Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6BoNsV1PbeVFA2Z685XmHu2dJECNBDZeAzw7GqpkHN8j/0/323830343a313537303a3a2f33322d3332203d3e20323633333838.roa
File: 323830343a313537303a3a2f33322d3332203d3e20323633333838.roa (raw, json)
Hash identifier: AkJ41OFmEvqdeBd+ZtuyVLUQF2mT1ACHcHpwhnTPx+E=
Subject key identifier: 95:BF:CC:55:3E:FD:51:AF:9C:3E:BB:66:F3:17:48:D6:9F:09:E0:A0
Certificate issuer: /CN=5A8D1DD70C8B1FA2913BA40F6676F76F59AF7EB4
Certificate serial: 3A3BC1F1C59213B31BAF7BCC03671E7D24173706
Authority key identifier: 5A:8D:1D:D7:0C:8B:1F:A2:91:3B:A4:0F:66:76:F7:6F:59:AF:7E:B4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A8D1DD70C8B1FA2913BA40F6676F76F59AF7EB4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6BoNsV1PbeVFA2Z685XmHu2dJECNBDZeAzw7GqpkHN8j/0/323830343a313537303a3a2f33322d3332203d3e20323633333838.roa
Signing time: Tue 09 Apr 2024 13:48:33 +0000
ROA not before: Tue 09 Apr 2024 13:43:33 +0000
ROA not after: Tue 08 Apr 2025 13:48:33 +0000
asID: 263388
IP address blocks: 2804:1570::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 16 Jul 2024 12:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:3b:c1:f1:c5:92:13:b3:1b:af:7b:cc:03:67:1e:7d:24:17:37:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A8D1DD70C8B1FA2913BA40F6676F76F59AF7EB4
Validity
Not Before: Apr 9 13:43:33 2024 GMT
Not After : Apr 8 13:48:33 2025 GMT
Subject: CN=95BFCC553EFD51AF9C3EBB66F31748D69F09E0A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:da:93:5b:f1:a7:74:a6:1f:01:56:af:14:20:
93:37:77:0c:f5:15:ab:b4:32:43:0b:8a:29:c3:34:
31:9a:b5:78:ed:6c:b7:58:ee:70:d8:4d:d8:da:c3:
d0:3c:f2:e3:2a:c7:7e:53:05:9c:07:ce:53:d3:b5:
a4:f9:e0:fa:40:74:e1:3e:d3:b3:84:22:52:ec:50:
7f:70:e9:00:ae:07:76:fe:b7:38:c0:ab:a0:6c:cd:
f8:7f:ac:f7:d3:51:d9:6f:5a:1c:8c:a0:f9:e4:c7:
bb:af:75:ec:e1:5d:d4:d8:88:d4:ce:7f:81:86:2c:
e3:6e:42:3d:d2:9e:9e:b0:6e:2c:ca:8a:5c:d6:19:
29:ef:ce:21:f2:43:9f:eb:54:29:f7:90:ef:f0:9b:
71:d0:2c:7b:28:40:fc:27:2c:0d:7a:da:92:58:df:
7f:fe:5a:3e:d6:fd:31:cf:0b:28:00:c8:a0:41:46:
3c:94:be:9d:28:0c:22:bf:66:c3:96:8d:48:5c:46:
15:9c:b8:a7:dd:86:b9:cd:25:18:25:b3:44:33:d1:
ea:b4:e1:7d:57:da:4e:2d:17:65:de:a0:bb:b4:8a:
2a:97:29:5b:e8:15:9d:8b:02:83:f5:cd:3d:77:c9:
b1:f9:32:31:df:29:02:98:ea:59:cc:ba:58:e0:99:
a6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BF:CC:55:3E:FD:51:AF:9C:3E:BB:66:F3:17:48:D6:9F:09:E0:A0
X509v3 Authority Key Identifier:
keyid:5A:8D:1D:D7:0C:8B:1F:A2:91:3B:A4:0F:66:76:F7:6F:59:AF:7E:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6BoNsV1PbeVFA2Z685XmHu2dJECNBDZeAzw7GqpkHN8j/0/5A8D1DD70C8B1FA2913BA40F6676F76F59AF7EB4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A8D1DD70C8B1FA2913BA40F6676F76F59AF7EB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6BoNsV1PbeVFA2Z685XmHu2dJECNBDZeAzw7GqpkHN8j/0/323830343a313537303a3a2f33322d3332203d3e20323633333838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1570::/32
