Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2xtCewyEERy8cTBAx23BVJQbkFKSQkyYhY4JqqeQADjP/1/3137372e38362e3135322e302f32322d3332203d3e20323731363339.roa
File: 3137372e38362e3135322e302f32322d3332203d3e20323731363339.roa (raw, json)
Hash identifier: RaT7CUP+zVGW5CKTDGu5YJzyjXLHjGSZAFQ6WpkUkgc=
Subject key identifier: 33:A8:23:2C:3C:92:B0:A2:62:9C:7D:FE:2E:32:7A:2B:11:38:C6:B9
Certificate issuer: /CN=2B8415C82A5DFB6F48CA4479B79CBEDFDE52A43B
Certificate serial: 440BD686D2F5602B606C51E6366CE59B5E4C287B
Authority key identifier: 2B:84:15:C8:2A:5D:FB:6F:48:CA:44:79:B7:9C:BE:DF:DE:52:A4:3B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2B8415C82A5DFB6F48CA4479B79CBEDFDE52A43B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2xtCewyEERy8cTBAx23BVJQbkFKSQkyYhY4JqqeQADjP/1/3137372e38362e3135322e302f32322d3332203d3e20323731363339.roa
Signing time: Thu 06 Mar 2025 17:22:11 +0000
ROA not before: Thu 06 Mar 2025 17:17:11 +0000
ROA not after: Thu 05 Mar 2026 17:22:11 +0000
asID: 271639
IP address blocks: 177.86.152.0/22 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:0b:d6:86:d2:f5:60:2b:60:6c:51:e6:36:6c:e5:9b:5e:4c:28:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B8415C82A5DFB6F48CA4479B79CBEDFDE52A43B
Validity
Not Before: Mar 6 17:17:11 2025 GMT
Not After : Mar 5 17:22:11 2026 GMT
Subject: CN=33A8232C3C92B0A2629C7DFE2E327A2B1138C6B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6c:7f:5a:e8:f4:a8:93:e8:eb:25:b5:64:19:
f0:10:f9:5b:75:f5:8b:1c:a2:31:02:c1:cd:74:c0:
87:6d:c9:b4:f7:5a:3b:e1:fc:e4:88:6f:fb:c7:80:
86:1d:69:f0:70:09:aa:d3:b3:95:79:fe:74:de:37:
8c:b8:b1:07:dd:80:15:0a:36:f4:86:2b:6b:0b:c1:
11:e5:d8:5e:26:52:1e:2b:e0:3d:42:68:37:7a:89:
7e:48:d9:a9:c7:ce:a7:7f:70:9a:9c:b1:b7:77:54:
cd:95:60:50:92:5d:4c:fe:e1:dd:ac:27:ed:05:db:
c1:b8:99:c6:74:70:b0:46:cb:f6:f5:75:51:8a:60:
10:1d:02:8f:42:f4:04:6e:07:73:45:7b:87:63:56:
cd:a7:8e:99:d6:8b:65:1d:a6:2b:1c:77:21:80:17:
b4:87:00:43:f7:5b:5a:22:34:c0:ee:d4:99:ae:eb:
99:9e:1a:14:d5:96:c2:cb:7c:d1:af:d6:db:b8:ae:
a5:27:b6:a2:b0:0e:b8:ff:6d:f3:f3:8e:87:2f:14:
9c:0c:e8:3f:f1:5e:88:b7:1c:68:3b:0f:b5:73:1d:
69:57:68:87:3b:3e:92:e1:fa:c1:fe:71:f9:8b:fa:
c7:e7:a3:b5:e8:b9:88:84:7b:3a:0d:9b:b2:f8:e5:
85:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A8:23:2C:3C:92:B0:A2:62:9C:7D:FE:2E:32:7A:2B:11:38:C6:B9
X509v3 Authority Key Identifier:
keyid:2B:84:15:C8:2A:5D:FB:6F:48:CA:44:79:B7:9C:BE:DF:DE:52:A4:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2xtCewyEERy8cTBAx23BVJQbkFKSQkyYhY4JqqeQADjP/1/2B8415C82A5DFB6F48CA4479B79CBEDFDE52A43B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2B8415C82A5DFB6F48CA4479B79CBEDFDE52A43B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2xtCewyEERy8cTBAx23BVJQbkFKSQkyYhY4JqqeQADjP/1/3137372e38362e3135322e302f32322d3332203d3e20323731363339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.86.152.0/22
Signature Algorithm: sha256WithRSAEncryption
77:df:c4:11:fe:22:fe:d0:be:0b:43:9e:fe:c1:28:65:d8:33:
67:96:cd:0d:4f:55:25:9f:6e:b5:a4:b9:dc:0e:28:44:f5:ac:
df:bf:b4:05:4d:26:32:83:80:e7:83:65:73:d7:0b:1c:b1:93:
a6:5c:b4:6d:0c:40:f8:82:1d:e0:97:20:a4:5e:39:38:98:c5:
58:33:05:b9:ab:e6:1c:c0:1e:a3:24:71:38:94:23:c7:d7:f2:
b1:fd:c7:63:c7:c9:ea:22:16:6e:93:38:41:3d:d6:cc:69:78:
7a:8a:57:68:ce:93:11:42:90:b3:2a:0c:79:b3:d8:32:53:2a:
15:3b:a6:4e:23:fc:24:57:af:57:cd:e4:79:74:e2:31:ab:8e:
2a:2c:dc:6a:3a:9b:e2:34:32:2f:f9:f7:18:28:03:54:82:1c:
17:f1:6e:5d:bf:c7:14:39:86:c0:41:09:b4:ae:91:e6:b2:6d:
d0:30:d2:4a:ef:61:a5:34:72:21:51:a3:82:66:60:87:5c:e1:
61:c3:b5:f5:a2:0d:00:51:a5:f1:79:b3:f2:ee:e2:da:7c:fd:
b4:55:aa:5b:cd:91:be:c9:1c:7a:d8:31:84:4b:c2:ff:48:bf:
f4:dd:51:8f:20:41:9d:7d:e5:f0:71:1c:83:ec:4f:ff:8a:2e:
8d:5e:94:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 00:47:41 2025 by rpki-client