Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e35392e302f32342d3234203d3e203238323034.roa
File:                     3138392e39312e35392e302f32342d3234203d3e203238323034.roa (raw, json)
Hash identifier:          CdeJLB1ebkItOsv3Tu4TeWKDY8DGNmTmjPqVqirf/2A=
Subject key identifier:   C4:B8:55:B0:60:E1:B2:2B:CA:87:4F:2D:FF:71:F2:89:58:21:C1:A8
Certificate issuer:       /CN=A99D272225729B303C95F28914878741C6AE29BE
Certificate serial:       547DDF013A2D3A16B9FA9E157A54C69503DB933A
Authority key identifier: A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e35392e302f32342d3234203d3e203238323034.roa
Signing time:             Wed 24 Apr 2024 14:37:59 +0000
ROA not before:           Wed 24 Apr 2024 14:32:59 +0000
ROA not after:            Wed 23 Apr 2025 14:37:59 +0000
asID:                     28204
IP address blocks:        189.91.59.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 19:05:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:7d:df:01:3a:2d:3a:16:b9:fa:9e:15:7a:54:c6:95:03:db:93:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A99D272225729B303C95F28914878741C6AE29BE
        Validity
            Not Before: Apr 24 14:32:59 2024 GMT
            Not After : Apr 23 14:37:59 2025 GMT
        Subject: CN=C4B855B060E1B22BCA874F2DFF71F2895821C1A8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:ca:1b:e3:29:c9:80:10:59:e6:4b:61:47:4e:
                    63:40:08:e5:0d:23:d1:28:e7:75:0f:95:59:61:82:
                    71:1b:76:71:b9:84:17:5d:28:be:4d:1f:53:1d:53:
                    fb:e1:f1:33:94:80:61:96:e5:f5:43:47:fa:9d:2a:
                    9b:f8:8f:3b:77:af:bc:61:cf:8e:f4:4b:b2:54:b4:
                    5c:35:53:2d:42:67:97:d9:43:bd:5c:2f:44:ca:9e:
                    4f:77:07:57:e0:d3:7a:89:c6:6e:69:cf:98:c2:e6:
                    02:67:71:4c:3a:14:4c:22:7a:b7:76:1e:f3:5a:2c:
                    d4:ab:b8:aa:9f:51:f4:44:b1:16:2c:39:49:87:92:
                    53:15:97:39:e4:1f:7e:84:13:3f:f1:85:0c:cd:5c:
                    26:28:88:e7:27:34:43:8a:6a:da:21:90:41:ef:05:
                    9d:67:34:50:0f:a6:70:65:0d:2a:44:a7:af:4d:ad:
                    1a:22:51:25:4e:81:63:0d:7f:2d:5f:1e:fd:3b:f6:
                    57:e8:b0:37:a7:c3:38:9f:5d:51:c6:d2:f8:ce:7c:
                    7d:c5:fb:ba:38:d0:74:37:9a:03:a8:4d:a2:c2:88:
                    2a:12:98:89:43:38:da:2b:84:49:18:97:57:bb:98:
                    f4:ce:60:f1:81:f2:2c:87:2e:2b:68:35:20:c5:90:
                    11:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:B8:55:B0:60:E1:B2:2B:CA:87:4F:2D:FF:71:F2:89:58:21:C1:A8
            X509v3 Authority Key Identifier:
                keyid:A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/A99D272225729B303C95F28914878741C6AE29BE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e35392e302f32342d3234203d3e203238323034.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  189.91.59.0/24

    Signature Algorithm: sha256WithRSAEncryption
         02:a3:66:88:fd:a2:fb:17:c6:40:89:63:d3:7d:5f:19:99:b9:
         8d:c3:ce:dd:af:b4:88:97:25:1a:f9:75:19:8c:15:3b:38:73:
         f8:82:97:e5:1d:10:be:00:4b:ad:a7:0b:82:5f:9d:67:9c:b2:
         6d:fe:5a:a1:cb:52:3f:be:86:1a:62:bf:0d:55:19:e9:b7:71:
         cd:61:b1:01:dc:9a:c9:df:8c:d5:5b:2f:ff:1c:c3:60:6d:89:
         a7:5c:36:17:ac:75:3d:34:0b:a8:39:08:d3:d0:86:0c:40:9c:
         d0:12:bb:17:09:5a:ba:46:c3:81:a3:42:f1:b5:f3:06:97:b5:
         b1:c0:5f:83:1e:10:82:0a:46:29:21:18:23:92:9a:21:05:0f:
         19:e2:79:31:dd:0b:43:48:f4:3c:30:ac:7e:76:29:11:1f:d0:
         6e:1d:38:ed:8d:49:e3:09:1e:57:fa:15:80:aa:5f:98:dc:18:
         5a:50:19:45:04:1a:8f:be:98:1e:6e:01:96:ca:d4:c6:81:c2:
         a5:68:cd:60:ee:60:b9:a7:37:d5:4e:f0:62:c2:f1:4a:c8:5c:
         c9:22:2f:43:55:74:f4:15:9b:07:28:2f:95:e1:bc:52:2f:07:
         41:c0:91:6e:61:89:4a:99:a8:2a:2a:ed:ab:ff:1d:08:1a:cd:
         9f:2e:f1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:08 2024 by rpki-client on console-ams.rpki-client.org