Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS28211.roa
File: AS28211.roa (raw, json)
Hash identifier: gXhP+2RJj+BjetVyZykp9jC54hML6turnQoqEjjVhIQ=
Subject key identifier: 3F:5C:B2:E5:21:01:7F:01:B3:D8:D9:5C:03:49:1B:04:87:B4:67:1E
Certificate issuer: /CN=D7B86B5B6E0677EED89A37670E1D04CE759EFB26
Certificate serial: 24DD6536B1E58645EDAE8C3E2A17EF9379B07A8A
Authority key identifier: D7:B8:6B:5B:6E:06:77:EE:D8:9A:37:67:0E:1D:04:CE:75:9E:FB:26
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS28211.roa
Signing time: Tue 23 Jul 2024 12:10:32 +0000
ROA not before: Tue 23 Jul 2024 12:05:32 +0000
ROA not after: Tue 22 Jul 2025 12:10:32 +0000
asID: 28211
IP address blocks: 189.113.80.0/20 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:dd:65:36:b1:e5:86:45:ed:ae:8c:3e:2a:17:ef:93:79:b0:7a:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7B86B5B6E0677EED89A37670E1D04CE759EFB26
Validity
Not Before: Jul 23 12:05:32 2024 GMT
Not After : Jul 22 12:10:32 2025 GMT
Subject: CN=3F5CB2E521017F01B3D8D95C03491B0487B4671E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c3:8f:01:4a:05:84:58:87:c9:ca:84:75:81:
8b:1d:15:38:45:52:23:9a:d5:63:c2:5a:58:4c:06:
f7:1c:58:95:7b:a3:b7:0a:e5:ad:88:fe:0f:10:9d:
42:60:26:aa:ce:2f:08:b1:06:64:b0:dd:32:cd:b9:
45:a7:89:29:6a:5f:7d:f3:b5:36:d8:3d:26:3c:e9:
69:c3:21:ab:1e:77:f2:77:65:3c:b3:98:be:ff:02:
07:94:fd:77:c5:ef:44:97:7d:84:dc:c1:76:21:11:
78:ce:81:68:be:0a:50:33:60:73:6a:14:1d:14:08:
8b:b0:93:b3:af:2e:56:9d:f6:e0:64:20:88:fd:ae:
6d:d1:73:93:12:cf:52:98:8f:dd:63:82:81:21:8a:
c4:8e:fc:c5:33:7b:21:65:1d:22:00:b3:96:71:c4:
07:7f:3b:d4:3c:f7:f1:56:f4:3a:d7:ab:3f:46:22:
63:9b:ef:ee:c1:7a:df:43:41:53:8f:21:c3:21:b0:
e1:a8:d4:54:12:0a:40:6c:44:bb:c7:a5:58:32:5e:
22:e6:39:95:13:cf:69:2d:2e:5c:ff:81:10:7c:4a:
b5:e0:21:e4:cf:17:ba:05:9b:f7:91:88:94:bd:71:
f9:c3:9f:9e:7b:eb:c0:35:e7:87:e1:68:38:11:68:
0e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:5C:B2:E5:21:01:7F:01:B3:D8:D9:5C:03:49:1B:04:87:B4:67:1E
X509v3 Authority Key Identifier:
keyid:D7:B8:6B:5B:6E:06:77:EE:D8:9A:37:67:0E:1D:04:CE:75:9E:FB:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D7B86B5B6E0677EED89A37670E1D04CE759EFB26.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/2/AS28211.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.113.80.0/20
Signature Algorithm: sha256WithRSAEncryption
65:ea:32:3d:f5:f9:6b:74:79:07:51:40:aa:1a:54:85:a6:27:
2a:be:0f:41:87:1f:c8:5b:76:dd:17:46:cf:2c:87:06:c9:83:
