Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3FhH3cqZa8sGcZA3mKXkg66JoahPm9VSXiEZ4riYZC14/1/3136382e3230352e3232352e302f32342d3234203d3e20323634383637.roa
File: 3136382e3230352e3232352e302f32342d3234203d3e20323634383637.roa (raw, json)
Hash identifier: 08lECZhL/AXrxpjurIGG4JfHr01FGBUqGwnoBvdjh0A=
Subject key identifier: D6:F9:F5:0A:6C:5C:24:54:CE:8E:01:81:38:2E:78:40:45:C2:D7:4C
Certificate issuer: /CN=D8D9B8E4A835A2FE0F905786DED8B530F7F0AD05
Certificate serial: 56E3CEA2D2012AB47EB5B7FE7842005CE5EE58A8
Authority key identifier: D8:D9:B8:E4:A8:35:A2:FE:0F:90:57:86:DE:D8:B5:30:F7:F0:AD:05
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D8D9B8E4A835A2FE0F905786DED8B530F7F0AD05.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3FhH3cqZa8sGcZA3mKXkg66JoahPm9VSXiEZ4riYZC14/1/3136382e3230352e3232352e302f32342d3234203d3e20323634383637.roa
Signing time: Thu 04 Apr 2024 15:05:55 +0000
ROA not before: Thu 04 Apr 2024 15:00:55 +0000
ROA not after: Thu 03 Apr 2025 15:05:55 +0000
asID: 264867
IP address blocks: 168.205.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:e3:ce:a2:d2:01:2a:b4:7e:b5:b7:fe:78:42:00:5c:e5:ee:58:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8D9B8E4A835A2FE0F905786DED8B530F7F0AD05
Validity
Not Before: Apr 4 15:00:55 2024 GMT
Not After : Apr 3 15:05:55 2025 GMT
Subject: CN=D6F9F50A6C5C2454CE8E0181382E784045C2D74C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:82:88:29:65:c4:9d:f4:b0:c4:ca:6d:80:57:
36:4d:b9:64:b5:39:ae:30:cb:9b:53:cf:bb:b2:43:
21:eb:97:c2:71:82:ff:fb:71:bc:6d:27:2e:d6:10:
0f:31:85:04:05:66:b7:54:da:8a:25:27:2d:7f:ec:
b3:ed:b0:d8:d4:98:fb:b3:c0:b3:96:1c:76:af:88:
25:f6:ea:b6:b3:0d:ce:30:3f:5e:ed:c4:21:08:11:
99:a6:66:36:30:f0:12:d2:6d:a8:19:f9:61:c2:60:
ff:56:6e:3b:18:ed:67:37:32:3b:45:a7:12:11:44:
d9:23:56:95:7c:81:1c:3f:79:30:4b:6b:a5:a4:f3:
53:ab:07:45:c1:3e:19:41:4e:67:3c:b3:f7:a1:44:
e8:05:c7:68:b3:7b:ff:bc:d7:87:dc:ae:c5:00:d1:
4d:fe:09:b3:f4:5f:75:1b:f4:36:c5:b7:d4:d5:5f:
29:b5:f7:eb:64:74:b1:ba:58:29:fd:42:59:bc:39:
2a:d8:5e:32:f8:a1:1e:4d:d0:bc:c6:40:5a:f5:0a:
a2:0b:44:9b:7b:54:e9:20:bb:51:47:26:bd:9d:6a:
18:74:5a:2d:a7:b1:c7:b5:c7:18:a9:7d:fc:1a:91:
a2:a9:a6:78:3a:95:c9:55:ae:c7:b8:eb:40:44:3d:
68:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F9:F5:0A:6C:5C:24:54:CE:8E:01:81:38:2E:78:40:45:C2:D7:4C
X509v3 Authority Key Identifier:
keyid:D8:D9:B8:E4:A8:35:A2:FE:0F:90:57:86:DE:D8:B5:30:F7:F0:AD:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3FhH3cqZa8sGcZA3mKXkg66JoahPm9VSXiEZ4riYZC14/1/D8D9B8E4A835A2FE0F905786DED8B530F7F0AD05.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D8D9B8E4A835A2FE0F905786DED8B530F7F0AD05.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3FhH3cqZa8sGcZA3mKXkg66JoahPm9VSXiEZ4riYZC14/1/3136382e3230352e3232352e302f32342d3234203d3e20323634383637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.205.225.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ed:9e:0a:97:8d:33:5e:70:b4:5c:74:1d:8a:9d:e4:06:22:
