Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32332d3233203d3e20323634333031.roa
File: 3133382e3132312e3139362e302f32332d3233203d3e20323634333031.roa (raw, json)
Hash identifier: cdW9UyaMHehp+WEl7H0GF424gvPpSh+rmA58f5ZbVb4=
Subject key identifier: FF:88:C7:F9:96:CC:85:5B:3C:21:5C:6C:9B:95:81:A5:5E:D8:B6:F8
Certificate issuer: /CN=8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B
Certificate serial: 5734663CBCDDA641613F1D9D399DDF2F8B460A4C
Authority key identifier: 8B:E6:51:CB:0C:FD:9D:3B:1C:7B:C9:48:3B:51:70:67:2B:77:ED:4B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32332d3233203d3e20323634333031.roa
Signing time: Sat 14 Sep 2024 14:09:21 +0000
ROA not before: Sat 14 Sep 2024 14:04:21 +0000
ROA not after: Sat 13 Sep 2025 14:09:21 +0000
asID: 264301
IP address blocks: 138.121.196.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 24 Mar 2025 18:12:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:34:66:3c:bc:dd:a6:41:61:3f:1d:9d:39:9d:df:2f:8b:46:0a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B
Validity
Not Before: Sep 14 14:04:21 2024 GMT
Not After : Sep 13 14:09:21 2025 GMT
Subject: CN=FF88C7F996CC855B3C215C6C9B9581A55ED8B6F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c4:77:d9:3c:2c:8b:d5:69:be:dc:b4:9a:bf:
8e:c9:1c:12:2c:e7:91:f7:37:91:df:99:0f:f0:56:
c8:80:63:9a:8f:16:30:db:71:58:6f:c3:06:43:6d:
6b:a7:92:2b:16:26:45:dc:27:42:99:77:cc:2d:16:
58:c0:69:c6:e3:3d:d1:c0:dc:1d:10:16:64:23:b7:
75:f2:b5:b2:33:e4:72:18:47:89:a0:2d:82:37:27:
cf:06:06:1e:7e:a3:36:b5:67:c4:71:4a:0e:d7:90:
0e:0f:ae:7a:09:71:14:63:0c:fc:23:f3:bc:cc:d3:
94:f1:23:ad:88:b5:d0:84:ef:d8:27:57:57:06:ff:
69:02:f9:87:a5:4d:40:84:de:b5:e3:fe:0d:ce:3f:
0b:54:8e:36:6a:d6:eb:93:bc:8e:ea:6f:1e:ab:e5:
d4:f4:46:02:59:61:d2:9c:5c:e0:93:41:d0:7e:27:
83:63:bf:38:4a:b6:f3:41:bb:3f:11:25:f4:4f:7b:
a7:7c:a1:13:b2:8a:78:2e:ef:4d:06:a5:dd:f0:ff:
88:44:61:41:5c:a5:8e:7e:b4:21:a3:34:e3:59:f7:
ae:de:7c:1e:4f:bf:57:72:68:7f:42:f6:cc:50:72:
4a:c8:2a:c6:ee:a5:8e:65:7a:8d:7d:ad:d3:d4:ba:
d5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:88:C7:F9:96:CC:85:5B:3C:21:5C:6C:9B:95:81:A5:5E:D8:B6:F8
X509v3 Authority Key Identifier:
keyid:8B:E6:51:CB:0C:FD:9D:3B:1C:7B:C9:48:3B:51:70:67:2B:77:ED:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32332d3233203d3e20323634333031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.196.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:c5:c1:49:80:8a:98:ef:f5:42:0a:ab:d0:f5:43:5c:e8:0c:
51:ae:b1:d3:65:dd:4e:2a:e6:8b:79:23:d2:f8:21:ce:53:06:
