Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/5tJr64pk1Nv7pXKHipi4fTBB4Rs5bmGa3VEQa3NcmpAX/0/3136382e3138312e3130302e302f32322d3234203d3e20323731303133.roa
File: 3136382e3138312e3130302e302f32322d3234203d3e20323731303133.roa (raw, json)
Hash identifier: uWRCx3jq5qgK6WN7cU6PUOhssMHFhg0Rqx/pMlSF6Z0=
Subject key identifier: 6D:38:91:37:18:1D:FF:96:2D:8C:FB:0B:FB:BF:80:11:7C:A0:D3:5A
Certificate issuer: /CN=9284A1CB43B00C70AA1D5B65BCF7590ECB2A5F55
Certificate serial: 39B7EB43996A471BD614AA698F4F30135DE46F59
Authority key identifier: 92:84:A1:CB:43:B0:0C:70:AA:1D:5B:65:BC:F7:59:0E:CB:2A:5F:55
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9284A1CB43B00C70AA1D5B65BCF7590ECB2A5F55.cer
Subject info access: rsync://rpki-repo.registro.br/repo/5tJr64pk1Nv7pXKHipi4fTBB4Rs5bmGa3VEQa3NcmpAX/0/3136382e3138312e3130302e302f32322d3234203d3e20323731303133.roa
Signing time: Wed 29 Oct 2025 16:49:50 +0000
ROA not before: Wed 29 Oct 2025 16:44:50 +0000
ROA not after: Wed 28 Oct 2026 16:49:50 +0000
asID: 271013
IP address blocks: 168.181.100.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:b7:eb:43:99:6a:47:1b:d6:14:aa:69:8f:4f:30:13:5d:e4:6f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9284A1CB43B00C70AA1D5B65BCF7590ECB2A5F55
Validity
Not Before: Oct 29 16:44:50 2025 GMT
Not After : Oct 28 16:49:50 2026 GMT
Subject: CN=6D389137181DFF962D8CFB0BFBBF80117CA0D35A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:82:61:32:b8:22:cd:5d:37:46:50:46:ad:54:
10:91:af:ca:d1:8d:59:93:79:51:0c:f5:31:fc:de:
0d:f1:68:98:62:8e:36:68:d4:5f:dc:6b:df:62:02:
6e:ee:6c:83:4e:56:c0:8a:79:5a:a2:b2:26:44:52:
12:20:30:b3:bc:16:0b:e6:d0:1e:c8:07:74:8a:3d:
5e:be:94:89:7d:df:9f:0a:bd:40:3a:e8:42:4d:5d:
12:e8:94:80:42:7b:fa:24:f1:d6:87:42:cb:4b:e8:
09:dc:0a:cf:c3:2b:fe:c3:88:30:cf:bf:7c:0f:fd:
1e:6d:b2:1c:b1:c9:92:c7:6d:83:de:0f:0a:ff:72:
5e:69:66:83:5c:37:14:b5:d3:8b:5a:84:52:00:a6:
48:63:b7:02:8d:9c:2a:9d:28:89:e4:75:be:14:e8:
d2:79:c6:6f:c8:8b:7d:75:07:16:a2:51:49:85:9e:
ea:67:17:8b:e5:7d:15:ff:4e:3d:44:6b:b2:8d:60:
30:fd:1a:9d:8a:90:76:82:c8:5e:14:c0:dc:fd:94:
bd:b0:8a:e3:85:d8:91:ab:61:07:34:06:f2:b0:8a:
10:26:07:44:89:78:59:45:62:f5:5b:e9:1f:50:05:
98:c3:bb:5a:47:b8:aa:49:73:76:58:4f:a7:1e:65:
9c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:38:91:37:18:1D:FF:96:2D:8C:FB:0B:FB:BF:80:11:7C:A0:D3:5A
X509v3 Authority Key Identifier:
keyid:92:84:A1:CB:43:B0:0C:70:AA:1D:5B:65:BC:F7:59:0E:CB:2A:5F:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/5tJr64pk1Nv7pXKHipi4fTBB4Rs5bmGa3VEQa3NcmpAX/0/9284A1CB43B00C70AA1D5B65BCF7590ECB2A5F55.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9284A1CB43B00C70AA1D5B65BCF7590ECB2A5F55.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/5tJr64pk1Nv7pXKHipi4fTBB4Rs5bmGa3VEQa3NcmpAX/0/3136382e3138312e3130302e302f32322d3234203d3e20323731303133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.181.100.0/22
Signature Algorithm: sha256WithRSAEncryption
27:c8:f4:b7:6d:19:4e:96:ec:1d:3d:36:bb:99:a0:f2:e8:d3:
08:c8:af:b4:ad:70:cc:27:f2:a5:1e:45:32:d1:ed:02:7f:c6:
a5:a3:ba:b5:8c:ba:5b:4b:4f:3a:0c:6d:49:2e:b0:cf:e9:23:
cc:13:48:f0:3c:b8:7f:70:a4:a2:41:71:f2:a8:f0:ac:97:47:
47:b5:ba:7b:0f:86:a6:50:dd:54:7f:70:8e:5e:64:4e:9b:0b:
c5:fd:b9:94:c4:a8:80:c4:75:f8:6d:d1:12:3c:76:09:a2:4d:
18:2b:62:50:72:fd:ae:63:73:09:dd:4d:ea:df:2e:9c:4c:97:
79:f7:7f:6f:be:07:f1:27:1f:32:7c:e7:51:66:af:57:97:18:
3d:92:35:53:68:8a:44:f7:43:bc:15:f0:84:5a:60:e1:a7:94:
bb:59:c3:9a:7b:4d:39:da:4f:e1:71:b3:1b:76:a3:a8:05:4a:
69:d3:ec:16:c7:85:bb:3b:ae:e1:f1:4e:c0:f5:6d:1a:5b:89:
da:de:0b:37:79:06:64:0a:56:3e:1d:02:b0:bd:77:a3:2f:48:
58:87:69:43:7c:2f:d0:6c:86:a8:07:40:c7:14:1a:04:14:77:
0c:81:92:33:6f:e4:e9:9c:81:c2:b2:de:55:ae:a2:57:1b:78:
0e:83:2c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 06:27:36 2025 by rpki-client