Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135382e302f32332d3233203d3e20323635323536.roa
File: 3136382e302e3135382e302f32332d3233203d3e20323635323536.roa (raw, json)
Hash identifier: HOCQ8N2Moclv7zx29EJKmUyv72I6uFcDZhGGCI0Ivj4=
Subject key identifier: 87:FC:E7:C3:ED:B5:4C:68:18:A8:14:22:1A:22:E7:52:B8:7F:9C:4B
Certificate issuer: /CN=79684DFDE931D9553B72CBB4346C66B9C816C683
Certificate serial: 5136ED9E744950916379AB6159391A781CB32D8A
Authority key identifier: 79:68:4D:FD:E9:31:D9:55:3B:72:CB:B4:34:6C:66:B9:C8:16:C6:83
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79684DFDE931D9553B72CBB4346C66B9C816C683.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135382e302f32332d3233203d3e20323635323536.roa
Signing time: Sun 12 Jan 2025 16:51:02 +0000
ROA not before: Sun 12 Jan 2025 16:46:02 +0000
ROA not after: Sun 11 Jan 2026 16:51:02 +0000
asID: 265256
IP address blocks: 168.0.158.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 14 Feb 2025 15:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:36:ed:9e:74:49:50:91:63:79:ab:61:59:39:1a:78:1c:b3:2d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79684DFDE931D9553B72CBB4346C66B9C816C683
Validity
Not Before: Jan 12 16:46:02 2025 GMT
Not After : Jan 11 16:51:02 2026 GMT
Subject: CN=87FCE7C3EDB54C6818A814221A22E752B87F9C4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f0:79:d7:66:f3:31:e0:94:e0:a5:25:25:ed:
df:79:f1:8c:e1:73:2c:72:8c:b6:82:bc:9e:81:1a:
4f:db:16:db:2e:e7:89:40:90:b0:df:b3:3f:b3:61:
f9:a1:60:76:ed:77:82:83:93:54:9b:ff:9a:d1:52:
84:b3:b7:8e:5d:72:ec:ab:de:b4:f8:5f:e2:0c:3e:
05:cd:e7:68:19:13:44:0b:5f:0a:54:4e:dd:2f:ae:
ee:07:17:cd:16:e3:90:a9:d2:76:1a:f5:62:e5:b2:
52:a3:62:cf:10:43:73:d8:e7:1a:71:c5:fc:9d:a3:
73:7e:c5:b1:e5:56:7e:86:77:a2:66:7c:3a:3a:c8:
47:22:a7:dc:02:6c:d7:7d:d6:65:57:2a:0a:54:13:
e7:b4:94:57:47:cd:3d:a2:8c:13:73:32:5c:31:85:
8e:fe:ca:6c:99:30:0e:77:25:f2:4e:b3:85:0d:1c:
58:ef:22:27:0d:da:c4:cd:09:ca:8d:f5:8a:8e:6a:
8b:67:67:de:d5:58:40:3a:dc:2f:b2:96:fb:f8:1e:
46:6f:05:59:c0:2d:dd:67:75:1a:05:f0:ad:4a:a0:
2c:e6:f6:ac:9d:10:86:4a:0d:87:2f:67:34:22:51:
e2:ba:9d:cd:06:8f:26:40:20:bf:69:97:91:e7:f7:
5b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FC:E7:C3:ED:B5:4C:68:18:A8:14:22:1A:22:E7:52:B8:7F:9C:4B
X509v3 Authority Key Identifier:
keyid:79:68:4D:FD:E9:31:D9:55:3B:72:CB:B4:34:6C:66:B9:C8:16:C6:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/79684DFDE931D9553B72CBB4346C66B9C816C683.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/79684DFDE931D9553B72CBB4346C66B9C816C683.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5kh7U1maB7CEk94NychBpWi1YzXFG9EV5xRaanL9wV3v/0/3136382e302e3135382e302f32332d3233203d3e20323635323536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.0.158.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:b6:4b:c1:ab:a2:b0:2f:14:c8:15:20:01:e7:ef:14:b7:77:
90:05:31:d9:e2:65:eb:6a:d6:99:2a:72:06:f4:c4:6f:14:1b:
26:5a:a0:e3:44:a4:da:ae:72:73:7d:18:44:2f:a9:5b:e3:56:
04:c4:e1:51:af:dd:76:df:9c:0d:bc:31:6e:a0:15:af:3b:eb:
2f:5e:66:04:17:b0:17:b0:07:af:a9:2b:e0:f2:97:cc:fe:f6:
5b:30:7c:b7:87:76:e9:0f:68:fd:e2:42:37:e6:9e:bd:b3:fa:
d8:fa:0e:bd:8b:c8:d8:1f:ac:26:9d:3f:a8:89:9f:20:96:8e:
f4:00:52:6f:71:ef:38:d1:ec:8c:35:e0:dc:12:ed:0a:2b:d4:
a6:b3:5e:3a:37:f1:c7:0b:4a:56:95:88:50:9c:3a:63:87:0e:
be:e1:f9:e8:85:8d:ae:67:6d:5c:91:a5:72:2d:46:83:cf:f8:
07:94:1b:79:a9:43:66:bb:74:8a:eb:0c:38:02:51:13:cc:c9:
d1:85:53:af:a1:e9:7a:a2:3b:f5:d6:66:29:ae:47:14:5d:72:
1b:d3:1f:ac:b7:89:b0:98:b0:34:55:81:22:e2:d9:9a:13:24:
ac:e0:a9:6c:ae:ad:7f:de:45:ec:b8:e6:17:4c:a5:89:9b:9b:
39:83:91:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:57:46 2025 by rpki-client