Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3XfMyyuGXJ6zvqDaSDXwNCC8ke6QQJbRSqci6RfFGmnN/0/34352e37312e3134302e302f32322d3232203d3e20323636393137.roa
File: 34352e37312e3134302e302f32322d3232203d3e20323636393137.roa (raw, json)
Hash identifier: UYcpnDtxMMzYX/Qyd34xAe/ADFgtVSs9qXTJReimyNc=
Subject key identifier: E7:68:77:BD:ED:E0:E1:AC:A9:6F:61:EC:67:0E:A4:C4:B4:1E:62:ED
Certificate issuer: /CN=0B8669C70E9ED5741CBEC40B6864B185977F0A18
Certificate serial: 281D2A2160AA4FB40D1E47E429511F9FB32894D2
Authority key identifier: 0B:86:69:C7:0E:9E:D5:74:1C:BE:C4:0B:68:64:B1:85:97:7F:0A:18
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0B8669C70E9ED5741CBEC40B6864B185977F0A18.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3XfMyyuGXJ6zvqDaSDXwNCC8ke6QQJbRSqci6RfFGmnN/0/34352e37312e3134302e302f32322d3232203d3e20323636393137.roa
Signing time: Wed 02 Oct 2024 19:33:01 +0000
ROA not before: Wed 02 Oct 2024 19:28:01 +0000
ROA not after: Wed 01 Oct 2025 19:33:01 +0000
asID: 266917
IP address blocks: 45.71.140.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:1d:2a:21:60:aa:4f:b4:0d:1e:47:e4:29:51:1f:9f:b3:28:94:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0B8669C70E9ED5741CBEC40B6864B185977F0A18
Validity
Not Before: Oct 2 19:28:01 2024 GMT
Not After : Oct 1 19:33:01 2025 GMT
Subject: CN=E76877BDEDE0E1ACA96F61EC670EA4C4B41E62ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:cd:dc:9f:92:5a:5a:f0:76:00:93:f5:ee:
63:74:33:ec:54:ef:96:31:a9:4e:c3:9d:66:91:c8:
e3:43:a5:74:9e:df:5b:55:fa:cc:0f:b0:ec:ae:91:
63:c7:a6:83:5a:2c:04:e5:d7:60:7e:cd:22:c0:94:
6c:dc:7b:75:e1:20:e1:6b:37:2e:33:52:87:dc:75:
cf:54:f3:fd:c0:da:fa:39:71:41:53:a9:3e:91:21:
7d:1a:2c:5f:43:25:a9:1b:8c:5d:f6:dc:6e:e1:80:
a6:68:64:d4:e3:d8:0d:94:d9:f1:62:ee:1f:5a:40:
49:97:f2:29:83:b3:e7:3a:bb:90:0a:1a:22:87:17:
7d:46:20:e8:b8:13:69:97:d8:0a:1b:53:1e:25:e9:
d7:61:96:74:62:9b:c3:e9:34:84:17:fc:f7:37:e1:
66:0a:86:85:dd:7d:04:79:78:b4:83:a2:53:be:c1:
a0:79:f1:eb:7a:5b:7e:de:41:29:fe:98:ce:43:92:
f6:ec:a7:12:46:09:a9:7b:56:a9:00:d0:81:53:ce:
21:7c:58:74:27:2e:61:47:41:0e:96:30:50:29:26:
1f:6f:26:e7:1c:19:db:d3:8e:c4:92:e1:e5:47:eb:
0a:17:8e:7e:b5:a6:95:a8:2c:b5:69:9d:74:7f:62:
7b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:68:77:BD:ED:E0:E1:AC:A9:6F:61:EC:67:0E:A4:C4:B4:1E:62:ED
X509v3 Authority Key Identifier:
keyid:0B:86:69:C7:0E:9E:D5:74:1C:BE:C4:0B:68:64:B1:85:97:7F:0A:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3XfMyyuGXJ6zvqDaSDXwNCC8ke6QQJbRSqci6RfFGmnN/0/0B8669C70E9ED5741CBEC40B6864B185977F0A18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0B8669C70E9ED5741CBEC40B6864B185977F0A18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3XfMyyuGXJ6zvqDaSDXwNCC8ke6QQJbRSqci6RfFGmnN/0/34352e37312e3134302e302f32322d3232203d3e20323636393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.140.0/22
