Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2Di78tu3WjKbkfichUXJJmWs2LNBF8A1cw1TyvHL1fs3/0/AS28640.roa
File: AS28640.roa (raw, json)
Hash identifier: XK02ejJU6uY5zux70avck/P7jTGtEXRtJI287Z6mjEg=
Subject key identifier: 61:D3:1A:D1:88:16:A4:C9:A3:B9:90:32:94:91:02:9C:2B:86:65:88
Certificate issuer: /CN=AE99472A810991844BAB99BFAFE3733A748E8150
Certificate serial: 02751BE7BF2D4185D311EF5579EF2490D8A61173
Authority key identifier: AE:99:47:2A:81:09:91:84:4B:AB:99:BF:AF:E3:73:3A:74:8E:81:50
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AE99472A810991844BAB99BFAFE3733A748E8150.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2Di78tu3WjKbkfichUXJJmWs2LNBF8A1cw1TyvHL1fs3/0/AS28640.roa
Signing time: Tue 05 Sep 2023 18:39:32 +0000
ROA not before: Tue 05 Sep 2023 18:34:32 +0000
ROA not after: Tue 03 Sep 2024 18:39:32 +0000
asID: 28640
IP address blocks: 177.104.128.0/23 maxlen: 23
177.104.130.0/23 maxlen: 23
177.104.132.0/22 maxlen: 22
177.104.132.0/23 maxlen: 23
177.104.134.0/23 maxlen: 23
177.104.136.0/22 maxlen: 22
177.104.136.0/23 maxlen: 23
177.104.138.0/23 maxlen: 23
177.104.140.0/22 maxlen: 22
177.104.140.0/23 maxlen: 23
177.104.140.0/24 maxlen: 24
177.104.142.0/23 maxlen: 23
177.104.144.0/22 maxlen: 22
177.104.144.0/23 maxlen: 23
177.104.146.0/23 maxlen: 23
177.104.148.0/22 maxlen: 22
177.104.148.0/23 maxlen: 23
177.104.150.0/23 maxlen: 23
177.104.152.0/23 maxlen: 23
177.104.154.0/23 maxlen: 23
177.104.156.0/22 maxlen: 22
177.104.156.0/23 maxlen: 23
177.104.158.0/23 maxlen: 23
177.104.160.0/23 maxlen: 23
177.104.162.0/23 maxlen: 23
177.104.164.0/23 maxlen: 23
177.104.166.0/23 maxlen: 23
177.104.168.0/22 maxlen: 22
177.104.168.0/23 maxlen: 23
177.104.170.0/23 maxlen: 23
177.104.172.0/22 maxlen: 22
177.104.172.0/23 maxlen: 23
177.104.174.0/23 maxlen: 23
177.104.176.0/22 maxlen: 22
177.104.176.0/23 maxlen: 23
177.104.178.0/23 maxlen: 23
177.104.180.0/23 maxlen: 23
177.104.183.0/24 maxlen: 24
177.104.184.0/23 maxlen: 23
177.104.184.0/24 maxlen: 24
177.104.185.0/24 maxlen: 24
177.104.187.0/24 maxlen: 24
177.104.188.0/22 maxlen: 22
177.104.188.0/23 maxlen: 23
177.104.190.0/23 maxlen: 23
189.51.64.0/21 maxlen: 21
189.51.64.0/22 maxlen: 22
189.51.68.0/22 maxlen: 22
189.51.72.0/21 maxlen: 21
189.51.72.0/22 maxlen: 22
189.51.76.0/22 maxlen: 22
189.51.80.0/21 maxlen: 21
189.51.80.0/22 maxlen: 22
189.51.84.0/22 maxlen: 22
201.33.112.0/22 maxlen: 22
201.33.112.0/23 maxlen: 23
201.33.114.0/23 maxlen: 23
201.33.116.0/22 maxlen: 22
201.33.116.0/23 maxlen: 23
201.33.118.0/23 maxlen: 23
201.33.120.0/22 maxlen: 22
201.33.120.0/23 maxlen: 23
201.33.122.0/23 maxlen: 23
201.33.124.0/22 maxlen: 22
201.33.124.0/23 maxlen: 23
201.33.126.0/23 maxlen: 23
201.71.224.0/22 maxlen: 22
201.71.224.0/23 maxlen: 23
201.71.226.0/23 maxlen: 23
201.71.228.0/22 maxlen: 22
201.71.228.0/23 maxlen: 23
201.71.230.0/23 maxlen: 23
201.71.232.0/22 maxlen: 22
201.71.232.0/23 maxlen: 23
201.71.234.0/23 maxlen: 23
201.71.236.0/22 maxlen: 22
201.71.236.0/23 maxlen: 23
201.71.238.0/23 maxlen: 23
2001:1288::/34 maxlen: 34
2001:1288::/35 maxlen: 35
2001:1288:2000::/35 maxlen: 35
2001:1288:4000::/34 maxlen: 34