Signature Algorithm: sha256WithRSAEncryption
33:2d:de:30:be:22:b1:2d:25:b3:91:82:f0:ea:7e:83:0a:62:
f7:6a:6b:2f:ba:14:a8:38:78:c7:e5:b2:2d:af:a6:04:80:82:
3d:c8:3f:a4:74:f8:73:8d:33:13:5e:57:b9:c4:02:ac:c2:f7:
70:41:49:0d:b3:0b:23:40:b9:b7:6d:00:e7:a5:1e:f5:68:83:
f2:f7:42:c9:06:8b:38:21:13:5d:e5:c1:95:9a:3c:6f:df:bd:
01:07:d7:07:0c:79:11:24:a7:4b:26:84:d6:d9:58:f1:f9:61:
d1:e4:55:9b:7d:7e:46:f4:58:3d:49:fb:e3:00:53:13:1a:47:
f2:6c:30:c2:03:c4:c7:46:b1:83:e4:39:49:37:3f:21:7a:7a:
9b:83:f0:62:fb:ab:8c:09:95:ee:c5:46:83:02:5b:e2:2e:6e:
24:b1:ec:22:c7:42:59:87:76:68:cb:b5:7c:5e:d1:6a:0d:3b:
72:0d:9b:c0:96:0f:fa:d7:79:cd:66:9a:8d:b5:3b:e3:91:55:
0d:fa:a8:49:7f:c0:25:7c:e3:eb:ba:0c:20:19:49:52:2a:c7:
b6:e5:ac:65:fd:9b:4a:c3:09:44:68:f9:c3:e9:23:f5:47:62:
47:7f:54:24:a4:a6:f7:f7:d2:0f:fb:7e:a5:a9:cc:08:c7:c7:
be:f7:1f:ba
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIUOjvB8cWSE7Mbr3vMA2cefSQXNwYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUE4RDFERDcwQzhCMUZBMjkxM0JBNDBGNjY3NkY3NkY1
OUFGN0VCNDAeFw0yNDA0MDkxMzQzMzNaFw0yNTA0MDgxMzQ4MzNaMDMxMTAvBgNV
BAMTKDk1QkZDQzU1M0VGRDUxQUY5QzNFQkI2NkYzMTc0OEQ2OUYwOUUwQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62pNb8ad0ph8BVq8UIJM3dwz1
Fau0MkMLiinDNDGatXjtbLdY7nDYTdjaw9A88uMqx35TBZwHzlPTtaT54PpAdOE+
07OEIlLsUH9w6QCuB3b+tzjAq6Bszfh/rPfTUdlvWhyMoPnkx7uvdezhXdTYiNTO
f4GGLONuQj3Snp6wbizKilzWGSnvziHyQ5/rVCn3kO/wm3HQLHsoQPwnLA162pJY
33/+Wj7W/THPCygAyKBBRjyUvp0oDCK/ZsOWjUhcRhWcuKfdhrnNJRgls0Qz0eq0
4X1X2k4tF2XeoLu0iiqXKVvoFZ2LAoP1zT13ybH5MjHfKQKY6lnMuljgmaaHAgMB
AAGjggJQMIICTDAdBgNVHQ4EFgQUlb/MVT79Ua+cPrtm8xdI1p8J4KAwHwYDVR0j
BBgwFoAUWo0d1wyLH6KRO6QPZnb3b1mvfrQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNkJvTnNWMVBiZVZGQTJaNjg1WG1IdTJkSkVDTkJEWmVBenc3R3Fwa0hO
OGovMC81QThEMURENzBDOEIxRkEyOTEzQkE0MEY2Njc2Rjc2RjU5QUY3RUI0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVBOEQxREQ3MEM4QjFGQTI5
MTNCQTQwRjY2NzZGNzZGNTlBRjdFQjQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzZCb05zVjFQYmVWRkEyWjY4NVhtSHUyZEpFQ05CRFplQXp3N0dxcGtITjhqLzAv
MzIzODMwMzQzYTMxMzUzNzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjMz
MzMzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKAQVcDANBgkqhkiG9w0BAQsFAAOCAQEAMy3eML4i
sS0ls5GC8Op+gwpi92prL7oUqDh4x+WyLa+mBICCPcg/pHT4c40zE15XucQCrML3
cEFJDbMLI0C5t20A56Ue9WiD8vdCyQaLOCETXeXBlZo8b9+9AQfXBwx5ESSnSyaE
1tlY8flh0eRVm31+RvRYPUn74wBTExpH8mwwwgPEx0axg+Q5STc/IXp6m4PwYvur
jAmV7sVGgwJb4i5uJLHsIsdCWYd2aMu1fF7Rag07cg2bwJYP+td5zWaajbU745FV
DfqoSX/AJXzj67oMIBlJUirHtuWsZf2bSsMJRGj5w+kj9UdiR39UJKSm9/fSD/t+
panMCMfHvvcfug==
-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:45 2024 by rpki-client on console-fra.rpki-client.org