Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3233312e302f32342d3234203d3e203532383731.roa
File: 3230312e3135372e3233312e302f32342d3234203d3e203532383731.roa (raw, json)
Hash identifier: UeCZt3K7Y2pScPzmKabwlE8/soeYA1Vp4/ekDep25M0=
Subject key identifier: B3:9F:C9:72:B1:5A:31:6B:47:C3:72:10:28:6A:2C:28:D1:F4:0B:F2
Certificate issuer: /CN=D35AD762F990F266087F46B5C22E9EA9E288BF8E
Certificate serial: 716E73220C2D596AA73F37F99EDDBBF9D2294B7B
Authority key identifier: D3:5A:D7:62:F9:90:F2:66:08:7F:46:B5:C2:2E:9E:A9:E2:88:BF:8E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3233312e302f32342d3234203d3e203532383731.roa
Signing time: Wed 05 Feb 2025 18:48:22 +0000
ROA not before: Wed 05 Feb 2025 18:43:22 +0000
ROA not after: Wed 04 Feb 2026 18:48:22 +0000
asID: 52871
IP address blocks: 201.157.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jun 2025 13:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:6e:73:22:0c:2d:59:6a:a7:3f:37:f9:9e:dd:bb:f9:d2:29:4b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D35AD762F990F266087F46B5C22E9EA9E288BF8E
Validity
Not Before: Feb 5 18:43:22 2025 GMT
Not After : Feb 4 18:48:22 2026 GMT
Subject: CN=B39FC972B15A316B47C37210286A2C28D1F40BF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1f:c7:59:d8:d5:48:4e:44:fc:7a:4c:bc:13:
b8:81:b3:12:3e:d6:9d:07:93:65:42:22:08:85:26:
4b:8a:02:11:f7:d6:1d:cb:ab:a4:d3:8c:6f:0c:ac:
81:d8:e4:11:aa:21:98:39:e7:99:31:5d:e9:29:e8:
53:71:1e:0b:27:d9:91:8c:8e:9f:ea:17:87:44:da:
65:8d:aa:81:94:71:55:90:1b:2a:72:6d:63:8c:b2:
ce:bd:cb:a1:1d:14:b9:1c:0a:f3:12:c5:c6:3f:09:
76:24:32:92:4f:e8:1d:c8:71:b3:d0:16:12:3f:b4:
fd:01:a5:6e:16:9f:ed:63:e4:47:6d:25:48:e7:09:
e8:88:0b:36:b3:6c:07:b9:0b:06:4c:08:fe:a3:f8:
d9:fe:be:97:4c:6e:d9:31:ef:25:c0:e1:2c:cc:72:
c4:d0:b9:e2:fb:90:a5:24:02:1b:31:7d:fd:ed:c7:
2a:65:84:e2:08:18:06:f4:99:e8:0e:a3:13:86:d1:
2c:fe:60:29:34:04:60:24:c4:91:c6:00:c7:ba:ff:
54:38:cd:13:c6:42:fc:71:10:5b:ee:4b:5d:5e:7b:
e9:51:d8:c8:b7:e2:34:e2:81:90:71:d1:bd:e9:da:
c3:ef:a0:62:aa:9f:a7:ce:fa:ac:ca:1b:4a:87:3e:
e2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9F:C9:72:B1:5A:31:6B:47:C3:72:10:28:6A:2C:28:D1:F4:0B:F2
X509v3 Authority Key Identifier:
keyid:D3:5A:D7:62:F9:90:F2:66:08:7F:46:B5:C2:2E:9E:A9:E2:88:BF:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3233312e302f32342d3234203d3e203532383731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.157.231.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:16:c3:d3:62:e5:30:f5:c3:4c:fa:a9:68:b5:e9:a0:4b:72:
