Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/p9bxpXMjwg4MTQnLBtjGdMzRbjfSRpFR1GCBfWMAkZU/1/323830343a316563633a3a2f33322d3438203d3e20323634343438.roa
File: 323830343a316563633a3a2f33322d3438203d3e20323634343438.roa (raw, json)
Hash identifier: iM95uKwE6q6mnCxr3PXmQHmGkVVYcHZcSKt6/ikuABQ=
Subject key identifier: CB:EE:18:93:1B:B6:08:4A:B5:2C:0A:10:79:79:AF:44:85:1F:A1:0E
Certificate issuer: /CN=72F3AB6BCB2EB6FBFFDCE191617289E9F4BD5771
Certificate serial: 43B4FE92421CC9571D4F25045ECB54E588EFA6C3
Authority key identifier: 72:F3:AB:6B:CB:2E:B6:FB:FF:DC:E1:91:61:72:89:E9:F4:BD:57:71
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/72F3AB6BCB2EB6FBFFDCE191617289E9F4BD5771.cer
Subject info access: rsync://rpki-repo.registro.br/repo/p9bxpXMjwg4MTQnLBtjGdMzRbjfSRpFR1GCBfWMAkZU/1/323830343a316563633a3a2f33322d3438203d3e20323634343438.roa
Signing time: Thu 04 Apr 2024 23:14:02 +0000
ROA not before: Thu 04 Apr 2024 23:09:02 +0000
ROA not after: Thu 03 Apr 2025 23:14:02 +0000
asID: 264448
IP address blocks: 2804:1ecc::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:b4:fe:92:42:1c:c9:57:1d:4f:25:04:5e:cb:54:e5:88:ef:a6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72F3AB6BCB2EB6FBFFDCE191617289E9F4BD5771
Validity
Not Before: Apr 4 23:09:02 2024 GMT
Not After : Apr 3 23:14:02 2025 GMT
Subject: CN=CBEE18931BB6084AB52C0A107979AF44851FA10E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:6b:1c:cd:1a:64:a4:97:31:8d:2a:21:97:fc:
25:5b:ac:73:12:41:67:ca:51:ab:fa:b2:64:a9:e1:
f2:5b:53:39:e4:59:67:51:53:36:d0:cb:3e:5c:27:
e0:09:5c:bf:d9:ca:a1:93:5b:ee:b9:b2:57:c1:92:
04:d8:e0:e5:20:e8:3a:81:f9:e0:00:f3:b3:cd:cd:
38:5e:04:1f:a9:24:c9:1e:60:b2:ef:6b:7f:bc:03:
67:99:51:48:b7:8b:69:d9:b4:ab:4e:e6:c8:41:6d:
be:30:bd:58:ed:09:72:ca:47:40:ad:17:ce:8b:69:
e5:e0:ae:55:ee:0f:b0:a4:4b:46:3b:60:53:72:01:
c2:e5:ea:2a:0e:8d:02:60:50:3a:a2:40:74:dd:40:
97:55:43:6d:28:41:d9:26:f7:f1:40:2a:dd:4e:7e:
8c:bb:e1:36:74:99:71:e4:08:50:08:c5:27:e8:c1:
61:16:c4:25:ab:8b:b9:e7:5b:13:70:e5:34:e5:61:
bf:47:d1:e5:14:ae:18:59:d5:0f:b1:24:01:67:ef:
f2:95:5c:5f:91:87:63:8d:d4:3c:b3:cf:48:22:fe:
47:64:02:50:c3:18:d8:62:b4:20:56:bb:72:69:35:
5b:79:a4:c3:45:06:74:3c:e0:82:f8:8c:b1:bf:63:
78:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EE:18:93:1B:B6:08:4A:B5:2C:0A:10:79:79:AF:44:85:1F:A1:0E
X509v3 Authority Key Identifier:
keyid:72:F3:AB:6B:CB:2E:B6:FB:FF:DC:E1:91:61:72:89:E9:F4:BD:57:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/p9bxpXMjwg4MTQnLBtjGdMzRbjfSRpFR1GCBfWMAkZU/1/72F3AB6BCB2EB6FBFFDCE191617289E9F4BD5771.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/72F3AB6BCB2EB6FBFFDCE191617289E9F4BD5771.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/p9bxpXMjwg4MTQnLBtjGdMzRbjfSRpFR1GCBfWMAkZU/1/323830343a316563633a3a2f33322d3438203d3e20323634343438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1ecc::/32
Signature Algorithm: sha256WithRSAEncryption
60:a4:fe:ed:47:3f:a7:90:5e:e7:49:1a:d4:b0:ef:ce:80:10:
45:d6:e1:5a:db:d8:65:5c:3f:72:f3:cd:41:3d:6e:ed:fd:86:
7c:65:78:b7:e2:24:4f:88:f0:a3:11:01:ab:d9:c9:c5:2a:56:
8a:55:31:14:a9:92:19:1b:93:99:44:0b:85:fd:ce:88:76:9b:
72:fc:7b:f3:5a:88:89:a3:83:69:4d:3e:ac:7a:b6:68:fd:2f:
1c:25:8e:99:dc:a2:a5:59:d0:18:5c:b3:0a:24:9a:3e:db:e0:
a8:54:28:0c:d9:e5:2f:56:61:fc:10:2a:51:d5:24:5c:01:23:
b9:55:1f:45:c5:71:8c:46:c2:50:31:a1:08:74:6c:41:36:ab:
26:7b:bc:ce:30:3f:b4:bb:c3:2e:84:d3:86:6a:ff:e8:e5:8b:
8b:58:1f:a6:65:29:be:0b:11:ef:d7:f3:44:bf:40:cc:b2:ac:
dd:b4:a1:13:ef:ac:e5:87:09:6a:72:4d:64:39:56:5b:95:ad:
c2:af:1c:9b:cd:6e:16:08:09:9c:2a:50:5f:2d:55:92:ba:67:
fa:2f:83:3f:b7:91:3a:10:eb:80:e3:4d:83:2d:5a:3c:f4:41:
f5:cf:7d:e9:ec:18:2e:22:a6:89:94:ae:1d:df:f1:a4:d1:0c:
3e:83:8b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:36:09 2025 by rpki-client