Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
File: 323830343a386531303a3a2f33322d3332203d3e20323733343030.roa (raw, json)
Hash identifier: bvHJxpcdi+iaMP200xsLH2mKMkS8BYu1GX+URQSAFC0=
Subject key identifier: 86:B7:E3:C4:2A:28:37:8B:94:29:6C:59:72:0F:B2:94:04:EB:EC:34
Certificate issuer: /CN=58F334CA488715B82B6E5489B453146BF7CC0A9C
Certificate serial: 44B1A6A4B0E1D4F43C830D1FDBF96824AF4549DA
Authority key identifier: 58:F3:34:CA:48:87:15:B8:2B:6E:54:89:B4:53:14:6B:F7:CC:0A:9C
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/58F334CA488715B82B6E5489B453146BF7CC0A9C.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
Signing time: Thu 08 Aug 2024 13:50:32 +0000
ROA not before: Thu 08 Aug 2024 13:45:32 +0000
ROA not after: Thu 07 Aug 2025 13:50:32 +0000
asID: 273400
IP address blocks: 2804:8e10::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:b1:a6:a4:b0:e1:d4:f4:3c:83:0d:1f:db:f9:68:24:af:45:49:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58F334CA488715B82B6E5489B453146BF7CC0A9C
Validity
Not Before: Aug 8 13:45:32 2024 GMT
Not After : Aug 7 13:50:32 2025 GMT
Subject: CN=86B7E3C42A28378B94296C59720FB29404EBEC34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:00:ff:e2:a9:76:84:1a:13:c9:5f:50:0c:6f:
1a:f0:c8:43:55:44:08:0b:24:2a:b6:1d:f4:d8:e7:
c0:22:d0:24:42:a3:95:f2:b2:a9:9e:2a:1c:c7:08:
0b:dd:cc:49:f7:3f:ac:fe:43:15:af:d7:49:65:1d:
72:96:bc:ee:d4:37:1b:f6:e7:9d:6b:5c:33:fb:96:
51:20:59:8f:08:91:e8:66:95:98:7c:0a:6d:22:79:
88:71:0e:69:f0:bf:15:01:49:3c:40:3c:45:3a:e2:
04:be:6f:a1:ed:1d:f0:5f:7b:a4:86:29:88:8b:c7:
6a:dc:d9:ea:3e:5b:14:90:88:7e:2f:ef:86:bd:58:
df:7b:d8:cd:8b:36:b3:64:37:92:ce:09:43:0e:de:
5f:ba:8b:8d:fa:83:49:c6:73:e8:30:9b:b4:a0:89:
b3:44:72:6c:74:26:fb:f1:a5:0f:0e:49:be:80:a0:
be:77:17:8a:40:2e:39:8b:8b:18:10:23:ab:4f:c8:
2d:9c:36:a6:ec:82:65:93:ff:7d:90:09:3a:c5:c5:
e4:d2:44:00:9c:3b:18:c6:1c:3b:16:c9:ff:a8:6b:
04:ac:5f:9d:97:dd:3b:4c:e7:ce:7a:43:c1:09:bc:
fb:7b:f1:08:79:78:45:3a:3d:f9:9c:aa:5a:b1:a5:
85:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B7:E3:C4:2A:28:37:8B:94:29:6C:59:72:0F:B2:94:04:EB:EC:34
X509v3 Authority Key Identifier:
keyid:58:F3:34:CA:48:87:15:B8:2B:6E:54:89:B4:53:14:6B:F7:CC:0A:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/58F334CA488715B82B6E5489B453146BF7CC0A9C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/58F334CA488715B82B6E5489B453146BF7CC0A9C.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3bd7mmKj1NtLVCaQALxUsEFChyuBLogdirhQq3jGKQq1/0/323830343a386531303a3a2f33322d3332203d3e20323733343030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8e10::/32
Signature Algorithm: sha256WithRSAEncryption
98:4b:58:8e:d4:39:02:ab:78:bc:cf:91:5f:68:65:e7:64:bb:
1d:c8:ca:6e:b2:58:64:11:a2:1c:2e:0d:75:ca:10:2d:98:c2:
48:a0:85:9a:78:47:13:b9:01:d3:8d:52:a5:87:39:1e:2d:03:
5b:9b:23:d9:64:25:0f:ac:de:50:cf:42:92:55:69:30:ee:06:
0c:5c:19:5f:a2:b0:0f:b0:df:33:1d:cc:55:ee:ae:62:5f:2e:
a6:f3:6c:44:68:9a:65:a6:76:df:0b:21:e2:fe:df:f0:b2:31:
67:23:8c:f1:ab:83:36:ef:d2:d0:1a:8f:b7:2e:99:d4:71:a0:
f3:74:49:77:56:c0:2e:82:e9:ba:dc:fa:39:08:8e:2a:6a:f6:
1b:8d:a4:e2:e1:a4:d7:bf:f1:42:c9:72:26:7b:d6:16:00:ee:
42:50:f1:b3:90:34:91:86:92:39:ec:21:8b:fc:1f:cc:3c:a7:
fd:74:89:07:70:ce:84:2e:53:28:d6:8e:56:1f:8a:4b:cd:a2:
fe:9b:99:f1:57:14:08:64:8c:b9:c9:f8:12:94:59:d4:f2:b3:
52:47:66:8b:b4:b9:6b:bf:5d:a8:80:44:fe:dc:08:84:fa:c6:
b0:2e:3f:1d:66:5d:c3:80:af:2b:a0:23:d8:7e:fa:7c:bf:6e:
83:52:51:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 08:19:22 2024 by rpki-client on console-fra.rpki-client.org