Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3134332e3230382e34302e302f32322d3234203d3e203238313330.roa
File: 3134332e3230382e34302e302f32322d3234203d3e203238313330.roa (raw, json)
Hash identifier: V7JVCFnxEVgzrvrEtD4MgqjAc1VMeVN0mUu++RS9r80=
Subject key identifier: 1C:00:AE:C0:14:C0:AD:F6:EE:8A:6C:09:C4:7F:94:AC:E5:27:E4:87
Certificate issuer: /CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Certificate serial: 2D78C80E4333628DE9EDBB376A56B115A9E6F203
Authority key identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3134332e3230382e34302e302f32322d3234203d3e203238313330.roa
Signing time: Thu 06 Mar 2025 07:53:57 +0000
ROA not before: Thu 06 Mar 2025 07:48:57 +0000
ROA not after: Thu 05 Mar 2026 07:53:57 +0000
asID: 28130
IP address blocks: 143.208.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:78:c8:0e:43:33:62:8d:e9:ed:bb:37:6a:56:b1:15:a9:e6:f2:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Validity
Not Before: Mar 6 07:48:57 2025 GMT
Not After : Mar 5 07:53:57 2026 GMT
Subject: CN=1C00AEC014C0ADF6EE8A6C09C47F94ACE527E487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:30:2d:89:9b:65:cd:37:34:21:5b:8d:04:dc:
5a:8a:6d:9f:90:af:2a:cb:4c:29:08:3d:a2:3f:3c:
41:21:56:04:71:4b:04:26:59:dc:ba:82:f0:10:56:
ad:6d:3d:fd:7c:02:35:70:a5:be:54:51:aa:c6:66:
96:ac:58:f6:25:13:13:78:5c:e7:31:32:62:05:d1:
b0:da:ec:9d:59:96:25:86:1a:5a:9c:f2:d3:85:68:
aa:9e:2e:4d:2f:3d:f3:4a:41:23:15:13:fb:65:8d:
5e:d0:e5:e5:17:0e:30:29:c0:34:e8:e6:85:57:1c:
5d:39:13:40:9a:74:b0:4b:89:c6:c3:09:8f:57:02:
f4:af:4b:b3:81:ca:56:7b:8c:50:05:a3:05:29:7e:
18:18:ef:87:f4:5d:70:7c:8a:bb:9c:07:34:4a:86:
c2:f4:47:82:cb:78:17:30:c0:b5:7a:1e:00:b1:a8:
0d:1a:47:b7:f6:73:af:b7:de:af:1d:5c:18:c7:fa:
f8:22:1b:bb:9a:7d:38:8b:dd:85:52:74:e6:ee:13:
e9:e5:d5:cb:03:22:d2:f4:e2:92:9b:9e:5f:2d:60:
6a:6d:b7:c3:a1:72:f6:11:6c:76:d1:42:ce:fc:55:
1c:52:5d:ce:84:a4:35:20:c5:a8:06:32:99:f9:79:
30:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:00:AE:C0:14:C0:AD:F6:EE:8A:6C:09:C4:7F:94:AC:E5:27:E4:87
X509v3 Authority Key Identifier:
keyid:4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3134332e3230382e34302e302f32322d3234203d3e203238313330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.208.40.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:2e:82:b8:36:18:77:6c:bd:f5:8d:86:a7:e7:0c:dc:46:04:
c6:38:80:a0:d8:ff:94:e3:24:78:a6:6b:96:a6:72:c8:76:3b:
7a:d8:16:9d:00:64:c0:c7:c1:7a:aa:f4:5d:7b:15:a4:58:05:
46:45:ce:97:a3:c0:76:52:f9:c7:5c:07:02:ae:a6:74:0c:76:
1c:0e:98:9b:9d:96:6f:c2:cc:a9:bf:4e:cb:e6:b6:a7:b8:3d:
32:ab:d2:9e:59:02:f9:2f:6d:21:46:01:e5:b6:a7:ff:7f:63:
11:e0:37:a1:8e:77:f2:53:81:3e:70:92:1a:b3:a5:5c:c7:79:
33:db:f5:36:d9:77:38:58:fe:90:53:d8:a0:87:5e:e5:b6:1b:
ef:7e:3e:78:35:e6:5a:a1:3f:dc:6d:2a:4c:1f:c3:ed:02:42:
0b:2d:5f:d8:38:03:47:03:b3:f3:e2:2e:47:24:cd:e2:30:09:
75:24:9a:4d:62:10:4a:3a:5b:09:cb:4c:f8:aa:d8:e0:f6:f7:
2a:ad:83:23:4d:15:2a:99:0e:c0:42:66:1f:62:c0:12:72:d5:
96:ec:38:43:6e:c8:fa:d3:3b:05:02:75:7d:84:79:ca:28:0e:
f3:ba:19:a6:ae:da:06:e2:23:08:6e:0f:e6:67:71:88:76:60:
27:13:6f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:24:59 2025 by rpki-client