Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6HhgxA9pdAmqECaVicMN26JbQSWWqJJUbMP9sPRvMsmg/1/323830343a323861343a3a2f33322d3334203d3e20323633393732.roa
File: 323830343a323861343a3a2f33322d3334203d3e20323633393732.roa (raw, json)
Hash identifier: ahxK+WMTsV39KQhAViLFQ4numR+SobUNh2vqNKZYm0M=
Subject key identifier: A6:E8:0B:B2:0D:0D:AC:A1:0B:64:4C:E4:D0:E0:71:B4:38:1B:9D:95
Certificate issuer: /CN=B20E3C8281FB009A48EDFE56131C930D739F11C4
Certificate serial: 136B8E83D9B50FFBC68E2F399B81EFD9ADD1EAC5
Authority key identifier: B2:0E:3C:82:81:FB:00:9A:48:ED:FE:56:13:1C:93:0D:73:9F:11:C4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B20E3C8281FB009A48EDFE56131C930D739F11C4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6HhgxA9pdAmqECaVicMN26JbQSWWqJJUbMP9sPRvMsmg/1/323830343a323861343a3a2f33322d3334203d3e20323633393732.roa
Signing time: Thu 13 Mar 2025 18:10:37 +0000
ROA not before: Thu 13 Mar 2025 18:05:37 +0000
ROA not after: Thu 12 Mar 2026 18:10:37 +0000
asID: 263972
IP address blocks: 2804:28a4::/32 maxlen: 34
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:6b:8e:83:d9:b5:0f:fb:c6:8e:2f:39:9b:81:ef:d9:ad:d1:ea:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B20E3C8281FB009A48EDFE56131C930D739F11C4
Validity
Not Before: Mar 13 18:05:37 2025 GMT
Not After : Mar 12 18:10:37 2026 GMT
Subject: CN=A6E80BB20D0DACA10B644CE4D0E071B4381B9D95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:d1:bc:cb:6b:62:16:04:f9:70:bf:3b:79:
f6:14:79:cd:b7:32:c2:f2:01:10:15:0b:16:2e:42:
a4:8e:a5:b1:84:3c:59:89:09:91:ca:3f:17:3b:5b:
4e:40:24:6c:76:f2:af:32:38:84:9e:d5:70:05:a3:
4d:37:3b:36:4a:d8:09:0b:8c:3a:72:5f:9e:ee:b7:
e2:3b:d5:6c:04:65:bc:e8:89:dc:c5:07:36:85:c1:
d7:89:d4:f0:37:a1:aa:2f:9a:63:da:3c:f0:93:8a:
29:5e:d1:48:97:de:d0:ad:75:46:74:32:5f:eb:40:
a1:80:ca:4c:17:f4:9a:94:38:8d:d3:59:e0:76:57:
e4:49:3b:bd:9d:e5:66:0f:bd:b2:b3:a8:cc:34:2c:
46:9b:90:97:b6:f5:80:85:a2:dd:d5:d7:8a:22:53:
b6:75:b7:08:44:f4:47:35:45:f4:ba:f0:08:cc:21:
f0:34:f1:db:0f:8f:6d:27:7e:34:bc:88:36:d9:33:
42:19:e0:84:60:68:cb:5f:68:38:88:a8:61:2e:71:
61:61:61:cb:cd:e4:d3:32:fb:34:4a:21:91:79:43:
47:76:3c:b3:34:5a:cc:d7:a7:05:80:84:3a:d7:66:
32:23:2e:56:74:e4:a7:f9:56:c8:26:21:df:1d:2a:
fb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E8:0B:B2:0D:0D:AC:A1:0B:64:4C:E4:D0:E0:71:B4:38:1B:9D:95
X509v3 Authority Key Identifier:
keyid:B2:0E:3C:82:81:FB:00:9A:48:ED:FE:56:13:1C:93:0D:73:9F:11:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6HhgxA9pdAmqECaVicMN26JbQSWWqJJUbMP9sPRvMsmg/1/B20E3C8281FB009A48EDFE56131C930D739F11C4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B20E3C8281FB009A48EDFE56131C930D739F11C4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6HhgxA9pdAmqECaVicMN26JbQSWWqJJUbMP9sPRvMsmg/1/323830343a323861343a3a2f33322d3334203d3e20323633393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:28a4::/32
Signature Algorithm: sha256WithRSAEncryption
80:a5:23:db:56:ac:32:36:e5:ef:48:e7:30:f4:58:ea:89:80:
f6:d5:67:f5:c8:03:01:32:c8:03:10:43:06:d3:9c:15:25:97:
91:ad:38:22:06:b4:73:94:4d:18:32:76:f8:6b:35:b9:e3:5b:
03:6d:67:21:df:98:d0:e3:85:86:c2:18:0c:49:a2:9c:9b:d7:
e7:8e:56:2f:c1:eb:07:fe:62:d2:cf:fb:92:ab:64:55:b4:4f:
20:a0:c0:a5:0a:cf:21:53:c5:29:9b:e7:5c:cf:cf:1a:4d:ce:
61:07:44:a5:be:f7:1e:49:5d:7f:78:ba:29:5e:88:a4:3d:98:
7f:2f:8e:58:f8:eb:17:1e:53:7f:9e:48:d8:b3:f4:58:18:f0:
08:d4:d8:87:14:66:45:fd:60:b5:1b:49:05:8b:cb:16:67:16:
4f:02:cb:d5:fe:7a:83:f9:3e:17:f1:e0:62:1e:66:07:eb:c2:
bf:e4:56:0a:b3:06:71:3c:92:ca:ed:4f:1d:07:b9:c3:d8:9d:
01:1d:4b:7b:24:cc:9f:6e:bf:8b:4d:7c:b7:c8:e0:14:81:93:
f2:41:f7:c8:de:21:77:a0:04:d1:c1:65:37:34:a8:ea:65:30:
df:27:e1:4d:fc:95:43:ae:9e:ae:b3:c6:1d:16:bd:a0:c3:7e:
a2:2b:30:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:35:21 2025 by rpki-client