Signature Algorithm: sha256WithRSAEncryption
63:39:fa:5b:ac:ba:f4:8f:13:c4:20:32:14:59:d2:9d:4f:08:
7d:cc:49:ec:9f:8d:8b:2a:0d:32:dc:e9:a3:3d:62:1c:1f:35:
1d:16:27:73:9b:b5:19:5e:72:93:d3:d1:61:51:68:3c:f1:1e:
64:e9:93:4a:d7:6a:58:d2:ff:c7:a1:09:81:01:41:f0:f9:f5:
7b:b7:13:84:29:18:86:ad:2d:eb:81:e8:70:be:c6:ff:12:c1:
e5:71:f5:37:45:5d:85:6d:94:1f:2c:a4:f5:21:23:39:33:ad:
30:95:0c:3e:5f:c0:73:d2:68:4f:8d:3a:41:cd:89:60:9a:a4:
d7:5e:15:3d:8f:22:69:65:a5:65:6c:3c:13:78:aa:40:cd:4d:
76:e8:f3:11:33:4b:20:67:78:4f:0a:b1:b0:8f:10:dd:dc:eb:
c4:90:1d:25:7a:47:5f:37:f9:7a:02:4d:84:a9:af:99:1f:12:
d5:14:32:d4:24:68:e1:5b:88:c1:46:1b:45:42:99:46:f6:79:
7e:54:18:77:53:33:90:46:28:8c:bb:1f:f1:d9:d5:ec:94:56:
35:77:f9:ce:82:b8:15:8b:fd:62:02:8b:71:6a:73:50:ea:e4:
97:ad:d6:a8:1c:59:95:00:4e:e5:f3:e2:74:a8:72:60:a6:7f:
5c:77:39:2e
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUKB0qIWCqT7QNHkfkKVEfn7MolNIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEI4NjY5QzcwRTlFRDU3NDFDQkVDNDBCNjg2NEIxODU5
NzdGMEExODAeFw0yNDEwMDIxOTI4MDFaFw0yNTEwMDExOTMzMDFaMDMxMTAvBgNV
BAMTKEU3Njg3N0JERURFMEUxQUNBOTZGNjFFQzY3MEVBNEM0QjQxRTYyRUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8p83cn5JaWvB2AJP17mN0M+xU
75YxqU7DnWaRyONDpXSe31tV+swPsOyukWPHpoNaLATl12B+zSLAlGzce3XhIOFr
Ny4zUofcdc9U8/3A2vo5cUFTqT6RIX0aLF9DJakbjF323G7hgKZoZNTj2A2U2fFi
7h9aQEmX8imDs+c6u5AKGiKHF31GIOi4E2mX2AobUx4l6ddhlnRim8PpNIQX/Pc3
4WYKhoXdfQR5eLSDolO+waB58et6W37eQSn+mM5DkvbspxJGCal7VqkA0IFTziF8
WHQnLmFHQQ6WMFApJh9vJuccGdvTjsSS4eVH6woXjn61ppWoLLVpnXR/YnsVAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQU52h3ve3g4aypb2HsZw6kxLQeYu0wHwYDVR0j
BBgwFoAUC4Zpxw6e1XQcvsQLaGSxhZd/ChgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM1hmTXl5dUdYSjZ6dnFEYVNEWHdOQ0M4a2U2UVFKYlJTcWNpNlJmRkdt
bk4vMC8wQjg2NjlDNzBFOUVENTc0MUNCRUM0MEI2ODY0QjE4NTk3N0YwQTE4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzBCODY2OUM3MEU5RUQ1NzQx
Q0JFQzQwQjY4NjRCMTg1OTc3RjBBMTguY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNYZk15eXVHWEo2enZxRGFTRFh3TkNDOGtlNlFRSmJSU3FjaTZSZkZHbW5OLzAv
MzQzNTJlMzczMTJlMzEzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM2
MzkzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCLUeMMA0GCSqGSIb3DQEBCwUAA4IBAQBjOfpbrLr0
jxPEIDIUWdKdTwh9zEnsn42LKg0y3OmjPWIcHzUdFidzm7UZXnKT09FhUWg88R5k
6ZNK12pY0v/HoQmBAUHw+fV7txOEKRiGrS3rgehwvsb/EsHlcfU3RV2FbZQfLKT1
ISM5M60wlQw+X8Bz0mhPjTpBzYlgmqTXXhU9jyJpZaVlbDwTeKpAzU126PMRM0sg
Z3hPCrGwjxDd3OvEkB0lekdfN/l6Ak2Eqa+ZHxLVFDLUJGjhW4jBRhtFQplG9nl+
VBh3UzOQRiiMux/x2dXslFY1d/nOgrgVi/1iAotxanNQ6uSXrdaoHFmVAE7l8+J0
qHJgpn9cdzku
-----END CERTIFICATE-----
Generated at Tue Apr 15 06:13:15 2025 by rpki-client