Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
File: 3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa (raw, json)
Hash identifier: a3crGjfP/oCC+qaTWBUjzu89HhGGkxMCPKghZCoKsFs=
Subject key identifier: EE:A8:97:62:A3:A6:76:D1:09:EF:94:43:34:3E:D8:82:9E:E1:B1:F2
Certificate issuer: /CN=FA8D895DEA10C0D11206F62D5BE38EDB0A317794
Certificate serial: 4E34BAD9259597E22DAA4F3FD466A37CA65161EA
Authority key identifier: FA:8D:89:5D:EA:10:C0:D1:12:06:F6:2D:5B:E3:8E:DB:0A:31:77:94
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
Signing time: Fri 24 Jan 2025 18:25:00 +0000
ROA not before: Fri 24 Jan 2025 18:20:00 +0000
ROA not after: Fri 23 Jan 2026 18:25:00 +0000
asID: 271309
IP address blocks: 207.248.25.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:34:ba:d9:25:95:97:e2:2d:aa:4f:3f:d4:66:a3:7c:a6:51:61:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA8D895DEA10C0D11206F62D5BE38EDB0A317794
Validity
Not Before: Jan 24 18:20:00 2025 GMT
Not After : Jan 23 18:25:00 2026 GMT
Subject: CN=EEA89762A3A676D109EF9443343ED8829EE1B1F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f8:1d:55:bc:36:0d:5c:dd:b1:d5:4f:cc:fc:
7e:f2:fd:f3:24:4c:9d:13:f0:02:52:dc:2b:96:ca:
47:c0:82:44:3a:b7:ba:f9:55:26:4f:f0:4c:63:04:
52:0a:f0:7a:6c:29:23:d3:4d:4c:aa:79:a9:47:3e:
d0:0f:da:4c:64:65:ed:40:d7:c5:fc:1a:2d:b3:7b:
59:ee:2f:9a:b1:d5:b5:eb:a5:ae:9c:16:ec:c1:57:
94:01:d3:ba:f7:72:d3:7e:ff:77:a7:01:84:ad:bf:
d8:f8:a6:b0:b2:04:67:e9:a8:59:c6:79:24:5e:cd:
c7:7e:34:76:49:87:ff:ab:12:6c:3c:0c:ef:63:62:
7e:16:6e:fd:f7:0b:85:92:3b:3b:0b:7d:fb:96:6e:
b0:54:7c:3a:cc:ea:fc:0f:a7:5c:e6:00:9c:d1:b9:
d4:ff:f1:48:2a:8b:e2:5e:d9:15:c3:51:d7:c5:8f:
93:7d:e7:17:57:1d:51:43:b0:09:4e:ee:3d:2e:0c:
8d:14:24:48:9f:2c:53:31:d2:74:13:08:27:8c:c8:
b1:7e:43:be:70:c2:42:1f:f9:96:00:57:8c:a5:91:
ce:2f:25:9a:25:8e:a1:4c:37:ef:d8:4a:05:3f:3b:
84:04:4b:74:b2:c0:c3:05:ca:72:d8:90:91:89:3e:
db:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A8:97:62:A3:A6:76:D1:09:EF:94:43:34:3E:D8:82:9E:E1:B1:F2
X509v3 Authority Key Identifier:
keyid:FA:8D:89:5D:EA:10:C0:D1:12:06:F6:2D:5B:E3:8E:DB:0A:31:77:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.248.25.0/24
Signature Algorithm: sha256WithRSAEncryption
50:89:ce:ae:97:fe:fd:f7:f3:06:12:19:e3:4a:e9:2b:f9:65:
17:c2:96:b4:a3:ac:c3:c5:51:6f:50:00:7f:f8:77:fa:08:a6:
d7:4d:66:5b:36:d4:ad:82:ff:78:71:f8:f9:87:af:ef:5d:96:
e7:d3:8e:5c:cd:98:1a:c1:14:69:f2:64:d5:55:9a:c1:2c:3d:
bf:de:5c:41:e1:13:11:3c:35:51:a6:9e:bd:47:e7:9d:17:80:
a1:85:0e:49:b1:1c:38:ef:42:23:53:ec:9c:b6:7c:e4:23:28:
ca:e4:3f:74:f3:48:ce:51:c1:18:da:2a:ed:41:a2:61:d5:ca:
0a:ce:81:9a:f4:9e:2c:33:8e:3e:82:7e:b5:94:4d:c2:88:5a:
92:00:c4:87:43:6a:38:e6:38:a5:bd:16:52:d8:2d:c0:ef:15:
e0:a6:a9:2b:e5:d1:e2:0a:b6:17:86:cc:fa:73:c8:99:c9:ac:
a7:c1:5f:4a:c4:ed:97:5c:10:05:71:fa:32:45:fb:2b:c8:db:
16:76:dc:fe:25:ec:cd:13:15:51:a7:79:b8:d2:e9:fa:40:79:
bb:81:2b:b4:50:91:ca:41:27:82:45:31:2d:0b:b0:81:86:8a:
90:dd:1f:3d:fa:95:07:76:ac:4a:a4:16:3b:fc:e5:c4:6c:11:
1d:d1:7c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 16:16:16 2025 by rpki-client