Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3KL4b4Kk8PQco6XosP4gGcxY2sbdiyPfJDDzS1vRsaLu/0/323830343a316435303a3a2f33322d3332203d3e20323634333630.roa
File: 323830343a316435303a3a2f33322d3332203d3e20323634333630.roa (raw, json)
Hash identifier: XCD1ipR+oE4aGuFMWg8+zZ6F+dgmX1Nsml8jb9UgWdQ=
Subject key identifier: 99:F4:70:6B:64:B5:E8:68:60:4D:21:A6:83:06:E3:EE:21:27:BD:C0
Certificate issuer: /CN=04E9838264C8C3EFF1299FCE9474ACE037A792A2
Certificate serial: 47217505D2B9C35313F3337BA5323995ABE97C75
Authority key identifier: 04:E9:83:82:64:C8:C3:EF:F1:29:9F:CE:94:74:AC:E0:37:A7:92:A2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/04E9838264C8C3EFF1299FCE9474ACE037A792A2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3KL4b4Kk8PQco6XosP4gGcxY2sbdiyPfJDDzS1vRsaLu/0/323830343a316435303a3a2f33322d3332203d3e20323634333630.roa
Signing time: Tue 29 Oct 2024 16:30:51 +0000
ROA not before: Tue 29 Oct 2024 16:25:51 +0000
ROA not after: Tue 28 Oct 2025 16:30:51 +0000
asID: 264360
IP address blocks: 2804:1d50::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:21:75:05:d2:b9:c3:53:13:f3:33:7b:a5:32:39:95:ab:e9:7c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04E9838264C8C3EFF1299FCE9474ACE037A792A2
Validity
Not Before: Oct 29 16:25:51 2024 GMT
Not After : Oct 28 16:30:51 2025 GMT
Subject: CN=99F4706B64B5E868604D21A68306E3EE2127BDC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:48:25:a8:fd:57:b9:a1:39:f4:00:65:16:58:
74:75:00:a7:a2:3c:0c:c8:9d:c0:0c:af:dd:6e:cb:
42:c8:53:51:6a:f8:8c:15:c7:c0:e8:67:fd:fc:25:
a0:a7:eb:03:67:76:9c:38:a3:f7:0c:ec:59:76:c4:
78:1d:46:ce:cf:41:53:9b:23:c7:89:43:8b:a7:5f:
0a:a3:3f:d0:76:ab:03:f9:58:82:3e:3a:e1:3d:cd:
e0:02:fc:8c:81:12:df:eb:b6:36:ab:9d:12:9f:6e:
b6:ac:05:db:98:d9:08:1e:2f:99:8d:6c:3f:7b:99:
00:d3:a6:99:8f:31:89:e8:8a:35:cc:d4:dd:f1:df:
6b:49:52:8b:5d:1d:a6:6f:1a:cd:45:76:4d:67:bf:
fa:d1:cf:50:a6:04:72:db:68:82:bf:17:ac:d3:69:
fd:9a:d4:d4:1f:f9:96:ee:69:9b:c1:ce:10:83:6e:
d3:c9:d6:4b:8f:7b:83:19:6e:57:bd:92:5a:91:d5:
75:ee:c7:6e:0b:d4:a7:7a:0f:10:e9:2d:e5:29:b8:
d3:a0:f2:01:06:5e:88:35:0a:32:54:2b:85:24:1e:
dc:0f:2f:01:f2:0e:a8:ab:1c:bf:d8:26:8b:fe:43:
17:7f:a4:a2:54:34:52:1f:36:0f:dc:d5:b3:e0:3f:
14:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F4:70:6B:64:B5:E8:68:60:4D:21:A6:83:06:E3:EE:21:27:BD:C0
X509v3 Authority Key Identifier:
keyid:04:E9:83:82:64:C8:C3:EF:F1:29:9F:CE:94:74:AC:E0:37:A7:92:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3KL4b4Kk8PQco6XosP4gGcxY2sbdiyPfJDDzS1vRsaLu/0/04E9838264C8C3EFF1299FCE9474ACE037A792A2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/04E9838264C8C3EFF1299FCE9474ACE037A792A2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KL4b4Kk8PQco6XosP4gGcxY2sbdiyPfJDDzS1vRsaLu/0/323830343a316435303a3a2f33322d3332203d3e20323634333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1d50::/32
Signature Algorithm: sha256WithRSAEncryption
56:bb:82:f2:f6:b1:b6:3b:de:80:4a:03:1e:0b:89:20:e9:8e:
d6:7c:79:97:46:60:ae:aa:39:7a:9c:35:9a:f4:9f:f5:3b:58:
8e:f3:54:7c:ad:50:87:5f:91:14:40:ef:26:ff:e8:4c:dd:2d:
4c:d5:93:4d:32:84:89:dd:35:69:d5:20:92:f7:49:15:8a:5a:
dc:03:ca:ea:7b:57:f1:a3:f2:96:50:b6:8e:b4:04:19:10:ce:
7c:fa:b3:35:32:b0:cc:2a:54:6d:04:25:fb:ed:df:9c:50:1f:
51:42:78:0b:6a:db:cb:f4:38:fc:5a:41:48:da:97:e0:e5:22:
5f:56:91:c6:9a:63:82:d4:f2:3f:74:8e:62:14:d6:8a:de:19:
13:c4:5a:be:ff:39:c4:76:36:0f:79:ed:a6:ff:4d:c2:ca:16:
26:24:38:76:45:07:af:19:0f:fb:30:54:13:0d:1b:9e:08:7c:
b0:83:c3:9f:e5:28:c1:9a:1e:ad:fa:25:d1:7c:83:be:18:aa:
26:f3:8d:8d:b8:0e:fd:37:70:8b:73:c7:e6:0b:7e:2a:0d:20:
d0:b7:18:98:fb:0d:f5:78:66:8b:9d:c4:17:8d:dc:38:db:c7:
20:36:cd:45:ca:cb:c6:47:f7:80:e6:42:ac:13:bc:fb:b6:d2:
da:35:c8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:16:12 2024 by rpki-client on console-ams.rpki-client.org