Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135362e302f32322d3232203d3e20323635323536.roa
File: 3136382e302e3135362e302f32322d3232203d3e20323635323536.roa (raw, json)
Hash identifier: OX80f/BtMBMHV716UMI1+vKUmWVQLx5bcvdzqIgm2Ec=
Subject key identifier: A2:00:63:41:19:6F:03:65:14:B0:8C:89:4A:AC:04:AC:ED:F3:45:0D
Certificate issuer: /CN=79684DFDE931D9553B72CBB4346C66B9C816C683
Certificate serial: 3B9A1B81E574FB811C3F376BAFD61DB931318083
Authority key identifier: 79:68:4D:FD:E9:31:D9:55:3B:72:CB:B4:34:6C:66:B9:C8:16:C6:83
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79684DFDE931D9553B72CBB4346C66B9C816C683.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135362e302f32322d3232203d3e20323635323536.roa
Signing time: Tue 14 Jan 2025 02:16:01 +0000
ROA not before: Tue 14 Jan 2025 02:11:01 +0000
ROA not after: Tue 13 Jan 2026 02:16:01 +0000
asID: 265256
IP address blocks: 168.0.156.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 06 Feb 2025 01:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:9a:1b:81:e5:74:fb:81:1c:3f:37:6b:af:d6:1d:b9:31:31:80:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79684DFDE931D9553B72CBB4346C66B9C816C683
Validity
Not Before: Jan 14 02:11:01 2025 GMT
Not After : Jan 13 02:16:01 2026 GMT
Subject: CN=A2006341196F036514B08C894AAC04ACEDF3450D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4d:17:e2:d5:8f:62:36:6f:44:8d:4c:33:0d:
cf:96:91:bf:4a:32:31:ce:1c:01:dc:65:48:c4:14:
dc:b6:71:32:98:ab:9c:0f:dd:5d:58:d2:ea:03:dd:
34:a4:94:6e:69:85:97:de:d9:f1:4c:2b:17:33:e0:
ea:7c:44:ed:c1:85:e6:bb:d9:b8:5c:a6:a4:58:49:
f2:be:e8:e9:5e:40:99:9e:03:71:f3:de:1a:dc:54:
76:0d:bf:12:ae:a9:52:55:fa:b4:a4:ae:7d:f2:63:
bd:6f:52:29:0c:69:bd:49:7f:09:70:5c:e0:54:e2:
97:d1:3e:81:4f:74:bf:60:cf:d5:db:6c:10:67:e7:
fd:15:4a:7e:e9:65:78:dc:70:22:2b:b0:ac:04:0b:
3e:bf:92:e3:f3:0b:da:ca:85:25:9d:0a:73:97:e1:
22:b3:0c:54:04:12:85:dd:bd:66:94:8c:75:53:c3:
d4:39:60:7e:81:3c:81:8b:fe:f1:29:9c:c3:84:b2:
91:65:41:56:cd:59:77:59:6b:bf:9d:cc:bb:c9:80:
db:1f:7c:09:07:4e:5f:df:bb:72:30:87:56:4a:14:
70:03:69:d6:ed:29:20:d8:46:6a:e0:47:f6:75:ff:
04:ae:ae:b5:fe:89:e8:36:b1:c5:9f:3b:53:46:89:
87:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:00:63:41:19:6F:03:65:14:B0:8C:89:4A:AC:04:AC:ED:F3:45:0D
X509v3 Authority Key Identifier:
keyid:79:68:4D:FD:E9:31:D9:55:3B:72:CB:B4:34:6C:66:B9:C8:16:C6:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/79684DFDE931D9553B72CBB4346C66B9C816C683.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79684DFDE931D9553B72CBB4346C66B9C816C683.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135362e302f32322d3232203d3e20323635323536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.0.156.0/22
Signature Algorithm: sha256WithRSAEncryption
22:69:c6:7b:b7:4c:95:a1:3f:ee:94:d3:b2:80:90:83:e6:96:
a2:50:21:9b:5c:a2:b3:cc:1e:37:50:b3:4a:80:6e:8b:30:ef:
9e:3f:46:74:a3:65:ff:04:f4:74:42:04:fe:71:60:86:a6:28:
02:80:f9:07:6d:d3:72:f0:56:e6:b3:41:01:56:43:f4:5d:ea:
2c:93:19:6f:39:af:4d:29:aa:1a:f3:6d:08:32:1e:40:33:06:
78:fb:24:66:74:4d:a9:4f:bc:4d:eb:17:e4:fb:c9:76:e8:02:
b9:93:e9:b7:30:80:0e:11:20:ea:31:e4:a1:ee:84:fd:76:e9:
28:d4:ac:c3:83:2f:7c:3d:50:20:3a:b2:cc:25:2f:df:a9:92:
9d:cc:b8:ce:58:25:62:66:a9:6c:a1:8f:a2:0b:2d:b9:e1:64:
c7:98:a4:da:8b:ee:72:1c:f5:b5:49:7f:5f:74:1f:73:95:ef:
53:2f:ed:f5:d0:5f:7d:18:97:10:c1:e6:2c:18:d2:fb:99:51:
62:84:0e:e8:4e:7e:f8:1d:e7:4b:c7:6e:03:dd:a3:8f:27:dc:
f9:2c:99:3f:a3:a7:bc:d4:d1:6f:c2:c5:44:6a:3b:5e:fe:c0:
c0:1f:de:a6:6f:c1:71:ca:1c:1c:5c:2b:1d:15:40:65:e8:a6:
0a:13:06:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 17:08:43 2025 by rpki-client