Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/34352e37312e3134342e302f32322d3232203d3e203631373137.roa
File: 34352e37312e3134342e302f32322d3232203d3e203631373137.roa (raw, json)
Hash identifier: n5ZA0bkfsXrJFJEHmkPEL/WFNPJpkvJgvHVZ1JdsM6I=
Subject key identifier: 8B:40:B2:93:04:0A:D0:E5:94:BE:32:C8:16:85:58:81:96:61:7E:EF
Certificate issuer: /CN=818877B39D32BF83248D22BD29D162AD2243D97A
Certificate serial: 25FFD6299952F332DC1847D4081C928F53EA2D21
Authority key identifier: 81:88:77:B3:9D:32:BF:83:24:8D:22:BD:29:D1:62:AD:22:43:D9:7A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/818877B39D32BF83248D22BD29D162AD2243D97A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/34352e37312e3134342e302f32322d3232203d3e203631373137.roa
Signing time: Thu 04 Apr 2024 15:37:48 +0000
ROA not before: Thu 04 Apr 2024 15:32:48 +0000
ROA not after: Thu 03 Apr 2025 15:37:48 +0000
asID: 61717
IP address blocks: 45.71.144.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:ff:d6:29:99:52:f3:32:dc:18:47:d4:08:1c:92:8f:53:ea:2d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=818877B39D32BF83248D22BD29D162AD2243D97A
Validity
Not Before: Apr 4 15:32:48 2024 GMT
Not After : Apr 3 15:37:48 2025 GMT
Subject: CN=8B40B293040AD0E594BE32C81685588196617EEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:92:0f:7f:69:d0:61:8c:5c:72:5a:55:4f:bd:
e5:88:8f:20:fb:fb:ad:4c:63:6b:f4:07:8c:3b:77:
74:0d:a7:77:b6:d2:89:87:fc:b6:7f:db:a2:e7:a1:
94:8f:ed:9b:26:f2:e6:05:f1:d0:94:18:a4:cd:02:
86:42:be:30:25:ac:50:dd:9e:0c:45:79:1c:6a:cc:
2b:56:a1:24:6b:0a:9b:0e:07:1f:b9:b7:7f:3c:f8:
99:1a:ca:65:ff:72:37:f8:8b:17:ec:9c:7e:c3:80:
9c:bf:a5:3b:c1:87:36:7b:07:a6:8e:1c:9e:0e:f4:
26:6f:c8:f8:7e:76:b3:9d:ba:0b:68:32:97:2b:46:
3a:61:22:73:b1:c4:10:36:c5:c6:14:f2:f0:10:1b:
35:bf:fd:8f:4e:cb:c1:05:dd:59:10:6c:82:b7:ca:
b5:2e:97:eb:62:e8:aa:f7:65:ab:c3:e9:eb:f8:b0:
35:3d:97:b7:7b:4a:9c:3d:65:ac:88:1c:8e:44:f2:
52:1c:8c:3c:98:8e:a1:93:f5:85:28:15:d5:91:8d:
c4:58:ea:5d:f4:79:c1:a8:8e:79:41:23:88:3b:3f:
ca:ec:ca:bd:39:90:11:fd:47:71:db:88:c7:df:45:
83:44:c6:2d:91:24:e5:28:9f:6b:87:0a:51:ca:2b:
61:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:40:B2:93:04:0A:D0:E5:94:BE:32:C8:16:85:58:81:96:61:7E:EF
X509v3 Authority Key Identifier:
keyid:81:88:77:B3:9D:32:BF:83:24:8D:22:BD:29:D1:62:AD:22:43:D9:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/818877B39D32BF83248D22BD29D162AD2243D97A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/818877B39D32BF83248D22BD29D162AD2243D97A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/57vPNzngE8fEDVgicFXJAZytfM818jXo9PFk6T1LKGJX/1/34352e37312e3134342e302f32322d3232203d3e203631373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.144.0/22
Signature Algorithm: sha256WithRSAEncryption
53:4b:12:63:5d:44:46:41:d4:4e:15:cf:8d:cc:2d:e4:84:80:
cd:d7:35:44:48:68:b9:4a:2d:95:a4:ab:d6:39:48:2a:36:39:
5b:e5:ef:0e:71:9a:ed:82:87:19:6a:14:4f:c2:2e:12:d6:70:
9a:25:1d:9c:5c:5a:ab:d4:a3:de:2c:83:92:c3:0b:0f:a8:7c:
42:3c:78:2a:e2:72:4e:fb:7c:b0:60:01:57:7f:84:df:51:9c:
c9:aa:ea:e7:21:e1:f0:f2:1d:1f:f0:5c:2f:ae:66:34:32:8b:
26:87:34:fd:4c:d3:2b:63:f2:76:a4:c2:a3:45:fe:8e:22:80:
67:06:32:3c:17:e0:b8:33:1c:80:d2:a4:20:8e:86:96:d5:d6:
c6:63:08:0a:13:c2:d9:56:73:f6:d8:54:7c:44:89:9b:92:f5:
7a:66:53:9d:43:5a:00:1d:9f:5c:32:54:e0:57:2f:8f:c1:02:
dc:e9:2e:4f:ee:c2:a7:2e:87:78:a3:62:0c:4d:4c:eb:64:3c:
0c:04:d6:33:01:cc:f1:2d:d1:e9:c5:2c:05:f2:d2:61:f4:7f:
ce:f7:a1:d2:f7:e9:9b:8e:a5:58:39:eb:8b:d8:81:1e:2d:64:
61:10:0a:f7:bf:9d:73:a3:94:ad:f8:04:6f:01:3a:af:4e:ed:
a1:ad:30:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 17:27:20 2024 by rpki-client on console-ams.rpki-client.org