Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3133382e39392e3234382e302f32322d3234203d3e203238313330.roa
File: 3133382e39392e3234382e302f32322d3234203d3e203238313330.roa (raw, json)
Hash identifier: l3povcAz9XVd1PMqDFL5tIDTayHGtM/q1o8EZqMj1wg=
Subject key identifier: EF:30:3D:0D:A4:66:6E:6B:94:B3:1B:2C:31:EC:E7:14:2A:3A:20:E4
Certificate issuer: /CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Certificate serial: 773FB5217296C0D287A958BB079B0AB4000488E2
Authority key identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3133382e39392e3234382e302f32322d3234203d3e203238313330.roa
Signing time: Thu 06 Mar 2025 07:53:57 +0000
ROA not before: Thu 06 Mar 2025 07:48:57 +0000
ROA not after: Thu 05 Mar 2026 07:53:57 +0000
asID: 28130
IP address blocks: 138.99.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:3f:b5:21:72:96:c0:d2:87:a9:58:bb:07:9b:0a:b4:00:04:88:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Validity
Not Before: Mar 6 07:48:57 2025 GMT
Not After : Mar 5 07:53:57 2026 GMT
Subject: CN=EF303D0DA4666E6B94B31B2C31ECE7142A3A20E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:22:d1:73:62:0b:50:29:8b:90:31:60:47:
6b:91:1a:9a:e4:e1:ee:ea:7c:96:1d:cf:91:b1:2c:
e6:c7:60:38:2c:d2:dc:f7:62:d4:d1:3e:4c:07:7c:
fc:ef:9c:89:ce:9a:12:4a:05:b7:cd:72:bf:35:c4:
3d:43:90:0d:f8:69:97:6d:92:76:70:43:01:b7:ac:
da:69:85:70:25:74:2f:5d:e7:14:53:24:31:69:09:
31:00:01:44:3e:2d:da:08:2e:2e:8a:ca:84:d2:52:
e6:db:7c:8c:d4:b6:cd:97:49:60:08:66:78:2b:e3:
a6:c1:47:24:73:4a:b2:5a:3a:91:cf:9d:31:e1:00:
69:48:de:dc:b7:6c:b3:25:22:91:e0:ca:04:b2:43:
5b:61:94:fb:82:8a:39:68:ec:d3:38:2f:df:5b:eb:
dd:e0:f5:2f:5b:39:80:ec:eb:46:3f:5c:96:11:26:
83:03:5e:5f:34:0b:ed:cd:16:e3:c3:29:7b:e6:37:
f7:ba:4f:39:bb:07:55:ca:46:35:a3:82:0a:28:32:
f8:f6:38:9b:df:3f:52:61:45:bb:84:c4:e2:83:ef:
e2:d1:25:6d:b4:81:d9:5c:64:cc:1f:6f:ee:da:78:
a2:ed:87:65:28:83:74:8b:4e:58:fe:d9:ca:3e:a1:
42:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:30:3D:0D:A4:66:6E:6B:94:B3:1B:2C:31:EC:E7:14:2A:3A:20:E4
X509v3 Authority Key Identifier:
keyid:4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3133382e39392e3234382e302f32322d3234203d3e203238313330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.248.0/22
Signature Algorithm: sha256WithRSAEncryption
94:d2:66:6d:48:73:5f:52:78:ff:28:ef:b7:cb:de:b7:b3:84:
e9:43:47:11:d1:36:b8:2e:0f:c1:ff:01:f1:95:2b:17:60:94:
29:ea:a8:9c:4d:5e:0b:69:46:a5:2c:2b:fd:79:72:e7:d2:ea:
06:4e:a0:8e:1f:01:0d:c1:7d:9a:c7:f0:52:8f:a2:48:10:c6:
43:86:a2:6b:e4:d4:b5:b9:f0:f6:2a:6e:27:d2:ff:a3:43:8b:
