Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/3eXyo1wWd5ExsHWkVU5244a9vMh3d2ZxYcjRrxg56oNx/0/323830343a363830633a3a2f33322d3332203d3e20323639363637.roa
File: 323830343a363830633a3a2f33322d3332203d3e20323639363637.roa (raw, json)
Hash identifier: Po/2KY8aeUXfiNYKG/YrrlDn1D49pCb8JuXs2KAODv8=
Subject key identifier: B2:0A:39:FC:BF:06:04:B8:87:55:54:35:D7:D6:16:40:B6:2A:95:43
Certificate issuer: /CN=31037FF040C22F66E096B2D5B9EB165D6398002D
Certificate serial: 685B0D95BB745EB20574924DEDF0DE323A188F09
Authority key identifier: 31:03:7F:F0:40:C2:2F:66:E0:96:B2:D5:B9:EB:16:5D:63:98:00:2D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/31037FF040C22F66E096B2D5B9EB165D6398002D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/3eXyo1wWd5ExsHWkVU5244a9vMh3d2ZxYcjRrxg56oNx/0/323830343a363830633a3a2f33322d3332203d3e20323639363637.roa
Signing time: Wed 23 Oct 2024 20:04:24 +0000
ROA not before: Wed 23 Oct 2024 19:59:24 +0000
ROA not after: Wed 22 Oct 2025 20:04:24 +0000
asID: 269667
IP address blocks: 2804:680c::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:5b:0d:95:bb:74:5e:b2:05:74:92:4d:ed:f0:de:32:3a:18:8f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31037FF040C22F66E096B2D5B9EB165D6398002D
Validity
Not Before: Oct 23 19:59:24 2024 GMT
Not After : Oct 22 20:04:24 2025 GMT
Subject: CN=B20A39FCBF0604B887555435D7D61640B62A9543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:86:d2:89:d8:14:13:06:c4:63:68:ae:66:f1:
73:11:ed:4b:31:1a:ef:bd:77:cf:02:87:30:57:5b:
d0:94:bd:45:37:a4:f0:8b:eb:ba:6f:d9:c8:62:2e:
11:01:48:2e:85:6e:c9:cd:54:ba:20:74:74:c1:4c:
50:21:d5:07:a7:83:0a:65:00:4f:11:8a:49:5c:6d:
77:a3:11:47:2b:84:60:00:8e:92:ab:c9:5e:24:22:
5e:e7:fa:d5:c0:7f:66:24:fd:c5:f8:33:f6:d9:c2:
b6:f9:b4:9a:58:c0:0a:b6:ee:14:94:b3:5c:ab:f8:
fb:b9:45:1c:3e:1b:31:1a:fa:ab:ad:98:4f:5a:2a:
01:02:60:2c:8a:b8:ac:80:7a:c8:3a:15:d6:00:b9:
83:94:8a:5d:e9:c9:70:58:89:c5:07:b3:2b:0c:7e:
b3:63:9a:df:99:64:3e:14:85:43:5b:bc:f3:e9:00:
36:ab:fa:57:4c:f3:fe:05:f6:3a:e1:21:6e:a5:d1:
b3:c2:89:5e:37:4f:30:d7:5e:a0:9b:f4:d1:d4:cc:
77:87:03:9d:4f:f1:60:1f:6b:ac:b3:8a:f3:7a:cd:
ff:09:b1:bb:88:4c:ac:d4:08:60:c2:a6:2f:57:83:
e9:84:26:76:27:73:7d:9d:69:8a:6e:4f:ad:a5:d8:
9f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0A:39:FC:BF:06:04:B8:87:55:54:35:D7:D6:16:40:B6:2A:95:43
X509v3 Authority Key Identifier:
keyid:31:03:7F:F0:40:C2:2F:66:E0:96:B2:D5:B9:EB:16:5D:63:98:00:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/3eXyo1wWd5ExsHWkVU5244a9vMh3d2ZxYcjRrxg56oNx/0/31037FF040C22F66E096B2D5B9EB165D6398002D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/31037FF040C22F66E096B2D5B9EB165D6398002D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/3eXyo1wWd5ExsHWkVU5244a9vMh3d2ZxYcjRrxg56oNx/0/323830343a363830633a3a2f33322d3332203d3e20323639363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:680c::/32
Signature Algorithm: sha256WithRSAEncryption
76:4d:14:6e:44:e9:fd:99:14:bf:a3:17:85:4d:93:43:4c:35:
22:e9:fd:7b:45:2f:09:fa:d4:5e:41:de:46:7d:74:c8:6c:8b:
d0:b3:17:24:de:73:6c:45:e4:80:b4:45:29:78:05:cf:82:73:
6b:80:3d:24:56:d0:4b:92:28:37:9e:5d:64:9a:24:9e:27:d9:
3f:73:ad:2e:3a:21:45:47:12:52:88:e7:32:d1:30:d1:78:d0:
42:63:65:fd:7e:c6:ed:84:1e:62:22:24:70:14:f6:e1:38:1d:
4b:58:13:9b:d8:1b:23:88:6a:0d:96:24:b7:29:4c:d1:f9:8b:
34:da:df:92:4c:f5:21:07:88:eb:02:33:e8:30:1e:1c:2a:a3:
bc:54:61:63:06:76:b4:72:ef:7d:94:16:f3:8b:07:2e:64:97:
a0:2c:7b:bf:74:88:87:f9:a0:c6:1e:30:88:01:52:86:92:71:
d0:95:a3:9f:53:37:0d:9a:23:9a:47:ec:67:1a:25:3c:8b:fa:
65:95:99:f9:7f:a6:1e:c4:78:f4:b3:10:3a:29:47:d2:58:e1:
97:98:88:f1:27:de:fc:0d:15:5c:e2:8c:60:20:3b:68:ce:d2:
cd:07:ea:c4:68:a4:c1:b2:32:2c:c1:83:70:1d:07:a4:f2:a4:
35:84:49:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 2 08:39:23 2024 by rpki-client on console-fra.rpki-client.org