8d:26:64:a0:b1:6d:b9:0c:ac:2a:87:90:8a:52:26:0e:cf:b7:
0c:0e:19:16:60:0d:39:cc:ea:e0:1c:3e:98:86:08:94:f6:dc:
42:8f:b0:a1:14:da:4d:76:24:12:5e:ce:54:77:29:26:d4:c1:
fd:b1:30:87:f1:68:09:87:1f:ef:83:22:e3:10:2a:f3:33:bf:
d1:da:c8:03:34:c1:e4:69:93:e0:b8:23:08:df:bb:2d:14:72:
f9:3b:91:8d:0f:59:1f:3b:49:ab:68:24:16:f1:eb:01:1f:be:
08:91:84:0e:e2:a3:d4:45:14:34:51:34:85:90:e5:a4:b1:10:
5d:30:ce:52:ef:7e:b6:84:aa:a3:58:2d:f8:13:a3:42:94:c7:
86:a8:37:00:35:d1:6a:d6:26:84:8a:a8:7c:8e:8c:0d:b8:f8:
7b:be:35:78:4e:a6:e2:b7:47:3d:5f:8b:98:e1:c5:a7:da:bc:
94:91:6f:51:0f:84:c6:1a:bf:53:b0:59:2b:bd:11:b3:ac:e9:
a5:94:d0:c8:b9:2c:64:4a:fb:ba:b6:ac:45:61:b6:62:6d:fd:
26:16:cb:31:19:57:f3:62:0c:19:b6:13:ad:7b:70:04:73:86:
a2:de:a1:05
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUVuPOotIBKrR+tbf+eEIAXOXuWKgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDhEOUI4RTRBODM1QTJGRTBGOTA1Nzg2REVEOEI1MzBG
N0YwQUQwNTAeFw0yNDA0MDQxNTAwNTVaFw0yNTA0MDMxNTA1NTVaMDMxMTAvBgNV
BAMTKEQ2RjlGNTBBNkM1QzI0NTRDRThFMDE4MTM4MkU3ODQwNDVDMkQ3NEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlgogpZcSd9LDEym2AVzZNuWS1
Oa4wy5tTz7uyQyHrl8Jxgv/7cbxtJy7WEA8xhQQFZrdU2oolJy1/7LPtsNjUmPuz
wLOWHHaviCX26razDc4wP17txCEIEZmmZjYw8BLSbagZ+WHCYP9WbjsY7Wc3MjtF
pxIRRNkjVpV8gRw/eTBLa6Wk81OrB0XBPhlBTmc8s/ehROgFx2ize/+814fcrsUA
0U3+CbP0X3Ub9DbFt9TVXym19+tkdLG6WCn9Qlm8OSrYXjL4oR5N0LzGQFr1CqIL
RJt7VOkgu1FHJr2dahh0Wi2nsce1xxipffwakaKppng6lclVrse460BEPWjtAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQU1vn1CmxcJFTOjgGBOC54QEXC10wwHwYDVR0j
BBgwFoAU2Nm45Kg1ov4PkFeG3ti1MPfwrQUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM0ZoSDNjcVphOHNHY1pBM21LWGtnNjZKb2FoUG05VlNYaUVaNHJpWVpD
MTQvMS9EOEQ5QjhFNEE4MzVBMkZFMEY5MDU3ODZERUQ4QjUzMEY3RjBBRDA1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q4RDlCOEU0QTgzNUEyRkUw
RjkwNTc4NkRFRDhCNTMwRjdGMEFEMDUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNGaEgzY3FaYThzR2NaQTNtS1hrZzY2Sm9haFBtOVZTWGlFWjRyaVlaQzE0LzEv
MzEzNjM4MmUzMjMwMzUyZTMyMzIzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzNDM4MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKjN4TANBgkqhkiG9w0BAQsFAAOCAQEACO2e
CpeNM15wtFx0HYqd5AYijSZkoLFtuQysKoeQilImDs+3DA4ZFmANOczq4Bw+mIYI
lPbcQo+woRTaTXYkEl7OVHcpJtTB/bEwh/FoCYcf74Mi4xAq8zO/0drIAzTB5GmT
4LgjCN+7LRRy+TuRjQ9ZHztJq2gkFvHrAR++CJGEDuKj1EUUNFE0hZDlpLEQXTDO
Uu9+toSqo1gt+BOjQpTHhqg3ADXRatYmhIqofI6MDbj4e741eE6m4rdHPV+LmOHF
p9q8lJFvUQ+Exhq/U7BZK70Rs6zppZTQyLksZEr7urasRWG2Ym39JhbLMRlX82IM
GbYTrXtwBHOGot6hBQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 10:47:10 2025 by rpki-client