Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/34352e3137312e3232382e302f32342d3234203d3e20323638373436.roa
File: 34352e3137312e3232382e302f32342d3234203d3e20323638373436.roa (raw, json)
Hash identifier: lXoe4kNQzQM+JySHTmi8DKXmLphUbmgJVxkhER4ciMY=
Subject key identifier: 61:34:CB:42:12:0D:29:FD:30:DC:A2:79:F2:28:7B:C7:96:E7:B2:56
Certificate issuer: /CN=E06071166208659C852E797F8525D625D8FA07FC
Certificate serial: 31CA5252ED7F5D001E1F5CF9F30AA6CF25B664
Authority key identifier: E0:60:71:16:62:08:65:9C:85:2E:79:7F:85:25:D6:25:D8:FA:07:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E06071166208659C852E797F8525D625D8FA07FC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/34352e3137312e3232382e302f32342d3234203d3e20323638373436.roa
Signing time: Mon 07 Apr 2025 21:14:54 +0000
ROA not before: Mon 07 Apr 2025 21:09:54 +0000
ROA not after: Mon 06 Apr 2026 21:14:54 +0000
asID: 268746
IP address blocks: 45.171.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/E06071166208659C852E797F8525D625D8FA07FC.crl
rsync://rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/E06071166208659C852E797F8525D625D8FA07FC.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E06071166208659C852E797F8525D625D8FA07FC.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 04:03:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ca:52:52:ed:7f:5d:00:1e:1f:5c:f9:f3:0a:a6:cf:25:b6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E06071166208659C852E797F8525D625D8FA07FC
Validity
Not Before: Apr 7 21:09:54 2025 GMT
Not After : Apr 6 21:14:54 2026 GMT
Subject: CN=6134CB42120D29FD30DCA279F2287BC796E7B256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7e:72:16:12:7d:43:a9:f2:d7:ea:69:ba:27:
d2:52:5b:a9:01:12:64:45:97:f2:b1:ef:6f:fe:86:
ba:65:0a:0c:b7:ca:db:9b:44:52:ca:3a:3c:54:98:
24:ce:63:f8:28:fc:94:7f:41:b3:bf:2d:b7:4d:6c:
9b:13:fd:59:97:06:66:e2:58:ca:a8:6f:98:5e:84:
da:e7:ed:39:6f:69:41:a6:ac:0c:a5:53:35:1d:78:
3a:a4:3e:01:23:85:79:29:1e:39:8e:f6:72:d0:5f:
d6:4f:e4:20:03:45:0b:60:0a:3f:5c:0b:ac:c4:aa:
82:67:fc:71:54:46:0b:8f:e0:11:f6:e4:10:62:79:
c2:62:7f:89:08:24:48:83:c5:99:35:78:09:07:17:
3a:47:81:c3:4e:f4:35:a1:81:75:39:57:b3:48:fb:
75:e3:3d:37:c1:02:4a:e7:36:07:fd:a4:60:7e:ee:
a3:84:cd:60:c2:33:13:b2:33:2b:e6:fd:a4:44:3e:
c3:66:c7:13:e2:0d:ba:eb:da:b5:68:d9:d7:c6:46:
4a:5f:59:b8:35:2c:29:fc:c8:5b:98:14:12:6b:c5:
87:e9:f8:43:ec:2e:81:33:5e:14:0a:6c:a8:e0:42:
ae:59:04:c8:72:b1:d0:b6:d2:ae:ea:3e:9d:b1:6b:
2a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:34:CB:42:12:0D:29:FD:30:DC:A2:79:F2:28:7B:C7:96:E7:B2:56
X509v3 Authority Key Identifier:
keyid:E0:60:71:16:62:08:65:9C:85:2E:79:7F:85:25:D6:25:D8:FA:07:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/E06071166208659C852E797F8525D625D8FA07FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E06071166208659C852E797F8525D625D8FA07FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/sQoVXD3vwPhHETfDm3R6Z3KpEFeVN8FWpnwapiAKCys/0/34352e3137312e3232382e302f32342d3234203d3e20323638373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.171.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:c3:9d:0c:9d:cb:91:a0:60:87:1a:c0:14:c5:12:24:d2:a6:
93:c1:7f:04:16:57:c5:b4:d3:b4:ce:4c:de:9c:3b:d1:c3:b7:
85:fc:f1:5a:35:3e:9e:fb:e7:7b:93:6b:19:93:52:c7:c5:6e:
2e:07:33:a0:60:3c:0a:9a:00:15:6c:a9:34:06:02:5d:fe:d6:
b3:39:9b:d3:37:ce:3a:d9:8d:b2:00:55:9e:cc:b1:18:32:0d:
e8:01:c9:d3:21:e4:59:b7:12:fd:0d:55:2f:62:4c:9e:2f:bf:
b4:44:e7:1b:16:ae:e9:5c:60:e2:c2:92:8c:0b:46:dc:47:eb:
2d:c2:56:d8:97:f0:ff:55:c1:5f:f2:6e:a6:99:85:7f:28:10:
36:a2:30:42:8a:1c:fe:d1:05:17:3f:4c:06:f7:a6:fe:a0:73:
96:cc:61:46:72:05:b7:31:9e:7f:05:e4:c9:f9:62:14:d0:3a:
e5:6e:90:85:38:c5:dc:2b:71:72:a2:e7:93:cf:c3:fc:ad:05:
d6:3c:19:72:93:54:2c:73:d3:af:ce:6d:c1:ea:25:16:aa:7a:
c9:bb:5f:b1:8a:2b:f7:ec:d5:4c:69:ea:56:40:d7:30:6e:d3:
d3:e6:81:79:5d:0a:fd:8f:1e:8a:eb:b7:af:c3:f8:e3:b6:ee:
cf:ab:31:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:09:36 2025 by rpki-client