Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/JCgxwe34E35FQj8PKz4eeo7gPxrf1E7GMSLMrx6b6z9p/0/323830343a6337343a3a2f33322d3333203d3e203532373039.roa
File: 323830343a6337343a3a2f33322d3333203d3e203532373039.roa (raw, json)
Hash identifier: NCaMPsaXmusID/90JFZ9QBYbRLbvpznaKjT3d9wXezY=
Subject key identifier: CD:A0:23:40:AB:72:F9:BB:0C:97:D6:64:D4:18:4B:B2:34:25:F3:A0
Certificate issuer: /CN=C99D0692688A31FA4DF8A88CB9408F0D25F15B49
Certificate serial: 113F6146C465E296C1FA04E6658D8CE1A6EF95AF
Authority key identifier: C9:9D:06:92:68:8A:31:FA:4D:F8:A8:8C:B9:40:8F:0D:25:F1:5B:49
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C99D0692688A31FA4DF8A88CB9408F0D25F15B49.cer
Subject info access: rsync://rpki-repo.registro.br/repo/JCgxwe34E35FQj8PKz4eeo7gPxrf1E7GMSLMrx6b6z9p/0/323830343a6337343a3a2f33322d3333203d3e203532373039.roa
Signing time: Mon 13 Jan 2025 17:41:28 +0000
ROA not before: Mon 13 Jan 2025 17:36:28 +0000
ROA not after: Mon 12 Jan 2026 17:41:28 +0000
asID: 52709
IP address blocks: 2804:c74::/32 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:3f:61:46:c4:65:e2:96:c1:fa:04:e6:65:8d:8c:e1:a6:ef:95:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C99D0692688A31FA4DF8A88CB9408F0D25F15B49
Validity
Not Before: Jan 13 17:36:28 2025 GMT
Not After : Jan 12 17:41:28 2026 GMT
Subject: CN=CDA02340AB72F9BB0C97D664D4184BB23425F3A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9e:bf:4b:60:4a:0e:f2:13:4c:aa:8d:e7:db:
ac:01:b0:43:95:94:44:82:87:9f:e9:4c:95:5f:cc:
f8:3c:15:6f:b2:ad:3f:a8:b0:86:e5:da:cd:7b:6f:
5e:35:8c:78:1d:cb:e0:89:9d:40:78:2b:3c:be:30:
47:f3:23:c8:32:02:39:2b:6e:a8:a6:a6:35:a5:84:
91:c2:4e:9b:0e:64:67:8e:de:6e:d2:90:d3:6b:fe:
80:4e:86:57:66:17:2b:92:ef:47:29:8a:91:04:87:
31:15:3f:46:64:bd:e6:1b:6c:81:98:6f:f1:90:3e:
d1:da:1a:8a:cf:45:b2:cd:58:f0:08:d3:d5:15:00:
67:06:ec:8d:cd:a4:73:77:22:a5:c3:9a:7e:1a:77:
71:c5:50:95:8e:20:47:75:1f:d4:e6:c1:f9:82:ac:
7f:fb:46:8d:c6:e5:43:57:52:59:0e:ea:0f:5d:7c:
b2:6b:8a:78:45:0c:9b:3a:7f:6e:b0:86:f2:ee:1a:
10:32:fd:81:49:e4:80:e0:71:1b:f6:fe:be:d2:8e:
5d:c3:8f:dd:ae:4f:80:80:e0:bf:fb:96:95:b1:1a:
d7:48:ee:18:7d:2c:b3:f4:57:a9:4d:1d:21:24:bd:
5a:69:00:81:cf:3b:ee:0e:58:c9:82:8b:87:29:96:
18:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A0:23:40:AB:72:F9:BB:0C:97:D6:64:D4:18:4B:B2:34:25:F3:A0
X509v3 Authority Key Identifier:
keyid:C9:9D:06:92:68:8A:31:FA:4D:F8:A8:8C:B9:40:8F:0D:25:F1:5B:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/JCgxwe34E35FQj8PKz4eeo7gPxrf1E7GMSLMrx6b6z9p/0/C99D0692688A31FA4DF8A88CB9408F0D25F15B49.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C99D0692688A31FA4DF8A88CB9408F0D25F15B49.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/JCgxwe34E35FQj8PKz4eeo7gPxrf1E7GMSLMrx6b6z9p/0/323830343a6337343a3a2f33322d3333203d3e203532373039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:c74::/32
Signature Algorithm: sha256WithRSAEncryption
7b:a3:f6:84:0b:11:57:e4:ab:5b:79:80:bc:2f:e7:1e:e2:41:
34:82:98:b7:a7:9e:50:14:50:cf:ae:c6:87:4f:e1:ab:62:ba:
5f:94:8f:7b:a5:dd:44:07:f8:35:b8:4d:13:35:f3:3a:0b:9d:
af:77:f3:d1:76:a8:d5:37:05:9d:f3:e1:69:81:0f:04:b5:24:
e8:c5:ee:e6:48:73:9a:6d:18:8c:01:83:d4:48:a5:a3:2b:e9:
0b:d1:8e:1b:53:aa:4e:f7:13:a5:ed:4f:16:80:e3:e8:53:69:
06:8e:d2:05:7b:19:09:67:27:30:75:40:f0:ef:ca:bc:50:0b:
1f:a4:66:fd:28:6c:d5:7b:77:ba:6f:05:58:e9:59:dc:9f:b9:
bd:e0:c3:79:9a:84:13:97:7b:df:96:6a:f0:4d:9c:44:37:a2:
17:29:66:65:63:91:b7:79:79:a3:e1:6d:42:6d:eb:83:35:36:
93:f6:14:0d:06:a1:f5:98:1b:d0:95:e4:13:b5:05:85:2e:59:
2e:38:b8:45:c7:8a:65:e7:10:58:dc:10:dd:7b:78:27:5b:e3:
15:01:a7:e1:72:c4:3f:be:d1:e4:a4:50:d0:b5:64:2a:c1:3d:
80:ce:66:86:ba:1c:73:9c:8e:34:dc:d2:db:b2:6e:70:b8:b2:
2f:34:26:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:26:41 2025 by rpki-client