Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/3137302e38322e35362e302f32322d3234203d3e203238363637.roa
File: 3137302e38322e35362e302f32322d3234203d3e203238363637.roa (raw, json)
Hash identifier: MYB8VZxYb8WSBIpNFA+fe0gnUQFl8FZdCYlLNFuC17o=
Subject key identifier: 49:F6:7B:61:C7:38:81:91:F4:43:4A:0D:2E:DE:44:BE:DA:BC:29:44
Certificate issuer: /CN=9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3
Certificate serial: 428E89B3F894CFFF92CF702B03226BB870C9B33F
Authority key identifier: 9C:0B:4F:E2:8E:0B:B8:DF:CB:32:FF:27:FD:74:EE:DE:F3:63:42:D3
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/3137302e38322e35362e302f32322d3234203d3e203238363637.roa
Signing time: Fri 03 May 2024 20:09:10 +0000
ROA not before: Fri 03 May 2024 20:04:10 +0000
ROA not after: Fri 02 May 2025 20:09:10 +0000
asID: 28667
IP address blocks: 170.82.56.0/22 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:8e:89:b3:f8:94:cf:ff:92:cf:70:2b:03:22:6b:b8:70:c9:b3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3
Validity
Not Before: May 3 20:04:10 2024 GMT
Not After : May 2 20:09:10 2025 GMT
Subject: CN=49F67B61C7388191F4434A0D2EDE44BEDABC2944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:93:bf:93:71:80:bc:9c:35:65:67:66:18:7c:
41:d1:1e:a0:30:81:1b:55:b6:8d:64:1e:b1:b9:32:
e0:b7:6e:c4:f4:5b:1d:2f:48:c1:b8:ac:0d:c0:1e:
96:7d:ed:7f:24:83:ec:f2:80:85:d2:15:c4:2e:0d:
36:9c:64:d0:08:64:33:5c:d6:6e:a6:69:6b:96:b4:
e4:08:3c:a6:2f:2f:ac:0b:0a:c1:22:98:fe:f9:ac:
ce:48:36:53:78:86:e0:14:85:e5:c2:6c:4d:df:7f:
bb:dd:26:f2:00:80:49:75:cf:c7:9a:a2:6d:ca:9e:
cd:89:57:07:c8:b8:0f:df:3d:c6:0b:b0:1e:e0:2b:
eb:20:7a:d1:f8:b4:b4:0d:7d:fd:4e:5e:c3:c3:b4:
dc:9f:f6:e8:7e:69:65:d3:18:06:6f:3d:e5:7c:de:
5d:07:9c:dc:91:1f:7f:60:56:6b:05:4b:7c:93:b6:
a2:21:63:4c:a5:59:82:65:90:58:59:10:62:56:4b:
80:ad:9e:da:dc:88:46:87:a1:5a:62:04:e9:3d:c6:
34:53:9a:da:d2:07:77:b2:ee:06:ed:61:87:df:17:
01:e6:03:ee:74:0b:1c:a0:90:b6:59:b4:84:a4:fb:
5a:45:49:ef:0b:7d:11:19:a8:51:a4:d3:d5:94:82:
a7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F6:7B:61:C7:38:81:91:F4:43:4A:0D:2E:DE:44:BE:DA:BC:29:44
X509v3 Authority Key Identifier:
keyid:9C:0B:4F:E2:8E:0B:B8:DF:CB:32:FF:27:FD:74:EE:DE:F3:63:42:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9C0B4FE28E0BB8DFCB32FF27FD74EEDEF36342D3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DaFywqLKtZfEYLU6fmSyQiWc4SWjU4QE4R4SJBjQxN8h/0/3137302e38322e35362e302f32322d3234203d3e203238363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.56.0/22
Signature Algorithm: sha256WithRSAEncryption
71:08:21:d2:40:d0:1e:af:a5:35:5f:41:5f:0a:92:b2:76:f0:
0e:e3:a1:b4:90:6b:f6:b9:39:02:47:a4:6e:3d:76:0a:46:5d:
62:f6:61:e0:bb:7f:10:83:09:62:88:7c:3d:cd:fd:2c:42:26:
c0:35:bb:4a:bc:9e:c8:85:a4:53:d8:57:53:1e:93:51:f7:c6:
03:4e:49:73:f0:31:6c:3f:c4:1e:0a:a4:fa:e2:14:bd:b9:3e:
f6:a8:75:a0:b5:f5:47:c3:b2:86:e9:af:96:5b:5f:ac:89:12:
39:b0:39:3e:2f:85:4d:20:c4:85:f9:e9:67:77:8f:b3:0a:e9:
77:d9:e9:78:0f:8c:b3:ea:2c:cb:38:10:bc:cd:95:0f:5e:bd:
96:00:b0:0f:12:37:34:b9:5d:14:22:2b:71:ae:9b:41:1e:9d:
b0:9c:cd:77:e7:cb:96:81:65:93:5e:69:bf:2f:39:13:ba:04:
f2:a0:10:1f:4e:43:ea:91:51:fd:44:ab:d1:0a:ef:a7:37:92:
f5:39:0e:ae:c6:08:3c:f4:15:0c:a3:0f:db:7f:45:9f:b2:ac:
e6:c2:9b:a4:3a:23:77:9e:6f:5e:cd:68:2f:2c:95:d8:32:32:
b4:40:98:9a:0b:0a:f2:13:e8:f6:82:5d:73:88:79:d7:0c:b0:
e7:b3:44:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 30 10:55:50 2024 by rpki-client on console-fra.rpki-client.org