Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/323830343a316634633a3a2f33322d3430203d3e20323639313735.roa
File: 323830343a316634633a3a2f33322d3430203d3e20323639313735.roa (raw, json)
Hash identifier: Pzo/UzUQJmln17lcQNzNbYPlufRfMNuffc6rKlJVDYA=
Subject key identifier: 5D:E5:F8:02:EC:1E:7A:48:E4:3F:6A:73:55:1D:4C:9E:22:D6:8B:13
Certificate issuer: /CN=D402AAFBAE178D53D194E6E1C2D54048BE15B08E
Certificate serial: 3303DC322EB2A2B305D59C9B046F9DAAA33CA21E
Authority key identifier: D4:02:AA:FB:AE:17:8D:53:D1:94:E6:E1:C2:D5:40:48:BE:15:B0:8E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/323830343a316634633a3a2f33322d3430203d3e20323639313735.roa
Signing time: Thu 13 Jul 2023 12:00:00 +0000
ROA not before: Thu 13 Jul 2023 11:55:00 +0000
ROA not after: Thu 11 Jul 2024 12:00:00 +0000
asID: 269175
IP address blocks: 2804:1f4c::/32 maxlen: 40
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.crl
rsync://rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/0/EE917EBC7A158783B44BC6ED82217434F28ADEFB.mft
rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fd25c9bb7e5cac7419fa9193770f64a6edf20c19.cer
rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 10 Jan 2024 05:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:03:dc:32:2e:b2:a2:b3:05:d5:9c:9b:04:6f:9d:aa:a3:3c:a2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D402AAFBAE178D53D194E6E1C2D54048BE15B08E
Validity
Not Before: Jul 13 11:55:00 2023 GMT
Not After : Jul 11 12:00:00 2024 GMT
Subject: CN=3082010A0282010100F5A8FD46BAE9C8C8F5DA26C7404C4C444526B4AEF6F523DFAAA459A63B0C41CF6D23D9472DCD0D335813DACCCA4120235482555E61DC38A000A5B9488BAE03F7A62117CFCD07B956A9F4C4AB3B18739C3F7CC88F6BA515B2866B2FC4DA193D647C1658748887382589D897BF02C04BCF53B362F6609BC80A7DF556775B3ACBDA8472E4A21645B37078C58BF9298D31A4142ADAABFF4A75C7581E1048633273E11A48E623FDD66DC58A5A5D67EC22208B3C7A44E68800D96E2E547D0115894895A8EBD832329E439A0269B437FBA91A19DF5443B83E94ED2410A4309E35B1741ADB5CF54F1047345838CA59C03EACE32A9B3EB2E30AA930188742514CE66E2D890203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a8:fd:46:ba:e9:c8:c8:f5:da:26:c7:40:4c:
4c:44:45:26:b4:ae:f6:f5:23:df:aa:a4:59:a6:3b:
0c:41:cf:6d:23:d9:47:2d:cd:0d:33:58:13:da:cc:
ca:41:20:23:54:82:55:5e:61:dc:38:a0:00:a5:b9:
48:8b:ae:03:f7:a6:21:17:cf:cd:07:b9:56:a9:f4:
c4:ab:3b:18:73:9c:3f:7c:c8:8f:6b:a5:15:b2:86:
6b:2f:c4:da:19:3d:64:7c:16:58:74:88:87:38:25:
89:d8:97:bf:02:c0:4b:cf:53:b3:62:f6:60:9b:c8:
0a:7d:f5:56:77:5b:3a:cb:da:84:72:e4:a2:16:45:
b3:70:78:c5:8b:f9:29:8d:31:a4:14:2a:da:ab:ff:
4a:75:c7:58:1e:10:48:63:32:73:e1:1a:48:e6:23:
fd:d6:6d:c5:8a:5a:5d:67:ec:22:20:8b:3c:7a:44:
e6:88:00:d9:6e:2e:54:7d:01:15:89:48:95:a8:eb:
d8:32:32:9e:43:9a:02:69:b4:37:fb:a9:1a:19:df:
54:43:b8:3e:94:ed:24:10:a4:30:9e:35:b1:74:1a:
db:5c:f5:4f:10:47:34:58:38:ca:59:c0:3e:ac:e3:
2a:9b:3e:b2:e3:0a:a9:30:18:87:42:51:4c:e6:6e:
2d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E5:F8:02:EC:1E:7A:48:E4:3F:6A:73:55:1D:4C:9E:22:D6:8B:13
X509v3 Authority Key Identifier:
keyid:D4:02:AA:FB:AE:17:8D:53:D1:94:E6:E1:C2:D5:40:48:BE:15:B0:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D402AAFBAE178D53D194E6E1C2D54048BE15B08E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4GtEY61VzbXM3sSXnt9cWLAZeLKpb7bJH9jt1kwZLjtH/0/323830343a316634633a3a2f33322d3430203d3e20323639313735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1f4c::/32
Signature Algorithm: sha256WithRSAEncryption
13:18:2c:5b:96:0d:28:c8:06:e0:93:a4:cc:16:ab:77:63:a5:
d6:b2:1c:44:ab:a0:cb:7a:2e:79:55:35:93:3d:71:41:39:e6:
37:b6:38:89:ec:8e:9a:13:0d:28:26:0d:9a:36:55:f0:26:76:
c7:93:23:8a:02:a9:6f:65:a6:9a:7a:8a:74:6b:28:45:6f:eb:
16:4a:af:30:09:ec:56:a9:b0:2f:6a:40:52:a2:db:c0:88:43:
fc:b2:68:1c:1c:c9:d2:44:b7:99:25:d5:1d:97:1f:63:93:3d:
69:1f:a2:60:2e:43:f7:e5:a1:7a:23:8d:92:5b:e9:06:75:16:
0c:ca:7a:29:2d:b4:12:3d:13:01:d0:60:0b:02:58:c4:92:33:
b9:01:ce:04:51:55:11:3c:eb:1f:ff:6b:90:ef:fa:65:3b:95:
ac:28:00:2f:e6:e2:2f:f7:4e:bd:db:04:6c:7b:59:a0:64:49:
a0:43:dd:af:04:41:e0:29:c5:bf:a4:0d:24:41:11:f7:0a:87:
e7:23:83:22:fd:c7:f3:09:e7:a9:8e:a2:08:36:4d:d3:4a:29:
ea:5f:b2:cb:a9:a0:05:1c:7f:b9:ef:49:76:2c:f8:ff:bf:4c:
26:a4:85:68:2b:88:de:4c:5e:48:31:8b:42:4f:94:3d:16:9a:
44:da:af:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 07:51:19 2024 by rpki-client on console.sobornost.net