d8:95:f2:ec:8e:db:13:5a:e0:9b:95:01:e8:44:07:5a:a4:81:
72:9b:a7:7c:0d:7e:94:54:87:b2:02:a1:4a:78:07:1b:52:3a:
7f:3f:45:6f:93:71:87:c9:e7:8c:82:22:0f:68:d5:b3:e6:9d:
33:23:53:bb:0b:4e:a9:2a:c7:cd:bb:dd:ef:d7:c4:12:10:3c:
63:ea:47:f1:50:42:cd:a7:7b:8a:8c:39:58:d5:0c:78:0e:e6:
d3:e0:0e:c9:43:7d:fe:03:47:83:4e:ed:9c:b0:0b:18:18:ef:
20:d3:36:22:0d:78:e2:73:d7:cd:f6:ef:16:c0:0e:82:75:ec:
1d:9d:6a:70:72:be:65:82:d4:f5:51:c1:0d:c2:6a:05:f9:12:
16:68:86:39:ce:44:d3:51:57:9f:fa:6c:81:82:dc:bd:7e:b3:
e0:80:41:5b:81:c4:51:63:6b:13:9c:58:97:45:3a:de:24:7e:
2e:13:16:0a:86:0a:a6:55:8b:f2:56:83:0b:c8:71:1d:a3:69:
8e:e6:76:ad:f2:fb:9c:ba:94:df:ce:59:59:31:f4:d6:46:49:
c7:7e:41:ed
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUJN1lNrHlhkXtrow+Khfvk3mweoowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDdCODZCNUI2RTA2NzdFRUQ4OUEzNzY3MEUxRDA0Q0U3
NTlFRkIyNjAeFw0yNDA3MjMxMjA1MzJaFw0yNTA3MjIxMjEwMzJaMDMxMTAvBgNV
BAMTKDNGNUNCMkU1MjEwMTdGMDFCM0Q4RDk1QzAzNDkxQjA0ODdCNDY3MUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPw48BSgWEWIfJyoR1gYsdFThF
UiOa1WPCWlhMBvccWJV7o7cK5a2I/g8QnUJgJqrOLwixBmSw3TLNuUWniSlqX33z
tTbYPSY86WnDIased/J3ZTyzmL7/AgeU/XfF70SXfYTcwXYhEXjOgWi+ClAzYHNq
FB0UCIuwk7OvLlad9uBkIIj9rm3Rc5MSz1KYj91jgoEhisSO/MUzeyFlHSIAs5Zx
xAd/O9Q89/FW9DrXqz9GImOb7+7Bet9DQVOPIcMhsOGo1FQSCkBsRLvHpVgyXiLm
OZUTz2ktLlz/gRB8SrXgIeTPF7oFm/eRiJS9cfnDn55768A154fhaDgRaA7dAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUP1yy5SEBfwGz2NlcA0kbBIe0Zx4wHwYDVR0j
BBgwFoAU17hrW24Gd+7YmjdnDh0EznWe+yYwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU
Y3kvMi9EN0I4NkI1QjZFMDY3N0VFRDg5QTM3NjcwRTFEMDRDRTc1OUVGQjI2LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q3Qjg2QjVCNkUwNjc3RUVE
ODlBMzc2NzBFMUQwNENFNzU5RUZCMjYuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr
BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK
NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8yL0FTMjgy
MTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAS9cVAwDQYJKoZIhvcNAQELBQADggEBAGXqMj31+Wt0eQdR
QKoaVIWmJyq+D0GHH8hbdt0XRs8shwbJg9iV8uyO2xNa4JuVAehEB1qkgXKbp3wN
fpRUh7ICoUp4BxtSOn8/RW+TcYfJ54yCIg9o1bPmnTMjU7sLTqkqx8273e/XxBIQ
PGPqR/FQQs2ne4qMOVjVDHgO5tPgDslDff4DR4NO7ZywCxgY7yDTNiINeOJz1832
7xbADoJ17B2danByvmWC1PVRwQ3CagX5EhZohjnORNNRV5/6bIGC3L1+s+CAQVuB
xFFjaxOcWJdFOt4kfi4TFgqGCqZVi/JWgwvIcR2jaY7mdq3y+5y6lN/OWVkx9NZG
Scd+Qe0=
-----END CERTIFICATE-----
Generated at Wed Nov 6 17:42:02 2024 by rpki-client on console-ams.rpki-client.org