ce:97:7f:03:17:20:c9:d3:e9:c5:10:ed:07:06:a9:fd:84:3c:
47:44:9d:b7:0c:47:5a:12:00:05:f4:ef:19:53:ee:ac:e8:43:
00:30:d2:3e:b9:f8:e4:95:bf:ab:8e:6c:d5:85:08:0c:df:29:
64:05:2d:3b:b5:2d:24:5c:6b:96:2e:49:c2:e9:e7:a0:24:3b:
dc:64:06:d3:0b:e0:91:ff:d5:e6:37:cc:d5:2c:1b:86:b3:5e:
59:d4:66:f8:2e:4f:95:81:e0:55:52:f1:4f:85:21:60:9f:c3:
1f:f4:ec:f5:75:42:1c:01:fe:d2:f3:aa:73:2c:ec:9d:54:fa:
41:53:bb:4d:85:00:66:20:7f:a5:5a:56:a5:71:b2:60:95:16:
e0:dd:fc:44:ca:2e:d5:04:4e:04:82:03:7e:97:85:6d:a8:b0:
54:df:14:33:e5:46:a9:43:a7:9a:d1:31:f0:d8:04:24:1b:bc:
f8:96:f8:33:bd:c5:5f:b1:56:87:b7:8f:7c:42:6b:7c:6e:8d:
48:42:da:47:5b:2d:21:0e:e6:bb:33:c6:4f:42:5a:c6:9f:e4:
75:89:54:c0:23:7a:1a:57:70:08:91:c3:c2:9a:ff:3f:69:b9:
00:ab:1b:c2
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUcW5zIgwtWWqnPzf5nt27+dIpS3swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM1QUQ3NjJGOTkwRjI2NjA4N0Y0NkI1QzIyRTlFQTlF
Mjg4QkY4RTAeFw0yNTAyMDUxODQzMjJaFw0yNjAyMDQxODQ4MjJaMDMxMTAvBgNV
BAMTKEIzOUZDOTcyQjE1QTMxNkI0N0MzNzIxMDI4NkEyQzI4RDFGNDBCRjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWH8dZ2NVITkT8eky8E7iBsxI+
1p0Hk2VCIgiFJkuKAhH31h3Lq6TTjG8MrIHY5BGqIZg555kxXekp6FNxHgsn2ZGM
jp/qF4dE2mWNqoGUcVWQGypybWOMss69y6EdFLkcCvMSxcY/CXYkMpJP6B3IcbPQ
FhI/tP0BpW4Wn+1j5EdtJUjnCeiICzazbAe5CwZMCP6j+Nn+vpdMbtkx7yXA4SzM
csTQueL7kKUkAhsxff3txyplhOIIGAb0megOoxOG0Sz+YCk0BGAkxJHGAMe6/1Q4
zRPGQvxxEFvuS11ee+lR2Mi34jTigZBx0b3p2sPvoGKqn6fO+qzKG0qHPuJhAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUs5/JcrFaMWtHw3IQKGosKNH0C/IwHwYDVR0j
BBgwFoAU01rXYvmQ8mYIf0a1wi6eqeKIv44wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNVQzTnVzSEVzWDN1c1BVNWhocnExOVhiWWpTZmh5dHJaYTVnTUdHcGJ6
TUcvMS9EMzVBRDc2MkY5OTBGMjY2MDg3RjQ2QjVDMjJFOUVBOUUyODhCRjhFLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QzNUFENzYyRjk5MEYyNjYw
ODdGNDZCNUMyMkU5RUE5RTI4OEJGOEUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzVUM051c0hFc1gzdXNQVTVoaHJxMTlYYllqU2ZoeXRyWmE1Z01HR3Biek1HLzEv
MzIzMDMxMmUzMTM1MzcyZTMyMzMzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1
MzIzODM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBADJnecwDQYJKoZIhvcNAQELBQADggEBAHoWw9Ni
5TD1w0z6qWi16aBLcs6XfwMXIMnT6cUQ7QcGqf2EPEdEnbcMR1oSAAX07xlT7qzo
QwAw0j65+OSVv6uObNWFCAzfKWQFLTu1LSRca5YuScLp56AkO9xkBtML4JH/1eY3
zNUsG4azXlnUZvguT5WB4FVS8U+FIWCfwx/07PV1QhwB/tLzqnMs7J1U+kFTu02F
AGYgf6VaVqVxsmCVFuDd/ETKLtUETgSCA36XhW2osFTfFDPlRqlDp5rRMfDYBCQb
vPiW+DO9xV+xVoe3j3xCa3xujUhC2kdbLSEO5rszxk9CWsaf5HWJVMAjehpXcAiR
w8Ka/z9puQCrG8I=
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:24:04 2025 by rpki-client