Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS266201.roa
File: AS266201.roa (raw, json)
Hash identifier: 1IQ/6zckQ9KNZLfhc25MBjOv25kuvD1+13h+gPB7Mdo=
Subject key identifier: AA:D0:72:7E:33:18:F8:68:10:17:A4:87:81:A3:E0:C5:CF:64:15:3A
Certificate issuer: /CN=D7B86B5B6E0677EED89A37670E1D04CE759EFB26
Certificate serial: 72E97F0837BB597CA8080F06BE97F9876DE1CAF1
Authority key identifier: D7:B8:6B:5B:6E:06:77:EE:D8:9A:37:67:0E:1D:04:CE:75:9E:FB:26
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS266201.roa
Signing time: Tue 23 Jul 2024 12:10:36 +0000
ROA not before: Tue 23 Jul 2024 12:05:36 +0000
ROA not after: Tue 22 Jul 2025 12:10:36 +0000
asID: 266201
IP address blocks: 138.94.32.0/22 maxlen: 24
192.140.32.0/22 maxlen: 24
2804:3c48::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:e9:7f:08:37:bb:59:7c:a8:08:0f:06:be:97:f9:87:6d:e1:ca:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7B86B5B6E0677EED89A37670E1D04CE759EFB26
Validity
Not Before: Jul 23 12:05:36 2024 GMT
Not After : Jul 22 12:10:36 2025 GMT
Subject: CN=AAD0727E3318F8681017A48781A3E0C5CF64153A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:d9:3d:2a:45:10:67:81:62:81:5f:f4:bf:
c7:f9:62:55:ce:87:40:d6:ce:8d:12:a0:8a:2b:a1:
ce:99:a7:b1:32:eb:99:05:10:b6:4a:e5:52:93:00:
0b:17:80:0f:b3:d0:50:fb:ef:d5:fd:30:07:29:e1:
ef:46:c9:c8:f1:1a:ae:7e:97:32:5a:b3:8d:53:62:
19:c8:ad:66:ca:7d:55:ba:8f:84:d9:60:ea:52:c0:
8f:c6:85:d8:97:dc:04:da:84:32:51:38:8c:6f:ca:
0d:ed:c2:76:26:e1:cf:ee:55:76:73:38:39:6b:7b:
c6:2e:0b:bc:37:50:b5:47:ac:58:a1:bf:b1:a4:ee:
42:3e:c2:a9:83:f7:e6:95:4f:ae:ba:cf:4b:53:08:
eb:ec:f2:fd:98:d3:4d:1e:06:c3:5d:25:48:66:d9:
a7:35:8c:e2:ec:d4:13:6c:a6:96:be:01:5d:0c:4c:
d8:2f:5b:69:f6:d3:4c:39:aa:be:f3:7a:ca:36:3d:
de:65:f5:66:1d:6c:92:f0:5a:64:30:d1:9d:bb:00:
f2:86:9a:e5:71:6f:d0:be:5b:fa:57:c8:6f:34:83:
1c:7f:9f:99:7a:00:48:34:05:d4:6f:98:f6:88:dd:
d2:4b:c4:6c:17:f8:7a:ec:f9:83:df:ae:14:24:65:
f2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D0:72:7E:33:18:F8:68:10:17:A4:87:81:A3:E0:C5:CF:64:15:3A
X509v3 Authority Key Identifier:
keyid:D7:B8:6B:5B:6E:06:77:EE:D8:9A:37:67:0E:1D:04:CE:75:9E:FB:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS266201.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.94.32.0/22
192.140.32.0/22
IPv6:
2804:3c48::/32
Signature Algorithm: sha256WithRSAEncryption
52:cd:15:a7:6f:00:70:1d:cd:25:62:8f:17:55:e1:4e:ce:e2:
c0:a0:bc:3b:1b:a6:55:b1:5a:e0:a2:e2:54:d4:60:70:39:07:
0c:e4:8b:dc:3b:94:03:fd:fd:c8:ea:b6:4b:27:78:d1:19:a1:
fa:db:1c:b7:2f:9d:ab:d7:c4:cc:a5:9d:c7:2c:0a:be:f2:3a:
0d:03:d7:69:2b:ea:05:dc:76:a7:14:63:2a:34:0b:74:1d:b6:
cd:53:e2:be:56:71:9d:1e:3e:27:75:8c:ad:0d:67:61:54:fe:
be:a2:30:9e:da:02:00:47:0e:89:63:4d:97:2f:87:4c:5d:fe:
c7:6b:d9:57:27:a3:66:f9:b9:b2:6b:f5:43:02:92:e4:c3:3a:
76:1d:1c:f8:36:7b:2b:13:6c:d1:7d:4b:2a:ce:7a:45:a4:6e:
91:10:57:f5:40:5e:4b:57:e0:2c:5e:48:35:c5:da:ad:1a:eb:
39:40:90:fe:4b:02:75:79:fd:89:f2:1f:0d:55:fa:4b:3c:a6:
1b:c0:18:aa:9b:db:4e:79:df:3a:ed:2c:a3:bb:d1:14:1d:6b:
c2:10:9d:d7:f6:15:50:c5:e2:60:a4:29:0b:19:ac:7d:b2:09:
9c:05:53:36:75:94:bd:fb:a9:8c:88:d9:90:6c:a1:ef:24:18:
cc:f6:60:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 15:16:06 2024 by rpki-client on console-fra.rpki-client.org