Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Yo8QeTbuKZ259i5qSYjeeU8okKAKU6L8ZFu1G5WLT1H/0/3133382e3138352e3235332e302f32342d3234203d3e20323633393430.roa
File: 3133382e3138352e3235332e302f32342d3234203d3e20323633393430.roa (raw, json)
Hash identifier: NQwOmWMX9OlGdNMJRQbQ/ZNuie2Gyo56HO7Iy94XLqA=
Subject key identifier: 53:D1:00:EE:D5:B0:96:01:58:5A:70:61:23:4E:74:4C:04:9B:E7:DA
Certificate issuer: /CN=49035094B34CBA1B308381D57F68D0820CEA3A4F
Certificate serial: 3452D44B8D33401C119A6A9D865FA6858E51E164
Authority key identifier: 49:03:50:94:B3:4C:BA:1B:30:83:81:D5:7F:68:D0:82:0C:EA:3A:4F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/49035094B34CBA1B308381D57F68D0820CEA3A4F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Yo8QeTbuKZ259i5qSYjeeU8okKAKU6L8ZFu1G5WLT1H/0/3133382e3138352e3235332e302f32342d3234203d3e20323633393430.roa
Signing time: Mon 05 May 2025 20:48:49 +0000
ROA not before: Mon 05 May 2025 20:43:49 +0000
ROA not after: Mon 04 May 2026 20:48:49 +0000
asID: 263940
IP address blocks: 138.185.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:52:d4:4b:8d:33:40:1c:11:9a:6a:9d:86:5f:a6:85:8e:51:e1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49035094B34CBA1B308381D57F68D0820CEA3A4F
Validity
Not Before: May 5 20:43:49 2025 GMT
Not After : May 4 20:48:49 2026 GMT
Subject: CN=53D100EED5B09601585A7061234E744C049BE7DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:21:6d:ee:59:93:14:53:04:ed:54:cb:f8:aa:
2b:57:72:70:d8:a1:d0:56:a2:08:04:a0:5d:44:84:
f1:ce:ac:d4:c9:41:d7:c1:0d:8d:fd:8d:6e:e5:11:
92:11:31:18:e1:03:2b:1b:4e:82:e3:d0:29:c2:11:
15:48:4f:9f:64:c1:fa:28:9e:58:2b:17:a0:01:85:
92:08:8c:ce:37:05:27:17:7a:d7:97:dd:47:b9:22:
e0:d0:87:b4:61:bc:ba:ff:cd:91:cd:12:73:a6:23:
8a:f2:39:a3:39:19:24:b5:87:9e:ad:29:39:2a:5b:
b6:ee:bd:1d:fa:b3:f2:36:fd:39:62:f3:2d:05:ee:
1e:55:37:ee:c5:a7:46:6c:75:2f:17:9f:d4:4c:9d:
e2:68:ea:71:17:d1:34:ef:50:31:42:9c:e4:71:4a:
cc:51:c7:11:61:1d:b0:5a:13:3e:60:31:bc:9c:9c:
0b:d0:25:24:4e:c9:a8:3f:27:23:08:a5:45:7b:33:
c6:66:bd:e2:66:aa:04:81:7c:07:97:27:07:a8:de:
65:27:a8:c2:72:fc:82:08:d5:2f:f5:6d:60:0e:a4:
5e:ad:a8:f9:2f:4c:21:19:44:d3:40:7e:b4:8c:b9:
f8:2f:49:f1:d0:a3:ec:c0:bd:20:5f:c3:d7:b2:44:
cb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D1:00:EE:D5:B0:96:01:58:5A:70:61:23:4E:74:4C:04:9B:E7:DA
X509v3 Authority Key Identifier:
keyid:49:03:50:94:B3:4C:BA:1B:30:83:81:D5:7F:68:D0:82:0C:EA:3A:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Yo8QeTbuKZ259i5qSYjeeU8okKAKU6L8ZFu1G5WLT1H/0/49035094B34CBA1B308381D57F68D0820CEA3A4F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/49035094B34CBA1B308381D57F68D0820CEA3A4F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Yo8QeTbuKZ259i5qSYjeeU8okKAKU6L8ZFu1G5WLT1H/0/3133382e3138352e3235332e302f32342d3234203d3e20323633393430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.185.253.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:cf:8f:18:8c:50:cf:7a:69:8b:45:a9:d7:ee:0d:eb:90:b1:
f1:5a:88:90:7f:b1:5d:92:c5:3a:40:b6:7c:06:8f:c5:17:26:
15:fd:ed:38:60:96:b1:6a:40:a9:1f:1d:dc:cf:04:a9:80:98:
0c:39:6e:21:ac:15:40:63:07:5b:f8:5c:4e:9f:78:b5:8e:23:
e8:ab:36:b6:f3:96:2c:27:67:1b:19:05:02:99:39:08:cc:96:
a9:99:71:1b:62:33:63:ec:53:3f:36:49:64:f4:7d:1c:7d:5e:
f7:3e:a8:e1:b2:43:3e:14:14:a8:1b:c2:ce:61:35:1e:16:5f:
6b:fb:6f:0f:dd:68:5f:42:92:12:8d:f0:4f:fa:f9:a5:e5:5f:
12:99:31:52:4b:44:ed:6e:60:b5:e6:36:bd:c9:81:4f:a2:03:
d9:dd:15:b9:5d:60:b8:d6:17:f0:d7:dc:5c:bc:3b:98:8f:e7:
17:ba:8f:62:fd:aa:b9:cd:8e:54:da:5d:90:6a:01:3e:6e:d3:
b9:c8:62:1c:d8:7c:17:c2:d4:96:c6:f4:e4:f6:98:51:bc:6b:
83:95:94:66:c0:1a:d3:01:47:20:33:c7:0b:0c:0b:c5:4b:f0:
80:61:0d:24:2a:34:fc:ab:35:51:8d:ba:21:e2:09:ca:d0:e7:
bc:25:34:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 07:32:10 2025 by rpki-client