2001:1288:4000::/35 maxlen: 35
2001:1288:6000::/35 maxlen: 35
2001:1288:8000::/34 maxlen: 34
2001:1288:8000::/35 maxlen: 35
2001:1288:a000::/35 maxlen: 35
2001:1288:c000::/34 maxlen: 34
2001:1288:c000::/35 maxlen: 35
2001:1288:e000::/35 maxlen: 35
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:75:1b:e7:bf:2d:41:85:d3:11:ef:55:79:ef:24:90:d8:a6:11:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AE99472A810991844BAB99BFAFE3733A748E8150
Validity
Not Before: Sep 5 18:34:32 2023 GMT
Not After : Sep 3 18:39:32 2024 GMT
Subject: CN=61D31AD18816A4C9A3B990329491029C2B866588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5b:18:6e:86:49:54:73:98:3e:ff:94:4e:75:
c3:7a:d8:0f:28:10:36:81:39:8d:bf:09:f7:b8:87:
13:ac:f1:2f:5e:84:e9:dc:20:2e:40:55:09:1e:da:
ed:6d:c0:a3:da:ab:05:01:78:d9:01:42:74:bd:fc:
1c:ae:6b:78:99:26:2d:b2:4c:30:e2:74:c2:ed:5f:
39:7f:b9:1c:c3:12:a7:84:e5:d1:4a:25:bc:01:8d:
84:2a:4b:bc:68:51:23:60:ed:66:31:2e:31:76:c7:
68:d1:ec:a2:6a:0d:8f:6a:59:9d:88:b7:c3:e9:09:
5a:55:ee:87:8d:11:1c:5b:b4:e0:bd:cc:d6:f4:f7:
c2:f6:36:9f:d2:18:b2:eb:59:9e:f2:95:a1:63:7f:
b0:a6:2e:8c:4c:96:fc:b3:53:bd:7b:8c:41:69:17:
9d:ed:2f:f8:78:b3:1b:80:31:d7:4a:c2:ac:6e:e3:
93:d1:04:a4:b8:ad:73:7c:fd:b3:52:a1:b6:d8:56:
7f:d3:ec:a0:df:c2:19:04:41:1b:2a:0f:7f:f3:08:
5b:56:fb:4c:26:20:9b:f0:4d:5f:a0:a7:38:27:f4:
41:d9:73:1d:88:ae:d8:fb:2c:1b:42:a7:0e:28:b4:
17:a1:a1:dd:45:fa:6f:06:4e:cf:4d:fe:41:30:2f:
b0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D3:1A:D1:88:16:A4:C9:A3:B9:90:32:94:91:02:9C:2B:86:65:88
X509v3 Authority Key Identifier:
keyid:AE:99:47:2A:81:09:91:84:4B:AB:99:BF:AF:E3:73:3A:74:8E:81:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2Di78tu3WjKbkfichUXJJmWs2LNBF8A1cw1TyvHL1fs3/0/AE99472A810991844BAB99BFAFE3733A748E8150.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AE99472A810991844BAB99BFAFE3733A748E8150.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2Di78tu3WjKbkfichUXJJmWs2LNBF8A1cw1TyvHL1fs3/0/AS28640.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.104.128.0-177.104.181.255
177.104.183.0-177.104.185.255
177.104.187.0-177.104.191.255
189.51.64.0-189.51.87.255
201.33.112.0/20
201.71.224.0/20
IPv6:
2001:1288::/32
Signature Algorithm: sha256WithRSAEncryption
8d:5c:5e:3f:39:ca:28:68:5d:3b:df:02:99:8c:68:de:cd:49:
94:cf:5a:3e:13:90:2d:df:30:59:30:1d:13:b4:cf:14:f5:97:
45:26:69:86:f9:47:cc:95:53:8e:19:d7:83:94:b7:11:be:0a:
6a:98:80:98:7a:36:8d:7c:0b:df:71:3c:54:0d:a3:0f:52:8f:
96:f4:63:1f:94:47:0d:85:66:f5:2e:9b:df:ff:4b:01:44:a3:
f2:b4:c0:8a:55:b8:4a:d5:d6:da:33:98:ae:b4:b0:fb:21:6d:
f7:82:ed:18:55:2a:28:61:1f:12:7e:20:07:9d:1e:de:d3:ab:
f9:3b:4d:69:5e:e7:1c:58:5b:88:db:d5:75:17:b1:c1:06:9a:
05:ec:92:3d:52:79:1f:b3:f7:83:c6:38:f8:90:f3:ae:0c:0a:
68:78:70:88:87:ce:1b:ba:90:fa:39:22:88:bb:fc:fc:d2:e0:
c3:4c:5f:0e:fb:16:ef:0c:1b:e3:de:7d:cf:b1:54:cd:a5:5b:
6f:13:7c:c4:8a:3d:67:89:9b:6c:c5:16:74:51:92:f0:ba:05:
0b:96:89:86:b6:c7:0b:a9:5b:a9:58:9e:2f:3e:e4:99:2b:b1:
8f:00:75:b9:fc:b3:aa:2e:35:e2:65:5d:a0:52:0f:4d:f9:bc:
57:d6:00:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:01 2024 by rpki-client on console-ams.rpki-client.org