Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32322d3234203d3e20323636303636.roa
File: 34352e342e3132342e302f32322d3234203d3e20323636303636.roa (raw, json)
Hash identifier: jZN5qW8V1JFacw0cPrLOY2RMZ9s/589KystBK+fcVmM=
Subject key identifier: 4B:07:C0:15:EA:CE:CB:EB:9B:73:09:58:C1:5C:1B:42:0E:71:93:DA
Certificate issuer: /CN=D976D8643DDAC04E9DF4107DC27106249788AF8F
Certificate serial: 7F9A794DAC67AF6A4A7EC283641BBD4A61E591E4
Authority key identifier: D9:76:D8:64:3D:DA:C0:4E:9D:F4:10:7D:C2:71:06:24:97:88:AF:8F
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32322d3234203d3e20323636303636.roa
Signing time: Sat 18 Nov 2023 00:15:57 +0000
ROA not before: Sat 18 Nov 2023 00:10:57 +0000
ROA not after: Sat 16 Nov 2024 00:15:57 +0000
asID: 266066
IP address blocks: 45.4.124.0/22 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:9a:79:4d:ac:67:af:6a:4a:7e:c2:83:64:1b:bd:4a:61:e5:91:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D976D8643DDAC04E9DF4107DC27106249788AF8F
Validity
Not Before: Nov 18 00:10:57 2023 GMT
Not After : Nov 16 00:15:57 2024 GMT
Subject: CN=4B07C015EACECBEB9B730958C15C1B420E7193DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8d:bc:ce:88:fe:8b:56:9e:a4:f8:ed:44:e1:
52:ff:3b:f4:63:18:e8:ff:76:f2:95:2a:36:6e:49:
e4:f0:f2:9a:f3:b7:09:9d:ca:e7:b2:08:ae:2a:f8:
8c:9b:0b:1a:d2:e6:c8:83:47:a0:95:c7:63:68:c7:
9e:d2:7d:7a:b2:eb:8b:5d:b8:85:a2:01:9a:fe:61:
f0:f5:df:71:66:7b:cb:a9:09:d7:2d:85:c1:17:e8:
48:75:df:43:8a:fe:98:ff:16:7e:ee:9f:ec:c5:aa:
c6:79:88:0f:10:58:5b:28:9e:d8:72:e3:ae:28:82:
50:c7:46:0b:63:31:4b:fa:86:21:9d:fa:3f:5d:dd:
2c:b5:97:11:34:bd:de:1b:72:4e:a4:3e:c2:88:c4:
4a:50:c2:68:ab:49:60:8e:69:ee:71:ea:a0:7a:8f:
fc:e6:9a:a5:b9:1d:f4:26:46:ff:c2:86:84:ca:6b:
27:c0:63:e4:32:fb:99:41:1c:77:76:dd:b2:78:93:
af:14:d2:13:2f:52:e9:bd:47:54:5c:d2:14:86:49:
ab:20:97:1e:75:2b:2d:16:67:d3:ec:b8:bf:9e:c1:
0e:05:48:a4:fb:0a:a3:af:e1:e2:b1:87:85:ac:50:
70:a6:82:bf:e6:31:c7:69:84:cd:91:c5:67:aa:21:
72:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:07:C0:15:EA:CE:CB:EB:9B:73:09:58:C1:5C:1B:42:0E:71:93:DA
X509v3 Authority Key Identifier:
keyid:D9:76:D8:64:3D:DA:C0:4E:9D:F4:10:7D:C2:71:06:24:97:88:AF:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/D976D8643DDAC04E9DF4107DC27106249788AF8F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BMCWXPuxCwAcELbtz8XwMzNHiih3cGwePSmHXgAzB96w/0/34352e342e3132342e302f32322d3234203d3e20323636303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:0a:ef:66:1c:ae:f3:54:66:d2:32:b3:3b:da:2e:00:07:40:
d9:f0:6e:2f:c7:c6:9b:24:5a:6e:22:e1:d6:82:f7:80:55:a0:
2c:94:5e:63:dc:75:ff:32:72:c4:1b:30:ac:42:70:47:91:b3:
52:5d:0a:de:4b:55:46:c5:a6:e1:f6:83:f8:19:67:32:50:ac:
35:5a:bd:59:9f:47:4c:3d:28:b0:ec:b6:be:94:e7:68:2c:c6:
0c:05:9f:c3:14:a2:75:fd:1b:5c:d0:7a:2e:0d:e3:be:6b:b5:
8f:49:7f:70:a9:a2:55:21:6a:bd:42:b3:5d:ee:a8:3c:41:81:
6d:35:ae:64:a5:97:74:17:b8:c0:21:dc:0d:11:c5:6d:e9:c7:
e7:7d:15:63:52:81:6a:1d:26:67:e5:b8:1f:f4:f8:e0:0a:e2:
f1:31:71:b7:ab:d3:9f:c7:e8:ee:ab:be:a5:c5:e5:97:00:00:
8c:8d:4e:3a:59:7c:ac:4a:31:e6:ca:81:83:16:6d:e9:4e:b8:
86:c9:8d:40:d7:5b:b1:29:0e:0c:5b:55:52:b5:1b:08:ff:84:
ed:1b:f3:71:4a:d6:2e:d0:92:8f:23:e9:47:c6:f4:24:a3:37:
93:a4:27:50:59:a4:67:62:10:24:a9:7b:71:09:ac:19:c8:69:
67:c1:80:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 12 05:38:22 2024 by rpki-client on console-fra.rpki-client.org