Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232332e302f32342d3234203d3e203533313533.roa
File: 3133382e3230342e3232332e302f32342d3234203d3e203533313533.roa (raw, json)
Hash identifier: Mdv0c9R3Z6gQy+gEnd8rB7tXjAyyeI5rbsWr4s3ErU8=
Subject key identifier: AB:FD:97:E5:A4:E3:6D:15:78:60:A9:A2:6C:E8:35:AE:AE:64:0F:76
Certificate issuer: /CN=9536A4A25799142864EDF97B100393D50D163742
Certificate serial: 0FEF15B019AD93B0E39D356CDE303CCDB91D0083
Authority key identifier: 95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232332e302f32342d3234203d3e203533313533.roa
Signing time: Fri 24 May 2024 14:19:55 +0000
ROA not before: Fri 24 May 2024 14:14:55 +0000
ROA not after: Fri 23 May 2025 14:19:55 +0000
asID: 53153
IP address blocks: 138.204.223.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ef:15:b0:19:ad:93:b0:e3:9d:35:6c:de:30:3c:cd:b9:1d:00:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9536A4A25799142864EDF97B100393D50D163742
Validity
Not Before: May 24 14:14:55 2024 GMT
Not After : May 23 14:19:55 2025 GMT
Subject: CN=ABFD97E5A4E36D157860A9A26CE835AEAE640F76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fd:68:40:43:84:30:f5:2b:48:7c:bd:7d:7b:
af:0e:65:ef:35:0f:e2:2e:05:5a:2b:22:a9:82:d2:
c9:2f:07:b5:6c:59:2b:d3:42:10:23:b2:34:b1:91:
f2:e8:87:01:fe:34:44:98:a9:e2:92:1e:c0:da:ca:
ed:1c:fb:d1:a0:70:1f:a8:cc:02:fc:c5:2e:31:ce:
00:06:bf:c1:be:11:0d:90:38:f9:56:22:c7:49:33:
97:df:00:a7:b8:e4:c7:8d:80:63:12:3b:21:7b:b4:
50:da:94:ec:cc:fb:fd:71:e2:a0:a6:69:34:ba:83:
a2:a0:0f:0a:b1:32:50:18:63:79:98:e8:b3:e5:4f:
3a:01:5e:69:b9:e3:95:95:7f:76:20:4a:7d:4c:3d:
52:f2:74:65:91:44:82:00:ac:a9:d4:65:2c:90:7d:
d4:6f:fe:3b:d7:fe:3e:ba:27:19:2c:e5:6a:c3:99:
12:b0:24:0f:6d:fc:18:41:ab:38:af:ac:89:a2:cd:
70:89:06:cd:c9:23:76:b6:d1:5d:71:7d:50:7c:87:
60:e1:73:41:01:6b:43:1d:72:a6:01:76:3c:63:61:
c1:a4:da:bb:a4:f3:f3:f6:de:be:d0:ec:78:60:42:
98:0c:f1:57:db:f0:5c:1e:df:69:7c:8c:5c:5c:ed:
77:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FD:97:E5:A4:E3:6D:15:78:60:A9:A2:6C:E8:35:AE:AE:64:0F:76
X509v3 Authority Key Identifier:
keyid:95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/9536A4A25799142864EDF97B100393D50D163742.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3133382e3230342e3232332e302f32342d3234203d3e203533313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.223.0/24
Signature Algorithm: sha256WithRSAEncryption
af:e3:bd:16:9f:ba:2f:70:e8:f3:c6:e7:93:fe:b1:16:16:f7:
5d:f5:6a:6a:cf:a5:fc:8f:73:bf:06:de:1a:39:8b:1a:6a:aa:
95:85:fb:eb:8d:9b:ed:e7:7f:27:59:7c:11:3d:c4:f0:32:36:
0f:d4:bd:d5:93:f0:ee:9f:5b:31:11:4f:ff:9d:e5:2d:77:63:
88:b4:3b:68:34:1d:f4:05:32:11:44:d8:d6:37:63:7d:72:cd:
91:5a:9a:8f:2b:ca:e5:f5:01:10:0e:c6:c5:de:4a:ea:a5:f6:
80:3e:b3:18:36:50:be:f3:96:bd:cf:98:11:b1:8f:c5:23:05:
0d:d5:c7:02:84:c1:35:eb:7d:a3:9a:59:f8:4b:06:73:84:54:
72:5d:81:ad:f5:64:70:a3:03:db:c3:d0:63:e3:83:ae:81:99:
83:0d:fa:8d:f9:e4:df:3d:4f:e7:8e:0c:29:96:0a:4d:17:9c:
fb:82:b7:7f:50:da:b2:57:46:0e:45:b2:4a:63:ed:36:f7:88:
e9:d7:10:89:4e:37:71:85:f1:63:ba:05:58:95:f8:b0:6c:74:
8e:80:1b:4e:de:0e:28:88:c6:63:c8:ff:e8:55:95:1e:dc:2f:
5d:21:0b:ce:35:aa:e2:9d:98:95:80:58:b9:82:70:b8:a9:fa:
d3:63:93:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:59:36 2024 by rpki-client on console-fra.rpki-client.org