Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
File: 3133382e39342e382e302f32322d3332203d3e203238333630.roa (raw, json)
Hash identifier: BkV3iRTJdNA2GK7Ohs6LCbbu20Ose4X6+sZJtOpUC9k=
Subject key identifier: D0:DD:8F:45:88:6D:D5:85:93:4E:B3:53:BE:66:4A:C1:DE:03:55:B9
Certificate issuer: /CN=5B7E965BFAF5D43BB934AF7CB92B6D9EB9DF94BB
Certificate serial: 4F367DD99434714488A6E180909277EC3B030546
Authority key identifier: 5B:7E:96:5B:FA:F5:D4:3B:B9:34:AF:7C:B9:2B:6D:9E:B9:DF:94:BB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B7E965BFAF5D43BB934AF7CB92B6D9EB9DF94BB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
Signing time: Thu 24 Oct 2024 18:51:46 +0000
ROA not before: Thu 24 Oct 2024 18:46:46 +0000
ROA not after: Thu 23 Oct 2025 18:51:46 +0000
asID: 28360
IP address blocks: 138.94.8.0/22 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:36:7d:d9:94:34:71:44:88:a6:e1:80:90:92:77:ec:3b:03:05:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5B7E965BFAF5D43BB934AF7CB92B6D9EB9DF94BB
Validity
Not Before: Oct 24 18:46:46 2024 GMT
Not After : Oct 23 18:51:46 2025 GMT
Subject: CN=D0DD8F45886DD585934EB353BE664AC1DE0355B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:92:48:3b:94:2d:aa:6a:a3:d3:02:e5:fd:88:
b6:64:17:76:fe:1c:e0:89:fb:1d:ac:80:b7:19:c8:
38:a9:dd:fe:56:d6:70:58:b2:4d:6f:7c:bf:c4:cd:
29:98:38:4c:f4:8b:ea:0c:54:d9:62:07:d0:e4:37:
85:ff:14:cd:33:f3:31:75:0d:88:2f:92:a8:79:af:
45:c3:e0:b4:c9:8d:72:8c:cb:66:d1:dd:2d:db:c7:
66:ec:74:4a:92:2c:95:a6:f7:76:56:41:ff:3b:c1:
34:e2:15:84:14:e7:ed:90:a8:5a:35:f1:70:68:14:
48:93:fa:97:2d:43:1d:fe:ed:49:03:e7:88:35:6d:
96:3a:8d:0d:d8:22:8a:6f:fc:a0:e3:dc:45:00:ac:
be:72:e7:bf:f5:e8:7c:3f:40:b3:5f:77:2e:ec:f4:
a8:95:22:85:b7:bc:0d:34:ff:a3:32:ae:31:15:6e:
ab:08:7a:16:28:55:e1:8c:c4:87:ca:5c:1c:84:8f:
a8:3a:d2:b4:5d:42:37:a1:6e:7f:ce:8d:63:b9:87:
49:be:76:49:0d:75:0c:bb:2c:ef:46:17:7d:3e:32:
38:5d:c3:02:b6:c9:12:f7:8b:44:36:d3:83:3f:e0:
ab:47:ff:16:bd:7a:ed:d2:a2:92:69:fb:b9:7a:93:
93:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DD:8F:45:88:6D:D5:85:93:4E:B3:53:BE:66:4A:C1:DE:03:55:B9
X509v3 Authority Key Identifier:
keyid:5B:7E:96:5B:FA:F5:D4:3B:B9:34:AF:7C:B9:2B:6D:9E:B9:DF:94:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/5B7E965BFAF5D43BB934AF7CB92B6D9EB9DF94BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B7E965BFAF5D43BB934AF7CB92B6D9EB9DF94BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Bhazj8bFxvp7P6PcZgYFqm3bPxEryax3Q9RaDQNJ3P2/0/3133382e39342e382e302f32322d3332203d3e203238333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.94.8.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:25:38:09:ec:98:40:51:9b:de:95:d0:23:38:19:91:cc:9d:
d4:2e:48:76:e9:9b:a9:9d:00:c9:e8:17:8f:06:46:4c:e7:bf:
f3:3a:96:4b:80:e4:83:81:bc:63:7b:5c:5f:58:a3:77:d6:cf:
17:ee:b3:0f:e5:8a:f4:8d:ef:7e:52:5d:a4:d9:09:35:79:8d:
5e:81:c0:55:cb:a5:ae:e4:15:e8:7a:0b:f2:76:48:c5:b1:65:
06:d0:06:9c:53:fd:8a:c8:7c:e3:0d:e8:65:c6:84:49:ea:60:
d6:db:f5:ce:00:eb:45:5e:56:0b:55:85:74:e5:e1:16:23:01:
cb:5f:4b:4e:c2:6a:9b:4e:83:bc:97:b1:cb:32:b3:a3:01:c9:
4e:1e:79:e0:4f:0b:f3:72:e4:83:3b:4f:c5:5e:d8:6e:0e:a6:
c1:2c:59:11:23:af:ea:77:d4:b8:af:bd:1f:77:d8:9c:2f:4e:
79:2d:57:6b:d4:0c:80:4f:c6:20:43:a1:81:72:32:cf:33:fe:
28:77:6f:88:74:23:4f:59:a2:20:67:46:0e:ae:a5:84:1c:a0:
0b:1b:18:26:1c:8b:4a:c4:4f:4f:cf:4a:22:fe:7a:e9:69:03:
f2:da:51:5e:af:9e:15:ad:de:de:a9:4c:82:3b:85:e6:8f:82:
9e:ba:42:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 2 22:48:33 2024 by rpki-client on console-ams.rpki-client.org