Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/n16y1LULYkKyXzmNmYgQsCe9sv9vwi43PQLzrQpKjSM/1/323830343a353965343a3a2f33332d3333203d3e20323638373332.roa
File: 323830343a353965343a3a2f33332d3333203d3e20323638373332.roa (raw, json)
Hash identifier: PoKm8qHQ/4YWPPIbtc2SdYw96JqZ7UCMDPWsng2N1cQ=
Subject key identifier: 37:BF:95:6F:3E:F1:AC:34:F5:C5:1D:D2:00:BE:6E:25:3C:10:53:67
Certificate issuer: /CN=B7124651D19D132543E991B7A74DD4A680768A09
Certificate serial: 31B5BDF16FB2BA5DD0745BA247D37AABD4410490
Authority key identifier: B7:12:46:51:D1:9D:13:25:43:E9:91:B7:A7:4D:D4:A6:80:76:8A:09
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7124651D19D132543E991B7A74DD4A680768A09.cer
Subject info access: rsync://rpki-repo.registro.br/repo/n16y1LULYkKyXzmNmYgQsCe9sv9vwi43PQLzrQpKjSM/1/323830343a353965343a3a2f33332d3333203d3e20323638373332.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 268732
IP address blocks: 2804:59e4::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:b5:bd:f1:6f:b2:ba:5d:d0:74:5b:a2:47:d3:7a:ab:d4:41:04:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B7124651D19D132543E991B7A74DD4A680768A09
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=37BF956F3EF1AC34F5C51DD200BE6E253C105367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:58:e5:03:8d:f9:73:b6:53:e2:e5:8b:a8:04:
75:2a:12:f1:ea:e2:53:62:e4:2d:ad:7f:69:f0:82:
7a:f9:16:0d:e2:29:2c:66:09:f1:f8:c4:0a:e7:47:
79:2d:69:cf:2d:dd:c2:c1:53:4e:9d:ba:76:69:b1:
d2:44:6f:b1:62:67:51:6f:69:ff:b1:64:19:21:f1:
1e:3a:c9:a8:05:00:f8:34:7f:55:dc:9a:bd:08:af:
91:fc:7f:fb:08:52:45:97:81:a9:6e:bd:7f:cc:28:
b8:db:2b:42:3d:4d:38:c5:2a:b6:27:72:0d:0c:a5:
3f:c3:3e:92:77:c5:93:68:79:12:0b:d4:1e:cc:72:
9e:a3:71:35:57:09:fd:9f:81:03:5d:3b:7d:fb:86:
c2:c4:b4:46:d1:a3:c3:c0:12:be:ef:88:d9:b7:67:
2e:ec:69:db:9c:da:a8:8b:7f:54:aa:87:99:82:de:
bd:e0:48:0b:40:e2:44:ea:24:74:5c:c2:bc:4e:08:
da:fd:81:d0:24:2b:a0:fa:41:61:6f:3a:20:96:e0:
e0:02:0f:fa:70:15:c6:82:ba:b5:86:4a:13:ea:6d:
5e:e6:47:93:99:14:d4:e5:a8:b5:0f:47:f8:96:ad:
e7:ec:3c:9f:fb:ec:38:a1:e9:ce:67:1e:23:52:7d:
f6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BF:95:6F:3E:F1:AC:34:F5:C5:1D:D2:00:BE:6E:25:3C:10:53:67
X509v3 Authority Key Identifier:
keyid:B7:12:46:51:D1:9D:13:25:43:E9:91:B7:A7:4D:D4:A6:80:76:8A:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/n16y1LULYkKyXzmNmYgQsCe9sv9vwi43PQLzrQpKjSM/1/B7124651D19D132543E991B7A74DD4A680768A09.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7124651D19D132543E991B7A74DD4A680768A09.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/n16y1LULYkKyXzmNmYgQsCe9sv9vwi43PQLzrQpKjSM/1/323830343a353965343a3a2f33332d3333203d3e20323638373332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:59e4::/33
Signature Algorithm: sha256WithRSAEncryption
19:44:cc:c6:e4:2d:80:ec:d9:4f:e9:60:6b:e5:f4:bb:6b:f7:
4c:78:c7:da:74:f1:fa:1d:b0:dd:50:63:97:18:4a:39:5e:ce:
fb:06:bd:3b:d7:e9:06:f8:6b:bc:37:f4:7e:d9:0d:fd:6e:48:
7a:6f:fd:b2:b4:42:9f:67:fe:b0:03:a6:ef:84:f1:df:84:af:
a2:6f:b5:25:f8:3c:9d:dd:f9:47:6f:c3:68:c9:43:a6:1f:2a:
21:c9:29:ae:94:8c:15:44:16:cd:c9:23:72:94:27:cb:1e:fd:
1b:7d:d8:52:62:f7:2e:0b:86:62:9e:bc:1f:14:bb:be:57:d9:
62:f0:74:27:ac:7d:76:1a:71:d4:c5:a3:7a:76:7f:6c:d7:1f:
80:e8:a6:9a:4a:de:0a:a8:ed:36:84:60:fe:1a:41:05:da:17:
f1:ea:2d:3e:f6:5d:be:43:9e:8d:2a:f7:4e:dd:9f:16:7c:11:
22:d0:09:2f:79:fd:a9:f9:ff:d5:ff:39:d5:fa:7f:d1:6c:15:
e5:c3:bd:bd:84:aa:aa:9a:5b:3d:73:5f:d1:fe:03:40:e6:e7:
1a:ac:61:0a:c8:5d:40:b2:21:0d:5f:6f:95:a6:83:f0:3c:7e:
4c:91:db:6d:c4:14:89:34:4e:a3:06:36:45:78:e8:bc:ce:36:
c8:d7:b8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:35:22 2025 by rpki-client