Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36312e302f32342d3234203d3e203238323034.roa
File:                     3138392e39312e36312e302f32342d3234203d3e203238323034.roa (raw, json)
Hash identifier:          vABRavni468scgofo8goCxLyvoyGvV/pVgMpamkThfQ=
Subject key identifier:   E8:FC:AB:BE:FE:B3:D7:4A:25:6B:BE:84:46:DA:3F:9D:A1:D4:DF:AB
Certificate issuer:       /CN=A99D272225729B303C95F28914878741C6AE29BE
Certificate serial:       07B28DB8FCF1A6BD9AC3A8FB0AC05A0B75C754BC
Authority key identifier: A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36312e302f32342d3234203d3e203238323034.roa
Signing time:             Wed 24 Apr 2024 14:38:08 +0000
ROA not before:           Wed 24 Apr 2024 14:33:08 +0000
ROA not after:            Wed 23 Apr 2025 14:38:08 +0000
asID:                     28204
IP address blocks:        189.91.61.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 19:06:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            07:b2:8d:b8:fc:f1:a6:bd:9a:c3:a8:fb:0a:c0:5a:0b:75:c7:54:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A99D272225729B303C95F28914878741C6AE29BE
        Validity
            Not Before: Apr 24 14:33:08 2024 GMT
            Not After : Apr 23 14:38:08 2025 GMT
        Subject: CN=E8FCABBEFEB3D74A256BBE8446DA3F9DA1D4DFAB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:7c:98:a2:7c:30:d5:7c:f7:40:47:e1:7a:8d:
                    16:93:38:fd:dd:cc:05:a1:b5:8e:d3:5e:94:3d:9f:
                    6b:06:70:34:b6:23:25:1e:02:dd:6d:47:31:e4:fa:
                    55:4e:a9:4f:a5:ef:95:82:56:72:a3:c2:75:51:93:
                    f9:cb:d4:7d:f0:ea:5a:1c:69:74:7f:e8:4a:2f:db:
                    91:f3:48:5c:0c:df:a2:e0:9d:a7:31:5c:81:65:2d:
                    8a:ff:62:d3:94:ce:ac:6b:be:51:0a:66:5b:68:b3:
                    73:c4:b1:f8:07:0c:4b:3e:d7:26:cb:65:30:e6:fe:
                    19:47:7b:e1:af:45:66:f0:94:a1:c3:75:34:b4:f2:
                    7d:44:5d:7d:52:fd:76:92:c9:15:03:51:4f:aa:31:
                    fa:54:04:63:6b:56:48:cc:a5:9c:71:33:7a:59:72:
                    6d:00:25:fb:d6:b8:35:53:26:19:0d:b7:66:f1:d8:
                    3a:29:90:42:13:ed:d2:bf:20:84:16:56:24:1d:c4:
                    91:ae:1b:05:6a:f8:d4:9d:35:76:a9:77:fa:dd:6e:
                    39:dd:44:b5:e8:54:ad:65:b5:7f:75:98:07:6a:0c:
                    86:25:42:d6:d2:eb:b7:fb:ea:bc:5e:77:73:59:2a:
                    ad:fa:62:fd:b4:62:4b:b3:86:e8:7a:35:7e:81:e7:
                    70:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:FC:AB:BE:FE:B3:D7:4A:25:6B:BE:84:46:DA:3F:9D:A1:D4:DF:AB
            X509v3 Authority Key Identifier:
                keyid:A9:9D:27:22:25:72:9B:30:3C:95:F2:89:14:87:87:41:C6:AE:29:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/A99D272225729B303C95F28914878741C6AE29BE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A99D272225729B303C95F28914878741C6AE29BE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2tCkhwyTNHwLB1YLniMfMN8tRak6TQLY3kt6JpWDPMFh/0/3138392e39312e36312e302f32342d3234203d3e203238323034.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  189.91.61.0/24

    Signature Algorithm: sha256WithRSAEncryption
         34:49:91:21:3a:42:01:d4:4e:f6:0c:0b:ce:06:b3:5e:14:3e:
         a5:23:f2:ca:23:79:80:d9:75:54:2b:8c:d0:0f:8f:f7:59:2b:
         d3:70:86:2b:df:cd:3b:18:3e:5d:11:95:0f:0c:86:ec:6b:f2:
         a5:41:aa:84:ac:e1:2b:38:16:06:6e:ae:d9:13:77:9b:b2:26:
         e4:17:da:a0:b1:dd:4a:ac:99:dd:9b:73:eb:63:40:8f:d4:43:
         f1:b4:3b:97:26:97:36:76:64:5e:18:5a:6a:40:19:02:43:0f:
         fc:84:39:f3:0d:2d:66:83:c6:fe:1c:4e:80:47:63:4d:4a:68:
         d6:60:13:39:74:b2:4b:2f:4c:ab:41:00:a4:a5:94:7f:66:f5:
         97:a4:e1:8b:66:75:a7:88:5d:7f:a7:69:8b:5f:ed:ef:28:c3:
         03:5d:29:79:5a:3a:65:c1:63:9a:32:37:67:d1:65:57:b4:3b:
         9f:4d:58:1a:55:24:91:0c:48:d6:41:b7:a6:60:c6:2e:f2:e7:
         c4:5f:ef:c1:2b:d2:9b:26:ab:e6:dd:a8:96:b0:19:d8:1b:04:
         90:bf:ae:2f:c0:35:6d:42:df:77:0b:8a:b4:1e:81:6a:46:8e:
         36:a3:30:f8:36:e1:63:ec:9d:3c:98:05:76:15:43:ee:dc:30:
         b7:76:fb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:08 2024 by rpki-client on console-ams.rpki-client.org