5a:c9:f1:69:f6:2a:3b:cd:e9:9f:4b:79:d1:ef:fa:2a:f8:bf:
b6:22:71:7b:62:a1:12:af:c4:ca:c7:74:82:4b:61:ad:ee:bb:
3c:cc:8e:84:ee:52:c9:24:d3:be:da:5d:ce:2c:25:10:ba:cb:
18:63:8b:ef:cc:cb:ed:47:40:ba:d8:dd:6e:6b:f0:60:56:06:
ab:9e:3c:ca:87:c3:fd:59:c7:ae:05:c4:38:66:43:7c:3b:46:
32:e4:e1:86:f0:e7:95:23:4a:bd:c5:d7:4c:b5:ef:4f:ba:6a:
ab:f4:ea:59:25:04:4f:11:92:5b:0e:c6:9e:8b:c0:9d:49:93:
57:38:f8:54:f1:f8:b0:a5:17:ad:36:00:13:8d:54:6a:0b:c8:
95:ae:20:d0:ef:9b:6d:76:8e:63:c7:23:e8:63:53:5a:cf:bf:
1c:fd:de:a4
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgIUdz+1IXKWwNKHqVi7B5sKtAAEiOIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEIxM0RCNjRCQ0MyNUM5RkE5OUZBMkI5REZBQzQ5NjFE
M0RDMDlFMDAeFw0yNTAzMDYwNzQ4NTdaFw0yNjAzMDUwNzUzNTdaMDMxMTAvBgNV
BAMTKEVGMzAzRDBEQTQ2NjZFNkI5NEIzMUIyQzMxRUNFNzE0MkEzQTIwRTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlOiLRc2ILUCmLkDFgR2uRGprk
4e7qfJYdz5GxLObHYDgs0tz3YtTRPkwHfPzvnInOmhJKBbfNcr81xD1DkA34aZdt
knZwQwG3rNpphXAldC9d5xRTJDFpCTEAAUQ+LdoILi6KyoTSUubbfIzUts2XSWAI
Zngr46bBRyRzSrJaOpHPnTHhAGlI3ty3bLMlIpHgygSyQ1thlPuCijlo7NM4L99b
693g9S9bOYDs60Y/XJYRJoMDXl80C+3NFuPDKXvmN/e6Tzm7B1XKRjWjggooMvj2
OJvfP1JhRbuExOKD7+LRJW20gdlcZMwfb+7aeKLth2Uog3SLTlj+2co+oULPAgMB
AAGjggJMMIICSDAdBgNVHQ4EFgQU7zA9DaRmbmuUsxssMeznFCo6IOQwHwYDVR0j
BBgwFoAUSxPbZLzCXJ+pn6K536xJYdPcCeAwDgYDVR0PAQH/BAQDAgeAMIGSBgNV
HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv
cmVwby9oWHAzMTRBVm9uNVZVQjg1M29NVkQ2OWFaa3JLc3VHZkpEem95R3hnQXMy
LzEvNEIxM0RCNjRCQ0MyNUM5RkE5OUZBMkI5REZBQzQ5NjFEM0RDMDlFMC5jcmww
eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y
ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS80QjEzREI2NEJDQzI1QzlGQTk5
RkEyQjlERkFDNDk2MUQzREMwOUUwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG
CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9o
WHAzMTRBVm9uNVZVQjg1M29NVkQ2OWFaa3JLc3VHZkpEem95R3hnQXMyLzEvMzEz
MzM4MmUzOTM5MmUzMjM0MzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM4MzEz
MzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/
BBAwDjAMBAIAATAGAwQCimP4MA0GCSqGSIb3DQEBCwUAA4IBAQCU0mZtSHNfUnj/
KO+3y963s4TpQ0cR0Ta4Lg/B/wHxlSsXYJQp6qicTV4LaUalLCv9eXLn0uoGTqCO
HwENwX2ax/BSj6JIEMZDhqJr5NS1ufD2Km4n0v+jQ4tayfFp9io7zemfS3nR7/oq
+L+2InF7YqESr8TKx3SCS2Gt7rs8zI6E7lLJJNO+2l3OLCUQussYY4vvzMvtR0C6
2N1ua/BgVgarnjzKh8P9WceuBcQ4ZkN8O0Yy5OGG8OeVI0q9xddMte9Pumqr9OpZ
JQRPEZJbDsaei8CdSZNXOPhU8fiwpRetNgATjVRqC8iVriDQ75ttdo5jxyPoY1Na
z78c/d6k
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:43:55 2025 by rpki-client