Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36302e302f32342d3234203d3e203238323034.roa
File: 3138392e39312e36302e302f32342d3234203d3e203238323034.roa (raw, json)
Hash identifier: Ckk977gSL83wjeImtbOlC4PFsiYWOphH8CPsi6nVNnc=
Subject key identifier: 1A:5B:1B:EA:36:BF:6D:72:A0:EB:B3:4C:7A:50:CD:09:69:40:47:6C
Certificate issuer: /CN=A99D272225729B303C95F28914878741C6AE29BE
Certificate serial: 4110BBA7CAAC51E7E288467B4858F031DC950A6C
Authority key identifier: A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36302e302f32342d3234203d3e203238323034.roa
Signing time: Wed 24 Apr 2024 14:38:04 +0000
ROA not before: Wed 24 Apr 2024 14:33:04 +0000
ROA not after: Wed 23 Apr 2025 14:38:04 +0000
asID: 28204
IP address blocks: 189.91.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 19:06:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:10:bb:a7:ca:ac:51:e7:e2:88:46:7b:48:58:f0:31:dc:95:0a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A99D272225729B303C95F28914878741C6AE29BE
Validity
Not Before: Apr 24 14:33:04 2024 GMT
Not After : Apr 23 14:38:04 2025 GMT
Subject: CN=1A5B1BEA36BF6D72A0EBB34C7A50CD096940476C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ca:e3:22:7f:62:67:de:76:ba:87:c3:af:f6:
82:6a:b6:cc:20:e2:1c:70:5f:14:5f:ba:81:34:f8:
7c:aa:87:28:5a:a1:e9:37:e6:b4:c1:7b:ba:ec:cb:
f6:98:3c:17:b5:66:88:a6:93:95:d1:4f:3e:52:2c:
55:57:b0:5a:32:96:2d:0d:8a:2d:21:58:fa:de:31:
fb:0d:a0:95:3d:e2:da:93:f5:f4:e3:15:d1:88:41:
ae:f6:9f:ae:6f:01:d1:a8:8f:41:31:53:c7:31:ad:
75:ba:36:99:41:a2:c8:a1:81:fc:8c:88:88:80:a0:
6f:3e:c1:93:99:23:fa:86:0a:bb:34:55:e8:4a:2b:
96:84:17:56:61:aa:03:b6:71:99:0c:83:5a:ec:f2:
2b:66:03:7e:9d:2d:97:dc:e5:23:c9:f5:29:dc:09:
4e:c1:fa:23:23:2a:a3:c6:10:9c:96:ca:59:19:ed:
f1:64:4b:21:f9:cc:df:85:7c:dd:21:4d:f6:51:d9:
fd:df:c0:0f:39:24:7b:ba:a4:d9:21:36:1b:3e:cd:
98:9f:f0:fd:77:ef:ac:62:54:10:9a:5c:b0:5c:39:
a0:1d:84:f4:40:62:60:b8:1a:06:2a:eb:e5:af:ee:
42:41:00:7a:00:56:4b:bd:33:20:95:9a:10:c5:ff:
ce:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5B:1B:EA:36:BF:6D:72:A0:EB:B3:4C:7A:50:CD:09:69:40:47:6C
X509v3 Authority Key Identifier:
keyid:A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/A99D272225729B303C95F28914878741C6AE29BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36302e302f32342d3234203d3e203238323034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.91.60.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e2:22:82:de:07:73:fd:0e:c6:52:3a:f7:45:57:fc:57:6d:
6e:92:8e:67:60:b7:f4:f4:c7:8b:17:96:39:16:6a:30:9f:17:
03:05:83:7e:66:bc:a6:96:07:18:9e:65:67:9b:8e:bb:ed:1c:
14:31:42:d5:16:08:53:79:b7:c5:73:40:e6:30:55:88:19:27:
38:a7:a8:70:27:08:a1:23:50:d4:f9:37:2b:de:6a:19:ce:1e:
e8:30:55:9d:9e:f1:3f:fa:7a:e5:04:ac:9e:84:e4:2f:d3:a2:
fb:39:98:ac:44:4f:7f:98:92:d7:a7:90:92:3c:8c:71:6a:fc:
4c:a0:2e:10:81:3d:d1:bf:b2:e6:74:71:98:4d:d0:b5:79:8b:
5d:0e:c4:63:fd:a4:29:9b:5c:05:e7:6d:26:9a:2a:ab:a8:df:
99:f0:71:f1:9f:c2:af:24:1c:15:83:2a:b7:2b:27:10:13:41:
21:78:a6:4d:d6:01:b8:8a:94:91:b7:d3:c5:29:23:a8:d5:17:
dd:9e:10:3a:6d:d7:f0:c9:e7:00:41:c9:ae:88:1b:10:82:b2:
77:cf:58:2d:a6:fc:67:57:85:c5:d7:12:45:e7:97:ad:53:4d:
8f:db:a1:c8:bb:2f:13:43:f6:5c:80:17:e2:12:68:80:55:98:
a7:ad:54:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:22 2024 by rpki-client on console-fra.rpki-client.org