Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/1/3133382e3138362e3131322e302f32322d3234203d3e20323633383636.roa
File: 3133382e3138362e3131322e302f32322d3234203d3e20323633383636.roa (raw, json)
Hash identifier: R7IhIMz/AZOBnQKx4tBKIKyNh0f9zSnl3na1mU9Vaxo=
Subject key identifier: 81:21:A3:B1:71:B7:38:14:F9:33:57:11:4F:99:63:53:DD:55:19:A5
Certificate issuer: /CN=D88971C2389D950434E0E7C897ACD9D0A67EC933
Certificate serial: 5B04EB4E10033E4BA8D5124D8E222642953F790C
Authority key identifier: D8:89:71:C2:38:9D:95:04:34:E0:E7:C8:97:AC:D9:D0:A6:7E:C9:33
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D88971C2389D950434E0E7C897ACD9D0A67EC933.cer
Subject info access: rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/1/3133382e3138362e3131322e302f32322d3234203d3e20323633383636.roa
Signing time: Thu 04 Apr 2024 09:25:48 +0000
ROA not before: Thu 04 Apr 2024 09:20:48 +0000
ROA not after: Thu 03 Apr 2025 09:25:48 +0000
asID: 263866
IP address blocks: 138.186.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:04:eb:4e:10:03:3e:4b:a8:d5:12:4d:8e:22:26:42:95:3f:79:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D88971C2389D950434E0E7C897ACD9D0A67EC933
Validity
Not Before: Apr 4 09:20:48 2024 GMT
Not After : Apr 3 09:25:48 2025 GMT
Subject: CN=8121A3B171B73814F93357114F996353DD5519A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d2:68:21:ea:a7:fb:b4:1e:c8:ba:b3:d8:61:
71:c0:79:b5:e1:67:c0:d8:2c:65:c6:3c:44:8e:68:
64:24:9b:ae:e3:70:65:dc:51:9c:1e:2f:68:6f:ae:
96:14:74:f5:71:91:9a:29:2b:7d:50:be:d3:a9:35:
54:80:2f:60:d0:ac:a7:1d:0e:0e:3d:34:ff:63:25:
1e:06:89:e1:6b:28:12:cf:41:56:78:c6:39:5f:b1:
9f:7a:b7:ea:5b:33:91:f4:a3:14:e9:a0:88:54:3e:
2a:d1:02:1e:fa:1d:9a:ed:a2:2b:78:9f:65:92:74:
68:72:ae:a3:c1:3d:cf:91:04:0d:47:6a:b3:56:16:
3a:b9:02:e4:1d:b6:76:11:3b:11:32:f5:cb:78:c0:
e7:a2:4e:bb:31:cc:21:7a:f2:99:e9:3e:3b:14:0e:
32:35:5b:ea:9b:6f:80:90:88:83:29:e3:0b:1e:c3:
72:3c:d9:01:91:15:da:c6:e9:d4:1f:3f:89:92:3e:
21:5a:5b:24:b4:7a:04:8a:86:84:72:bb:37:24:45:
1d:cf:63:40:8e:86:85:34:10:43:f8:77:b7:1c:7b:
8d:df:51:76:6f:64:f1:78:3a:2f:57:3a:05:3b:5b:
33:ab:94:a1:a1:b9:1c:32:3d:f9:0b:ff:7c:b5:a8:
54:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:21:A3:B1:71:B7:38:14:F9:33:57:11:4F:99:63:53:DD:55:19:A5
X509v3 Authority Key Identifier:
keyid:D8:89:71:C2:38:9D:95:04:34:E0:E7:C8:97:AC:D9:D0:A6:7E:C9:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/1/D88971C2389D950434E0E7C897ACD9D0A67EC933.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D88971C2389D950434E0E7C897ACD9D0A67EC933.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/QJZjKCm6U2AQhPFF2V8qZXeUDWVbmjk9AY5oqNaeDn9/1/3133382e3138362e3131322e302f32322d3234203d3e20323633383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.112.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:02:2b:9c:26:3c:f7:9d:2d:37:8f:ae:09:bb:04:72:88:84:
7a:e9:0e:ac:6c:34:4f:00:9f:aa:f9:83:86:d9:17:15:7b:55:
07:95:6d:2c:28:b2:05:3f:c8:10:3f:55:12:0f:74:17:4f:67:
90:03:fc:d1:d7:9c:75:0e:6d:63:2d:cd:37:5d:d2:fc:44:52:
25:97:f5:d2:32:47:c3:d6:b4:82:e1:ea:c4:fd:6d:22:b4:e8:
b3:33:7c:3d:2d:32:65:37:73:41:aa:ac:87:b6:a5:ee:23:68:
34:3b:fa:18:89:f2:d0:8d:49:e3:77:76:76:68:87:a4:ca:e4:
ab:3b:d1:eb:5f:eb:d6:5c:04:d8:16:f4:e3:ef:13:4a:a4:9d:
d0:36:5a:16:2b:5c:dc:ed:fb:b6:4b:23:02:29:e1:94:56:4e:
28:31:82:3c:2f:0d:66:d9:85:cc:6d:4d:3a:44:d4:3b:c4:cf:
2e:25:cc:60:a8:a4:74:aa:b7:bb:57:71:51:1b:5d:f0:d3:38:
f2:03:2c:59:92:c4:ab:a9:b0:60:a4:72:29:a6:71:b6:0f:12:
0d:6e:6a:5a:8f:b8:72:6e:60:2c:f7:e9:80:15:3d:be:15:8e:
35:a6:97:99:9c:41:36:77:c3:0d:1d:71:5f:23:b2:c1:d8:1e:
eb:e9:97:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:56:06 2025 by rpki-client