Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3137302e3135302e3136342e302f32322d3234203d3e203238313330.roa
File: 3137302e3135302e3136342e302f32322d3234203d3e203238313330.roa (raw, json)
Hash identifier: alVtSNHx14XtzkxqRCajfAxCGOdONGl8TCrIbYetgGo=
Subject key identifier: 84:48:DD:AA:41:FE:A0:AE:76:E1:69:59:89:87:F4:5A:3A:C0:4F:ED
Certificate issuer: /CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Certificate serial: 20F834EE34CBB80D9A10218BB3061E43430345A9
Authority key identifier: 4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3137302e3135302e3136342e302f32322d3234203d3e203238313330.roa
Signing time: Thu 06 Mar 2025 07:53:57 +0000
ROA not before: Thu 06 Mar 2025 07:48:57 +0000
ROA not after: Thu 05 Mar 2026 07:53:57 +0000
asID: 28130
IP address blocks: 170.150.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:f8:34:ee:34:cb:b8:0d:9a:10:21:8b:b3:06:1e:43:43:03:45:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0
Validity
Not Before: Mar 6 07:48:57 2025 GMT
Not After : Mar 5 07:53:57 2026 GMT
Subject: CN=8448DDAA41FEA0AE76E169598987F45A3AC04FED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:07:6e:a1:8d:0b:db:47:ae:ae:9d:0b:06:
27:41:12:d1:4f:ba:4e:bc:76:05:9c:25:3f:e2:b1:
f7:71:01:90:f2:b5:2e:8d:25:5b:1d:88:2d:36:33:
8b:f0:92:e8:b0:a1:d8:c6:fe:58:c4:da:06:74:2c:
94:80:1d:d4:ad:b6:07:31:12:c1:4d:9c:14:cd:d0:
e6:a6:0c:10:6c:e0:49:33:b7:5d:89:46:4c:15:f0:
78:b2:0c:2f:b8:78:9f:2e:71:a3:48:1d:85:73:75:
06:56:ee:5a:b2:dd:db:40:9d:e0:39:93:e5:aa:8b:
ed:64:62:db:6f:24:71:f3:80:55:c7:ea:a5:b7:7d:
cc:94:ca:5e:50:ba:07:1f:bf:f3:ed:7e:ba:d5:87:
79:ff:46:0a:54:b8:64:2b:24:d0:9f:5c:14:c6:d7:
7a:66:9e:0f:40:a1:0c:c1:fa:31:1e:ad:50:c8:87:
65:7a:88:7e:01:27:14:f9:3a:ff:e7:6c:6a:97:4b:
60:e6:be:05:c8:49:dc:19:13:dc:b4:6e:b5:ae:52:
b1:bf:1b:b7:40:b9:cd:a3:80:1e:7d:e9:cc:bd:5f:
13:62:e8:71:4e:0c:d0:ce:c3:3d:ca:22:9e:62:06:
35:70:aa:35:d5:ad:c4:43:d8:eb:36:ea:a9:db:f0:
52:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:48:DD:AA:41:FE:A0:AE:76:E1:69:59:89:87:F4:5A:3A:C0:4F:ED
X509v3 Authority Key Identifier:
keyid:4B:13:DB:64:BC:C2:5C:9F:A9:9F:A2:B9:DF:AC:49:61:D3:DC:09:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4B13DB64BCC25C9FA99FA2B9DFAC4961D3DC09E0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/hXp314AVon5VUB853oMVD69aZkrKsuGfJDzoyGxgAs2/1/3137302e3135302e3136342e302f32322d3234203d3e203238313330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.164.0/22
Signature Algorithm: sha256WithRSAEncryption
00:e1:4f:e6:bd:47:2e:6d:0a:e3:7f:d2:e9:11:5d:a3:5e:a6:
ff:1b:50:13:54:13:4d:66:6c:b0:0a:f9:31:25:a0:35:77:02:
b3:02:6f:ee:ce:62:69:d0:a0:d3:6d:7a:fd:f4:b2:ee:bc:cd:
56:1e:d7:d6:1e:d6:40:a2:26:69:b2:e0:52:a3:11:09:87:7a:
52:48:28:5e:14:c0:a0:7e:39:8c:6d:93:be:e4:cb:e1:4f:f5:
cd:0b:26:05:7a:a5:4e:e6:e1:ba:8f:84:f4:ba:b0:03:e9:e0:
47:0f:5b:2a:f0:c1:84:21:c0:e8:81:0a:27:6e:41:2d:17:e8:
cb:28:ae:45:41:9b:8b:e6:d7:ec:1b:7c:0f:a4:60:47:28:1d:
4d:b7:1f:f5:07:e4:8f:d1:0b:f7:f0:5b:4b:a8:70:85:28:ce:
d4:e5:1e:be:74:be:ae:3b:53:cf:6f:93:4b:30:39:2e:ec:a4:
c8:ab:5c:8e:80:00:7f:cc:a3:5a:ed:52:ab:e6:f7:29:90:df:
ea:1f:91:9b:3a:4a:c5:88:d3:19:63:ea:38:41:1d:d4:4b:c7:
c1:b4:ea:9d:37:6c:25:77:1e:d5:93:53:1e:38:e0:20:90:6f:
92:4a:cb:33:f4:02:d4:5f:7d:2e:01:10:a6:b1:9f:5c:74:52:
2b:22:4a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:24:51 2025 by rpki-client