Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/3137302e3135302e3234382e302f32322d3234203d3e203532353635.roa
File: 3137302e3135302e3234382e302f32322d3234203d3e203532353635.roa (raw, json)
Hash identifier: kMFDU+hroSb3DCLt4twj69yFu0n8G2EDQt8HJaFspfM=
Subject key identifier: 67:DD:05:E9:93:50:46:AE:8C:3B:8A:51:69:EA:89:E1:74:C6:60:B0
Certificate issuer: /CN=02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9
Certificate serial: 256D20B9C521112489A160AB78F199A6B059965A
Authority key identifier: 02:B7:FA:C2:7E:D8:E4:63:4E:61:DF:A8:90:D8:6B:CF:AE:8F:9B:A9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/3137302e3135302e3234382e302f32322d3234203d3e203532353635.roa
Signing time: Tue 14 Jan 2025 12:57:08 +0000
ROA not before: Tue 14 Jan 2025 12:52:08 +0000
ROA not after: Tue 13 Jan 2026 12:57:08 +0000
asID: 52565
IP address blocks: 170.150.248.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.crl
rsync://rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:56:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:6d:20:b9:c5:21:11:24:89:a1:60:ab:78:f1:99:a6:b0:59:96:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9
Validity
Not Before: Jan 14 12:52:08 2025 GMT
Not After : Jan 13 12:57:08 2026 GMT
Subject: CN=67DD05E9935046AE8C3B8A5169EA89E174C660B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:93:8d:d7:3f:8e:17:17:50:8f:57:30:75:
09:83:26:ff:6f:52:9a:2b:ff:62:70:e9:e2:94:9b:
3e:31:00:53:57:74:c3:36:02:96:94:09:05:21:f4:
a8:02:53:f8:07:ad:56:b2:b4:81:11:39:70:7e:ea:
24:92:61:2f:b0:1c:8b:b0:73:d7:fc:e8:86:8b:a2:
8e:bf:4c:23:59:25:10:ef:3e:8e:6a:0a:1b:d8:a4:
36:4f:48:34:0a:c7:f5:47:89:e3:1a:82:58:84:44:
9c:73:cb:37:5b:16:8a:4e:a3:18:0c:8d:2c:2b:ea:
a0:34:7d:ce:41:9c:7a:b7:4e:c5:03:cf:06:ce:8e:
7f:da:74:8c:a3:7b:0b:f7:c3:64:cc:73:cc:eb:ef:
10:c4:41:e2:9b:ac:54:a0:99:77:d1:1b:c6:82:a3:
83:da:12:24:c0:fa:12:14:c4:b2:44:18:b9:15:8e:
79:7c:b8:5f:e5:33:aa:95:85:53:3e:e9:10:db:cc:
e8:fb:5b:2f:d0:4f:d0:05:a6:4f:76:ad:41:bf:84:
30:08:aa:bd:79:75:68:57:29:f9:89:2e:9a:64:83:
e3:4e:35:37:4f:a1:dd:15:ff:7b:fe:67:e4:fe:cd:
36:ac:bb:f4:ac:33:d7:9d:50:d6:5e:ed:3e:fa:9a:
59:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DD:05:E9:93:50:46:AE:8C:3B:8A:51:69:EA:89:E1:74:C6:60:B0
X509v3 Authority Key Identifier:
keyid:02:B7:FA:C2:7E:D8:E4:63:4E:61:DF:A8:90:D8:6B:CF:AE:8F:9B:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02B7FAC27ED8E4634E61DFA890D86BCFAE8F9BA9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/qWFSWvCe6Vhsi7pFRaD6Jg4w8TDXUdg4ZbYJMZNBy2b/0/3137302e3135302e3234382e302f32322d3234203d3e203532353635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:1e:15:29:bd:28:db:b8:41:fb:de:a3:7b:1c:c0:bf:70:32:
98:cc:a2:50:75:05:1e:7d:1d:69:c8:21:d3:d0:01:41:c8:29:
85:5e:3e:cf:2b:e1:16:d3:25:34:16:ae:b2:f4:ed:33:c1:1d:
db:0a:a0:fe:1a:f9:68:1d:f5:41:f7:0e:86:64:98:88:65:0f:
3e:f5:7b:88:11:9d:b3:ec:e7:7e:9a:dc:f4:25:65:21:e1:ef:
0d:47:1a:a7:d1:09:71:fa:d1:78:0e:54:4f:60:02:a9:a4:a5:
1f:ef:00:e5:92:22:21:85:a4:6a:ea:e6:80:22:59:81:2b:b4:
0c:12:7b:3a:d7:92:52:45:5b:8c:af:80:14:a9:46:91:89:a7:
7b:d2:17:61:5f:00:e2:8e:7f:25:cb:67:b3:63:7e:95:19:92:
e6:65:9d:fa:dc:70:ce:73:11:ac:a8:5c:cd:48:15:b5:f2:51:
83:10:e3:36:ca:13:ae:5d:48:30:3f:05:c5:05:be:92:2b:3d:
e4:95:46:01:89:54:52:10:82:ac:f9:06:f6:c7:9a:e7:94:91:
ae:d4:84:99:f2:36:b5:d9:97:da:f8:7d:4d:83:96:f4:b1:02:
71:62:3a:7d:20:a2:ba:e7:23:46:0c:10:4d:1b:5e:4d:32:05:
0d:1f:ee:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 00:39:15 2025 by rpki-client