Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4tPnLrtDtqAiBrAcnqNNkoxVJ2gv5vf7F5sGFzXbs8zK/0/3137372e38352e31302e302f32332d3233203d3e20323731323633.roa
File: 3137372e38352e31302e302f32332d3233203d3e20323731323633.roa (raw, json)
Hash identifier: XZbXmuutolwoNmHMXth1z4rN/zd9g1SAquoO/CBu8T8=
Subject key identifier: 55:D6:87:7A:C8:87:C3:6E:2B:10:C5:66:45:AA:20:F0:64:F9:06:7E
Certificate issuer: /CN=6A3922C63D251D52E98CA62A1651A24AE3DC8026
Certificate serial: 5234C4A410564040033384C5870AA3705426AA17
Authority key identifier: 6A:39:22:C6:3D:25:1D:52:E9:8C:A6:2A:16:51:A2:4A:E3:DC:80:26
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6A3922C63D251D52E98CA62A1651A24AE3DC8026.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4tPnLrtDtqAiBrAcnqNNkoxVJ2gv5vf7F5sGFzXbs8zK/0/3137372e38352e31302e302f32332d3233203d3e20323731323633.roa
Signing time: Mon 13 May 2024 20:04:24 +0000
ROA not before: Mon 13 May 2024 19:59:24 +0000
ROA not after: Mon 12 May 2025 20:04:24 +0000
asID: 271263
IP address blocks: 177.85.10.0/23 maxlen: 23
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:34:c4:a4:10:56:40:40:03:33:84:c5:87:0a:a3:70:54:26:aa:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A3922C63D251D52E98CA62A1651A24AE3DC8026
Validity
Not Before: May 13 19:59:24 2024 GMT
Not After : May 12 20:04:24 2025 GMT
Subject: CN=55D6877AC887C36E2B10C56645AA20F064F9067E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d1:ed:f5:62:d5:6e:72:5f:c7:84:13:3f:f4:
12:60:3b:3c:2c:09:e0:72:8b:9b:1c:39:4f:4f:a8:
1b:4c:a3:85:0f:36:8d:3f:f4:a6:0e:43:7d:f0:51:
2b:ec:51:45:9a:1c:96:91:7e:f8:88:3a:6d:e6:40:
cf:0a:8d:4c:fa:b2:91:19:fd:4e:dc:2d:bc:41:06:
6f:06:72:58:00:87:53:53:76:d0:4d:07:27:68:7d:
de:a8:a4:3a:76:17:f6:0c:49:64:af:65:90:21:5d:
d6:6b:18:00:64:3a:7d:88:a1:75:0f:5d:c5:55:6e:
52:5f:dd:44:7e:7f:ee:31:1c:16:5f:4e:af:9a:26:
17:70:1a:a6:31:a6:f1:b0:4b:3e:bc:74:8c:7a:89:
4b:71:df:70:51:a2:08:12:8e:96:0f:7e:6e:16:c3:
91:3a:c5:7a:c5:c2:1a:96:fe:58:61:35:99:01:fa:
43:e9:b7:9d:0f:c5:15:c1:9f:8f:ec:b8:85:b6:b8:
91:c5:cc:24:15:4a:52:f6:e3:b3:4d:66:5e:e4:7e:
80:3b:a0:2b:a5:ff:4e:46:6b:34:83:c1:31:df:38:
a5:59:6b:c3:03:a4:8d:65:d7:33:b7:25:b9:10:5f:
9b:22:43:86:d2:98:64:40:c6:dd:09:09:18:24:68:
09:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D6:87:7A:C8:87:C3:6E:2B:10:C5:66:45:AA:20:F0:64:F9:06:7E
X509v3 Authority Key Identifier:
keyid:6A:39:22:C6:3D:25:1D:52:E9:8C:A6:2A:16:51:A2:4A:E3:DC:80:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4tPnLrtDtqAiBrAcnqNNkoxVJ2gv5vf7F5sGFzXbs8zK/0/6A3922C63D251D52E98CA62A1651A24AE3DC8026.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6A3922C63D251D52E98CA62A1651A24AE3DC8026.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4tPnLrtDtqAiBrAcnqNNkoxVJ2gv5vf7F5sGFzXbs8zK/0/3137372e38352e31302e302f32332d3233203d3e20323731323633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.85.10.0/23
Signature Algorithm: sha256WithRSAEncryption
39:b5:cb:93:7c:fb:a0:f4:78:6d:25:e8:b1:0b:03:f8:36:2b:
69:1b:4f:ec:0e:7f:45:73:1b:c1:97:5f:18:dd:5c:d5:3a:5e:
2d:a9:5b:11:1d:c6:48:64:3c:f3:61:26:e2:6a:0d:02:cf:33:
bf:d7:d4:b8:60:51:87:4f:f5:7e:9b:4a:9f:5e:15:25:33:50:
ee:fb:8c:a1:6c:ad:18:5b:37:94:15:3f:86:24:e1:67:ea:2e:
8f:aa:91:41:e4:f5:48:37:59:50:23:6c:df:d9:45:e4:f6:5a:
b0:ae:eb:53:34:4d:36:dd:a0:8f:c4:f2:e3:6f:a4:69:45:37:
bc:90:da:4d:ec:3e:fc:30:31:e8:57:44:16:ec:7d:14:96:6d:
15:59:47:0a:ac:16:83:7d:56:80:9d:f8:01:55:d2:68:bd:b3:
39:c3:49:99:5a:7a:89:aa:50:fc:fa:2c:47:ca:7b:9e:4e:f1:
74:d5:08:60:86:ec:90:81:5c:33:96:81:84:e3:6a:dc:46:c9:
ea:09:51:5f:c1:d1:40:ca:40:94:f7:66:f5:f7:c0:72:52:4f:
a3:0c:5a:01:7f:6b:d0:8e:ae:b2:f4:52:16:7f:3e:8a:9a:6b:
75:01:2c:b4:c3:4e:52:77:5e:69:88:ad:db:dd:83:00:ee:80:
8c:fb:30:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 05:45:29 2024 by rpki-client on console-ams.rpki-client.org