Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/46z5DuL8Aio3sZtEJmsPidWRHgkHL3unkxxcCTMydCAY/1/3137372e36362e3135322e302f32332d3233203d3e20323632343939.roa
File: 3137372e36362e3135322e302f32332d3233203d3e20323632343939.roa (raw, json)
Hash identifier: szNNtCNnjsORqs6P6lequjtDSRNgzjx1EHAehu47jc0=
Subject key identifier: CA:8A:19:1D:D1:92:DA:A1:4E:5A:CF:DF:10:4D:7F:E3:65:08:8C:83
Certificate issuer: /CN=58A326D864653DAE8BEF3AC41D8B9CB70EBDD1C8
Certificate serial: 77082A6027284DEBF8D72642248B77C57497D5CF
Authority key identifier: 58:A3:26:D8:64:65:3D:AE:8B:EF:3A:C4:1D:8B:9C:B7:0E:BD:D1:C8
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/58A326D864653DAE8BEF3AC41D8B9CB70EBDD1C8.cer
Subject info access: rsync://rpki-repo.registro.br/repo/46z5DuL8Aio3sZtEJmsPidWRHgkHL3unkxxcCTMydCAY/1/3137372e36362e3135322e302f32332d3233203d3e20323632343939.roa
Signing time: Wed 05 Mar 2025 19:00:00 +0000
ROA not before: Wed 05 Mar 2025 18:55:00 +0000
ROA not after: Wed 04 Mar 2026 19:00:00 +0000
asID: 262499
IP address blocks: 177.66.152.0/23 maxlen: 23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:08:2a:60:27:28:4d:eb:f8:d7:26:42:24:8b:77:c5:74:97:d5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58A326D864653DAE8BEF3AC41D8B9CB70EBDD1C8
Validity
Not Before: Mar 5 18:55:00 2025 GMT
Not After : Mar 4 19:00:00 2026 GMT
Subject: CN=CA8A191DD192DAA14E5ACFDF104D7FE365088C83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:49:5f:e7:7e:6c:ff:34:e2:96:1e:63:71:45:
40:34:2d:d1:07:18:e7:cc:68:00:ed:a4:8a:09:e1:
43:4f:57:f9:a8:ab:36:3a:52:2d:5e:b0:1e:13:09:
2b:14:97:82:47:05:8a:da:10:a2:ee:5f:fc:73:a0:
87:5b:62:b1:2d:2d:46:ec:34:64:4f:14:fa:65:d4:
f0:7d:1d:66:71:e8:08:6a:e8:78:f1:f7:99:6d:3b:
e6:8f:a5:0b:dc:df:9b:e8:b7:3f:eb:0f:73:11:23:
38:bb:f1:d8:72:a4:0e:ff:28:ac:06:bc:f6:29:70:
88:c5:37:28:ad:01:ea:2b:1d:ab:9f:b5:51:3b:2d:
60:c8:df:31:ae:17:92:b5:b0:c3:ca:13:5a:21:14:
3e:0d:2e:18:75:0b:dc:bb:0c:ed:da:c6:fe:57:98:
a6:28:27:2e:99:0a:9f:e0:5c:d8:df:47:a4:fd:b0:
03:5e:29:e3:8b:af:60:f9:11:0f:98:2c:cb:4f:2b:
21:c0:65:be:75:e1:63:8b:13:fd:e6:7c:77:14:cd:
1c:2a:bb:3f:34:9e:de:13:d6:72:8e:9c:6a:05:f2:
b0:28:14:95:ac:c8:55:d4:b6:93:17:64:d7:0d:fa:
f8:58:f0:f6:e6:30:de:51:0c:5f:cc:db:9e:e6:05:
bc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8A:19:1D:D1:92:DA:A1:4E:5A:CF:DF:10:4D:7F:E3:65:08:8C:83
X509v3 Authority Key Identifier:
keyid:58:A3:26:D8:64:65:3D:AE:8B:EF:3A:C4:1D:8B:9C:B7:0E:BD:D1:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/46z5DuL8Aio3sZtEJmsPidWRHgkHL3unkxxcCTMydCAY/1/58A326D864653DAE8BEF3AC41D8B9CB70EBDD1C8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/58A326D864653DAE8BEF3AC41D8B9CB70EBDD1C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/46z5DuL8Aio3sZtEJmsPidWRHgkHL3unkxxcCTMydCAY/1/3137372e36362e3135322e302f32332d3233203d3e20323632343939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.66.152.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:99:41:f9:21:a3:1b:73:8b:e3:8f:5f:04:3c:06:4e:93:ae:
9e:5d:d0:ca:7f:ab:bf:ba:85:0a:fa:08:ad:07:1b:ee:5b:e7:
5c:9d:6a:19:28:de:9b:4d:51:d1:13:32:29:0c:57:69:56:36:
ae:08:bf:8b:69:f0:2f:35:7a:f2:77:ba:49:5a:26:e3:d8:2b:
7f:9f:3b:9d:52:3b:d2:56:03:6e:93:ce:e3:2c:a2:df:a2:48:
ec:ed:0a:06:6f:03:b4:ae:40:79:6b:e0:ce:86:f4:cc:2c:8b:
88:39:be:64:ed:e9:bd:23:18:db:b8:e8:b4:ef:be:9d:b1:76:
6e:fe:f4:b7:0a:ed:76:1f:48:c8:bd:04:ad:4c:56:04:13:45:
41:69:a5:d7:6e:a9:5e:06:85:d4:b9:95:a5:0b:b2:2e:bb:4b:
6b:3d:ea:62:af:6d:c9:ca:01:a2:7f:4e:6b:4f:af:22:a9:c6:
f5:83:66:ed:dd:30:af:0c:a6:4f:f7:84:b8:96:80:c5:d4:3c:
87:aa:78:04:18:4d:81:07:a6:5c:22:6e:c8:79:af:50:16:e6:
17:dd:30:0c:e9:4d:ad:89:0e:62:81:15:54:0f:ab:2a:fc:1c:
a5:c1:3c:16:ce:23:bb:b7:16:5d:28:1b:9d:41:b6:f9:db:8c:
88:af:f0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:51:41 2025 by rpki-client