Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
File: 3138392e35302e3134342e302f32302d3230203d3e203238323730.roa (raw, json)
Hash identifier: LEaOmSTUyZ1i3QeS+gap2zw/tekKP5DDODP8DBIWzl4=
Subject key identifier: 77:1A:AA:14:E8:8D:AA:65:C8:86:1F:52:40:D0:AD:AC:77:0D:1D:C6
Certificate issuer: /CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Certificate serial: 7B17F1DD3DC5D297C516CD854E93CD48E4866810
Authority key identifier: 7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
Signing time: Mon 14 Oct 2024 01:49:48 +0000
ROA not before: Mon 14 Oct 2024 01:44:48 +0000
ROA not after: Mon 13 Oct 2025 01:49:48 +0000
asID: 28270
IP address blocks: 189.50.144.0/20 maxlen: 20
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:17:f1:dd:3d:c5:d2:97:c5:16:cd:85:4e:93:cd:48:e4:86:68:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CAD7FBEB62D41BEDEB82049A836E467615886FC
Validity
Not Before: Oct 14 01:44:48 2024 GMT
Not After : Oct 13 01:49:48 2025 GMT
Subject: CN=771AAA14E88DAA65C8861F5240D0ADAC770D1DC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3f:7c:47:0f:9b:3a:ae:a4:aa:6a:0a:cc:e6:
a0:21:e3:5d:1f:ec:11:26:41:3d:eb:bf:8d:fe:fc:
0a:ba:f7:f7:74:ac:1a:fb:fb:a0:4b:d1:f8:e2:6f:
a6:9e:df:9a:28:90:13:58:52:d1:0e:b5:73:a3:13:
1a:f9:87:60:c4:6f:12:46:c2:29:23:cf:f9:59:c9:
c5:42:4b:b7:ae:0d:32:b3:5f:ad:62:21:3a:08:ee:
14:85:cc:e8:ae:c1:94:ae:ac:84:10:f6:8a:01:78:
80:be:b5:d1:93:84:e6:57:e9:26:d6:f9:04:09:fd:
17:39:90:e0:41:62:cf:01:9d:ff:b5:90:b8:02:fe:
de:d0:b0:91:9c:6b:2a:f3:c4:65:42:60:20:a0:8d:
5d:0b:b3:42:37:34:d1:c6:0e:90:34:cc:c1:25:d8:
a2:ba:a9:6a:e1:1e:c6:29:8c:9d:78:e4:f8:84:e5:
d5:47:ea:8d:82:5e:8d:f1:0e:05:27:db:12:78:31:
7d:fe:76:ca:5d:55:fc:a0:2a:b4:16:dd:70:0f:aa:
0e:c3:b3:53:82:8c:f3:db:b7:94:af:ea:c5:59:16:
cc:6c:15:1e:74:43:70:06:fc:e6:2b:14:77:a0:07:
6c:40:e3:4e:17:ce:9a:5f:9f:4c:ef:aa:11:66:6d:
a6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1A:AA:14:E8:8D:AA:65:C8:86:1F:52:40:D0:AD:AC:77:0D:1D:C6
X509v3 Authority Key Identifier:
keyid:7C:AD:7F:BE:B6:2D:41:BE:DE:B8:20:49:A8:36:E4:67:61:58:86:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/7CAD7FBEB62D41BEDEB82049A836E467615886FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7CAD7FBEB62D41BEDEB82049A836E467615886FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/3138392e35302e3134342e302f32302d3230203d3e203238323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.50.144.0/20
Signature Algorithm: sha256WithRSAEncryption
83:f7:ca:f3:bc:cc:1a:77:2c:c8:c0:3b:e2:9f:e2:95:a0:d9:
d8:90:f9:a8:7c:09:d8:c4:ed:fb:d8:d4:fe:18:68:a7:5c:6c:
dc:d5:84:51:46:c4:f8:96:06:55:7e:7f:18:a1:ba:a2:82:52:
ef:44:c0:8b:08:0f:64:3f:27:0f:09:65:4b:5e:aa:d6:c7:e3:
67:01:28:18:6f:5d:5a:44:8a:97:ac:c4:78:e4:9c:2f:ca:a3:
88:2e:35:99:a3:0a:0e:1d:23:69:2e:c4:18:f4:61:4d:8c:d4:
f4:a5:5e:96:16:6f:79:28:33:c3:4e:7c:be:8b:f0:4f:ba:de:
f7:4b:2e:94:ac:fb:f2:90:a5:37:a0:0d:da:eb:e5:71:25:c4:
71:3b:6d:de:55:e7:4f:23:31:79:6a:80:08:70:2b:05:de:cf:
02:28:b4:70:e6:8c:e1:dc:d2:80:54:69:2a:5f:5c:62:99:4c:
3e:09:0e:27:41:03:d8:bb:c9:9c:9d:c3:3c:96:b5:06:9c:2b:
b4:eb:d2:b5:34:60:24:e9:1a:9b:6d:3b:45:90:5e:56:9f:39:
f3:33:6b:d6:54:85:7b:bf:9b:e8:14:aa:7c:93:8a:eb:29:16:
05:bc:a5:b8:eb:ca:38:87:e9:14:15:22:19:15:44:78:e0:52:
6f:f7:66:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 15:16:06 2024 by rpki-client on console-fra.rpki-client.org