Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32332d3233203d3e203532383732.roa
File: 3136382e302e3233362e302f32332d3233203d3e203532383732.roa (raw, json)
Hash identifier: qSlI9uOqqJCW0gFRM8o57WG4jOxpTvhOxe1KixgLtBk=
Subject key identifier: 1D:62:3E:9F:22:FB:65:EC:10:34:CE:11:E9:15:6C:86:0F:59:27:CF
Certificate issuer: /CN=BFD60F81B153DBF24A19964DD2996A1F74DE57F7
Certificate serial: 05B58E909ACCA0970FAC35CAB8AB6F083A0D3E27
Authority key identifier: BF:D6:0F:81:B1:53:DB:F2:4A:19:96:4D:D2:99:6A:1F:74:DE:57:F7
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/BFD60F81B153DBF24A19964DD2996A1F74DE57F7.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32332d3233203d3e203532383732.roa
Signing time: Mon 13 Nov 2023 18:50:37 +0000
ROA not before: Mon 13 Nov 2023 18:45:37 +0000
ROA not after: Mon 11 Nov 2024 18:50:37 +0000
asID: 52872
IP address blocks: 168.0.236.0/23 maxlen: 23
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:b5:8e:90:9a:cc:a0:97:0f:ac:35:ca:b8:ab:6f:08:3a:0d:3e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFD60F81B153DBF24A19964DD2996A1F74DE57F7
Validity
Not Before: Nov 13 18:45:37 2023 GMT
Not After : Nov 11 18:50:37 2024 GMT
Subject: CN=1D623E9F22FB65EC1034CE11E9156C860F5927CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ed:4a:28:21:0c:2e:fc:f3:7f:f2:ad:cd:c6:
58:b4:ae:bd:82:75:32:7a:fd:25:be:48:f8:da:68:
25:fa:62:3a:d5:35:49:13:33:bd:89:3a:f2:e9:14:
9a:9a:e8:29:17:bc:79:d1:f8:df:5b:7d:49:b2:6f:
30:2c:d4:45:a1:31:54:a8:b1:46:6a:a2:e9:e1:a1:
ba:77:2b:93:28:8c:53:46:3b:12:96:ef:4f:ab:a3:
f8:f6:71:3e:24:ed:67:10:b4:ce:c7:56:d3:8e:0d:
36:c3:48:ae:2c:1d:24:26:fc:bf:3f:98:80:c2:de:
7f:6a:02:de:6b:0d:84:80:9e:96:2c:3e:aa:87:58:
c1:0c:f3:55:d1:45:d8:0e:70:73:f6:05:7a:3d:07:
d5:b9:00:67:6f:b5:11:a5:52:3f:ce:34:e4:db:53:
d0:0d:c7:48:ea:54:dc:4c:07:94:43:58:9d:6c:b4:
30:2c:f4:cd:71:8e:54:5d:53:ef:1b:df:16:8c:1d:
01:a3:ac:3d:1b:50:d4:12:95:8c:3a:49:f1:f6:15:
3e:d9:57:f3:35:f5:b2:2f:e8:0f:0b:c7:1a:b2:a2:
86:c3:8f:c5:23:c7:d8:b3:95:4f:f5:31:80:42:2b:
50:ef:33:67:d9:85:46:12:6d:83:75:92:a2:08:61:
9e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:62:3E:9F:22:FB:65:EC:10:34:CE:11:E9:15:6C:86:0F:59:27:CF
X509v3 Authority Key Identifier:
keyid:BF:D6:0F:81:B1:53:DB:F2:4A:19:96:4D:D2:99:6A:1F:74:DE:57:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/BFD60F81B153DBF24A19964DD2996A1F74DE57F7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/BFD60F81B153DBF24A19964DD2996A1F74DE57F7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32332d3233203d3e203532383732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.0.236.0/23
Signature Algorithm: sha256WithRSAEncryption
41:be:5b:8d:57:fc:ae:53:4d:1e:cf:9f:74:fa:14:61:56:6b:
8b:4d:aa:07:84:b8:dc:ec:0a:59:00:bb:71:95:57:9b:b8:a0:
ef:6a:be:9c:e1:cf:c5:b8:94:44:5b:70:9e:e5:4a:58:cb:c7:
42:43:51:62:69:b2:4d:80:84:bd:5e:bf:18:91:e0:d7:eb:07:
29:30:a0:7a:5a:86:90:10:77:14:e5:e4:5b:43:a4:a3:7c:07:
5f:c7:65:e4:ac:61:bf:45:78:bc:3a:d3:62:33:e5:95:f6:a1:
77:66:70:9c:23:75:2e:ca:86:97:70:1d:02:8f:0a:7a:d6:36:
2a:3d:01:ec:73:3d:3e:42:73:2b:70:06:7b:af:23:a9:74:85:
7a:5c:48:37:06:e4:f9:5e:f7:4c:54:33:6e:ce:5a:13:eb:d6:
f8:8c:40:c1:4e:55:ff:a3:30:b5:36:04:76:a3:31:2f:84:8c:
9b:0c:55:04:a1:34:06:2e:5e:23:61:d6:06:b8:75:c3:e4:61:
c8:8b:7e:ea:90:0b:1d:5e:40:7b:1e:60:c3:28:f7:d9:67:a7:
fa:da:c7:85:fd:ae:31:1a:5f:bc:12:a1:79:67:e1:7b:01:a9:
d5:a3:c5:f2:2c:20:10:89:5b:95:a4:75:8c:63:e4:dc:a6:38:
bf:86:fd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 11:51:10 2024 by rpki-client on console-fra.rpki-client.org