Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/xXpsAgvp69tKmp3P5BE9YdiduAz2dBN8EWan1tVACbc/0/3137302e38332e38302e302f32322d3234203d3e20323633303236.roa
File: 3137302e38332e38302e302f32322d3234203d3e20323633303236.roa (raw, json)
Hash identifier: MtyoTQVPJw69EZK74Pp76k5GGTUKP27OYbGe3Dxp8Qs=
Subject key identifier: CE:99:9E:DD:31:97:15:4B:97:FD:87:EB:DF:8F:2D:37:FA:17:CF:22
Certificate issuer: /CN=3F50B1080599A7B91D805ADC9C3E7B90AE734736
Certificate serial: 1D96612EAB5C6A07D7690796080630A7454A27CB
Authority key identifier: 3F:50:B1:08:05:99:A7:B9:1D:80:5A:DC:9C:3E:7B:90:AE:73:47:36
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3F50B1080599A7B91D805ADC9C3E7B90AE734736.cer
Subject info access: rsync://rpki-repo.registro.br/repo/xXpsAgvp69tKmp3P5BE9YdiduAz2dBN8EWan1tVACbc/0/3137302e38332e38302e302f32322d3234203d3e20323633303236.roa
Signing time: Fri 03 Jan 2025 14:21:39 +0000
ROA not before: Fri 03 Jan 2025 14:16:39 +0000
ROA not after: Fri 02 Jan 2026 14:21:39 +0000
asID: 263026
IP address blocks: 170.83.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:96:61:2e:ab:5c:6a:07:d7:69:07:96:08:06:30:a7:45:4a:27:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F50B1080599A7B91D805ADC9C3E7B90AE734736
Validity
Not Before: Jan 3 14:16:39 2025 GMT
Not After : Jan 2 14:21:39 2026 GMT
Subject: CN=CE999EDD3197154B97FD87EBDF8F2D37FA17CF22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:2f:c1:ed:57:46:d5:9f:38:9d:2d:df:9f:
6a:5f:e9:44:61:43:3b:fa:c3:07:4e:47:02:af:20:
d3:9c:6e:eb:75:42:14:25:4c:ec:0e:3d:8a:50:a9:
37:32:eb:64:51:d2:1c:b8:5c:68:f1:f3:b0:9a:cb:
6c:13:fe:55:8f:0a:ee:48:3e:a7:91:f9:88:3c:7e:
8f:6b:86:aa:8a:48:fe:da:0c:ee:a2:cf:5c:e6:12:
36:a0:ed:04:cd:63:4e:c5:7a:bb:21:b5:6d:8b:a5:
01:07:1d:79:f5:d0:e8:a8:59:f2:65:b1:fc:67:07:
d1:fa:6e:02:40:9a:e6:1a:f5:5f:14:1f:70:c5:9e:
d3:ec:bb:fe:1e:74:35:2a:30:2f:32:e4:45:43:3b:
6a:eb:4e:75:3a:93:8f:1a:20:32:66:74:71:d2:cc:
2d:b7:3b:a7:d7:d4:b5:b5:c1:a5:39:5d:6d:30:9c:
33:c8:2d:56:85:e3:bd:3e:aa:1f:fa:60:b2:75:85:
ea:4d:b4:5b:5a:bd:8d:10:24:fc:8d:1c:52:33:0e:
de:06:58:98:e7:30:28:19:e8:ae:41:a6:49:89:57:
a6:28:d2:b4:78:c0:3f:a4:3e:11:95:63:e2:6f:c9:
74:57:ed:4a:86:33:81:f0:68:aa:6c:a7:f8:a5:7e:
f6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:99:9E:DD:31:97:15:4B:97:FD:87:EB:DF:8F:2D:37:FA:17:CF:22
X509v3 Authority Key Identifier:
keyid:3F:50:B1:08:05:99:A7:B9:1D:80:5A:DC:9C:3E:7B:90:AE:73:47:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/xXpsAgvp69tKmp3P5BE9YdiduAz2dBN8EWan1tVACbc/0/3F50B1080599A7B91D805ADC9C3E7B90AE734736.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3F50B1080599A7B91D805ADC9C3E7B90AE734736.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/xXpsAgvp69tKmp3P5BE9YdiduAz2dBN8EWan1tVACbc/0/3137302e38332e38302e302f32322d3234203d3e20323633303236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.80.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:b0:7f:a3:23:c9:8f:72:7b:94:08:06:99:c5:a9:6c:6d:93:
6d:aa:4b:72:06:c0:30:6f:61:5b:69:4a:bf:fe:99:76:48:48:
40:ea:75:4d:c7:a6:db:26:79:3a:91:a6:43:94:fe:04:6d:c6:
1a:7b:60:24:65:e4:5d:98:0f:66:41:5f:c5:8b:b5:8c:f8:a2:
6d:ed:f0:74:df:ee:fd:10:1d:1b:05:60:d0:71:ba:78:eb:ad:
c2:2b:12:3c:26:d2:57:57:0c:c8:2a:99:08:87:45:55:71:28:
28:c8:65:e1:c7:df:0d:c0:89:1f:aa:3e:09:52:60:a1:e3:84:
6b:17:e5:33:c4:71:be:6b:63:90:3b:e2:be:78:95:58:38:26:
ad:f1:e2:a1:a0:96:78:78:b5:72:63:aa:4f:07:f9:b3:21:cf:
d0:98:f3:3e:65:02:70:95:b2:50:c9:8a:7a:1a:b6:1e:d7:35:
ab:ad:de:c9:82:0b:d1:91:e1:91:34:d2:38:1a:94:d7:35:0f:
42:9b:a7:74:56:07:ba:c9:fe:2b:79:0e:78:f3:40:80:8f:92:
b1:a7:26:c2:d0:2f:94:a7:e4:5a:45:45:35:52:2d:97:18:67:
f9:b8:97:39:c2:c0:9c:7c:d8:5e:c8:92:4d:93:50:b6:cb:41:
4c:46:7a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:33:35 2025 by rpki-client