c4:ff:88:
dc:ea:6d:d3:35:a2:e9:66:19:32:79:75:97:3a:18:
8d:42:02:a4:01:38:11:91:5a:e8:c4:f2:6b:6b:39:
72:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:04:03:63:B2:24:FE:0F:F9:AC:D9:9A:45:4D:A0:2C:06:0A:F1:06
X509v3 Authority Key Identifier:
keyid:7A:F2:51:28:E8:7A:F7:9D:E2:10:4B:62:1E:ED:A3:FB:A5:B3:9E:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/7AF25128E87AF79DE2104B621EEDA3FBA5B39EFA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AF25128E87AF79DE2104B621EEDA3FBA5B39EFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8b5c:8000::/33
Signature Algorithm: sha256WithRSAEncryption
45:c8:e9:a6:cc:e3:72:91:cd:7b:19:52:44:7f:76:3c:2b:ce:
d7:9f:b0:41:4b:0a:12:3f:14:3b:9e:a2:6e:28:cd:93:6b:b3:
fb:87:b3:5c:b0:eb:b8:bb:88:e7:76:70:8d:57:cc:2d:0e:aa:
ff:03:14:27:73:7f:a5:a7:fe:4c:b6:c1:51:07:66:1d:2b:05:
30:bf:50:54:70:4e:13:c1:a4:a1:58:46:7a:a9:d4:8f:18:f9:
ef:80:8e:2f:75:c6:95:b3:e4:dc:cb:82:97:46:17:41:95:ef:
5e:49:4b:2e:e8:97:a5:5c:a9:48:1e:af:dc:6b:8b:81:c5:64:
6a:ad:2e:f0:3d:d7:2e:dd:54:33:bd:59:85:24:47:d4:23:0e:
17:2d:cc:23:3f:47:4f:a2:18:f1:a6:89:75:42:bf:c3:86:35:
3b:f5:39:0c:86:c2:7a:2e:ae:5d:dc:a2:d6:d0:21:86:66:d6:
51:57:1f:8c:da:06:fb:71:d5:47:40:c8:ca:c7:8c:22:78:b9:
de:e2:7a:4a:4d:60:e0:85:47:a6:b2:1b:9f:43:67:37:da:c3:
32:30:31:03:d3:a2:f7:7e:41:3a:90:18:8b:5a:55:7a:82:22:
23:59:35:e8:60:a4:8d:38:5a:4e:71:59:02:fb:a7:76:95:a3:
11:31:67:7f
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUaZufJr5xaarJdeXxqlaIPYUiL20wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0FGMjUxMjhFODdBRjc5REUyMTA0QjYyMUVFREEzRkJB
NUIzOUVGQTAeFw0yNTA4MDExNTMwMjhaFw0yNjA3MzExNTM1MjhaMDMxMTAvBgNV
BAMTKDFCMDQwMzYzQjIyNEZFMEZGOUFDRDk5QTQ1NERBMDJDMDYwQUYxMDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi3lutatayBgd9AZnVi8iN/zJz
YT3uKkpnY/PkV4t5sNza+YH1IXWjYrjEqvqG/Qy80QxMpZgxYTpcddDJHfdL7nUR
vs0UGJvo8EvHhat2aTeyq7j/Mfw2TEvkTbT1Wy2gioi72HFMNwEkIqL17J+zcZyM
2F3lzlXzgBXZE7DZGtKl6fOEN4iQYiar4tDy2CfsmGUi1UUUDgfP4E2VTYL1/jq+
wlSN6ZdN/EWKZQMrgIu4TR31d+WYMN3rzPF1D7VsXxd6hekj8FpnrMPDW/a9MNQL
vX0G8Zx8mDbBD8T/iNzqbdM1oulmGTJ5dZc6GI1CAqQBOBGRWujE8mtrOXLfAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUGwQDY7Ik/g/5rNmaRU2gLAYK8QYwHwYDVR0j
BBgwFoAUevJRKOh6953iEEtiHu2j+6WznvowDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSkNnb2lWMUpvN3NDb2pqbXNuSGQ0MWlyYlhGd1FocmhoOHd2M1BVSGpR
Wm8vMC83QUYyNTEyOEU4N0FGNzlERTIxMDRCNjIxRUVEQTNGQkE1QjM5RUZBLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdBRjI1MTI4RTg3QUY3OURF
MjEwNEI2MjFFRURBM0ZCQTVCMzlFRkEuY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0pDZ29pVjFKbzdzQ29qam1zbkhkNDFpcmJYRndRaHJoaDh3djNQVUhqUVpvLzAv
MzIzODMwMzQzYTM4NjIzNTYzM2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNk
M2UyMDMyMzczMzM3MzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBygEi1yAMA0GCSqGSIb3DQEBCwUA
A4IBAQBFyOmmzONykc17GVJEf3Y8K87Xn7BBSwoSPxQ7nqJuKM2Ta7P7h7NcsOu4
u4jndnCNV8wtDqr/AxQnc3+lp/5MtsFRB2YdKwUwv1BUcE4TwaShWEZ6qdSPGPnv
gI4vdcaVs+Tcy4KXRhdBle9eSUsu6JelXKlIHq/ca4uBxWRqrS7wPdcu3VQzvVmF
JEfUIw4XLcwjP0dPohjxpol1Qr/DhjU79TkMhsJ6Lq5d3KLW0CGGZtZRVx+M2gb7
cdVHQMjKx4wieLne4npKTWDghUemshufQ2c32sMyMDED06L3fkE6kBiLWlV6giIj
WTXoYKSNOFpOcVkC+6d2laMRMWd/
-----END CERTIFICATE-----
Generated at Wed Nov 5 22:18:38 2025 by rpki-client