e3:2c:86:01:9b:af:f8:13:e4:3b:d8:84:f1:88:ec:50:de:fb:
86:38:5d:53:44:d5:c4:fd:09:d4:3a:26:7d:35:4e:a4:de:a2:
ed:a0:4b:98:87:9a:2b:39:ef:d2:08:23:07:b7:a2:57:3d:83:
aa:d7:5b:9a:69:7f:9c:1d:5d:43:44:13:29:ea:3b:2c:06:2f:
f0:e4:93:15:e3:2d:74:1a:13:a4:9f:18:fb:da:ff:d7:47:b2:
b3:d6:ef:2b:ce:19:e8:fa:16:c6:92:61:08:4b:27:c0:5e:eb:
28:05:43:b9:e4:9f:35:9b:17:54:19:2b:63:dc:6f:3b:dd:fe:
df:5c:c4:cf:1c:08:2b:d5:91:51:26:3f:f8:bd:02:63:3c:15:
a3:71:23:b1:27:91:51:2a:38:70:4c:3b:3d:71:fc:0c:30:26:
f6:42:ec:4b:c1:e1:f3:3f:e1:81:17:2b:f8:e7:27:90:71:10:
7a:f4:88:20:43:3a:3f:d3:70:0e:91:64:d9:26:06:0e:12:0d:
07:e5:71:e0:ac:eb:29:cd:c2:3d:3b:47:3f:10:fe:ef:89:67:
1c:75:05:d2
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUVzRmPLzdpkFhPx2dOZ3fL4tGCkwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEJFNjUxQ0IwQ0ZEOUQzQjFDN0JDOTQ4M0I1MTcwNjcy
Qjc3RUQ0QjAeFw0yNDA5MTQxNDA0MjFaFw0yNTA5MTMxNDA5MjFaMDMxMTAvBgNV
BAMTKEZGODhDN0Y5OTZDQzg1NUIzQzIxNUM2QzlCOTU4MUE1NUVEOEI2RjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoxHfZPCyL1Wm+3LSav47JHBIs
55H3N5HfmQ/wVsiAY5qPFjDbcVhvwwZDbWunkisWJkXcJ0KZd8wtFljAacbjPdHA
3B0QFmQjt3XytbIz5HIYR4mgLYI3J88GBh5+oza1Z8RxSg7XkA4PrnoJcRRjDPwj
87zM05TxI62ItdCE79gnV1cG/2kC+YelTUCE3rXj/g3OPwtUjjZq1uuTvI7qbx6r
5dT0RgJZYdKcXOCTQdB+J4NjvzhKtvNBuz8RJfRPe6d8oROyingu700Gpd3w/4hE
YUFcpY5+tCGjNONZ967efB5Pv1dyaH9C9sxQckrIKsbupY5leo19rdPUutUXAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQU/4jH+ZbMhVs8IVxsm5WBpV7YtvgwHwYDVR0j
BBgwFoAUi+ZRywz9nTsce8lIO1FwZyt37UswDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMkFINHQ0RmI5QkNodE5EeEh6V0pYWDl1dkpaZlBkd1FDZk5OV1h4aUx3
ZzgvMC84QkU2NTFDQjBDRkQ5RDNCMUM3QkM5NDgzQjUxNzA2NzJCNzdFRDRCLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhCRTY1MUNCMENGRDlEM0Ix
QzdCQzk0ODNCNTE3MDY3MkI3N0VENEIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJBSDR0NEZiOUJDaHRORHhIeldKWFg5dXZKWmZQZHdRQ2ZOTldYeGlMd2c4LzAv
MzEzMzM4MmUzMTMyMzEyZTMxMzkzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy
MzYzNDMzMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAYp5xDANBgkqhkiG9w0BAQsFAAOCAQEAfcXB
SYCKmO/1Qgqr0PVDXOgMUa6x02XdTirmi3kj0vghzlMG4yyGAZuv+BPkO9iE8Yjs
UN77hjhdU0TVxP0J1DomfTVOpN6i7aBLmIeaKznv0ggjB7eiVz2Dqtdbmml/nB1d
Q0QTKeo7LAYv8OSTFeMtdBoTpJ8Y+9r/10eys9bvK84Z6PoWxpJhCEsnwF7rKAVD
ueSfNZsXVBkrY9xvO93+31zEzxwIK9WRUSY/+L0CYzwVo3EjsSeRUSo4cEw7PXH8
DDAm9kLsS8Hh8z/hgRcr+OcnkHEQevSIIEM6P9NwDpFk2SYGDhINB+Vx4KzrKc3C
PTtHPxD+74lnHHUF0g==
-----END CERTIFICATE-----
Generated at Fri Apr 11 22:19:39 2025 by rpki-client