Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
File: 34352e3233312e32382e302f32322d3332203d3e20323637313838.roa (raw, json)
Hash identifier: qh7k+NH3tBNYQewZEijaJimocP1j7YrUXBjUBE4PHgM=
Subject key identifier: BA:96:A6:33:6E:9E:44:D8:4C:15:1F:DE:C8:68:27:64:4C:F0:45:A0
Certificate issuer: /CN=E9080AC9132071B795A808E8FF1923E51FF17647
Certificate serial: 526C13EE25F27D2C92BAE07B18C051BD6633627F
Authority key identifier: E9:08:0A:C9:13:20:71:B7:95:A8:08:E8:FF:19:23:E5:1F:F1:76:47
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E9080AC9132071B795A808E8FF1923E51FF17647.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
Signing time: Thu 05 Feb 2026 13:04:10 +0000
ROA not before: Thu 05 Feb 2026 12:59:10 +0000
ROA not after: Thu 04 Feb 2027 13:04:10 +0000
asID: 267188
IP address blocks: 45.231.28.0/22 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:6c:13:ee:25:f2:7d:2c:92:ba:e0:7b:18:c0:51:bd:66:33:62:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E9080AC9132071B795A808E8FF1923E51FF17647
Validity
Not Before: Feb 5 12:59:10 2026 GMT
Not After : Feb 4 13:04:10 2027 GMT
Subject: CN=BA96A6336E9E44D84C151FDEC86827644CF045A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:b6:1f:cb:70:c9:63:7f:aa:3b:d3:22:28:
82:34:c5:c8:e9:94:80:a2:17:ab:3d:2a:c5:19:6b:
ce:6d:9f:3e:31:c9:6b:fd:68:f5:5e:32:b0:13:03:
89:16:1e:c5:e7:e7:f6:a4:1f:1f:69:26:0d:fe:6d:
9a:0d:6b:f1:cc:76:cd:cf:bb:a5:97:87:7d:49:58:
fe:14:ec:5f:ab:91:e7:4b:5c:ed:fb:41:a5:c7:23:
77:b6:55:44:92:1c:3e:46:be:ed:7e:40:09:fc:68:
b6:d5:83:1e:43:39:da:fb:2d:dd:ab:ce:c5:75:4e:
ef:b0:1a:c8:98:3b:c2:11:0d:cc:8f:5e:17:06:0b:
1b:60:64:0c:3c:74:23:c6:6c:6b:c6:92:97:66:b8:
3d:a1:92:60:e7:48:e1:f7:f6:a4:91:48:9b:31:ad:
84:24:36:75:1a:b6:2d:52:5f:fa:54:49:73:c8:03:
71:71:f0:fe:e7:54:c4:2f:5a:f1:8c:f7:cb:91:12:
62:ed:92:97:6c:bc:f6:e5:5e:fc:c4:4f:0a:bc:d6:
fe:d8:99:53:40:c1:d3:03:30:38:98:6e:8a:9c:2c:
23:02:d0:5e:f4:f3:16:4b:f4:ee:1a:fb:f6:80:21:
5c:4c:f6:61:2c:03:ac:0b:58:f5:53:7a:ff:49:a9:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:96:A6:33:6E:9E:44:D8:4C:15:1F:DE:C8:68:27:64:4C:F0:45:A0
X509v3 Authority Key Identifier:
keyid:E9:08:0A:C9:13:20:71:B7:95:A8:08:E8:FF:19:23:E5:1F:F1:76:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/E9080AC9132071B795A808E8FF1923E51FF17647.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E9080AC9132071B795A808E8FF1923E51FF17647.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.28.0/22
Signature Algorithm: sha256WithRSAEncryption
18:77:c6:e1:6f:d3:57:ef:c1:9d:39:64:bc:dd:a8:5f:8f:2c:
8d:97:b1:69:67:7b:74:15:07:d9:2d:d6:ee:45:03:39:4b:e7:
10:b2:6c:d7:41:d1:c9:13:66:a8:de:25:e8:eb:b1:83:99:a1:
f5:b5:cf:97:02:ca:67:88:5b:ba:73:83:88:56:a9:7d:bf:c1:
44:8c:64:90:38:4d:84:c9:15:d9:41:eb:47:a9:3a:c9:a7:78:
61:0a:a6:11:bd:d5:0b:e8:ed:c9:f2:ed:5c:75:eb:1e:fb:8c:
cc:c3:f2:ca:73:b4:71:68:30:b4:65:35:4a:37:19:f9:4c:80:
21:04:6c:41:fa:b5:87:9c:b8:0e:ef:cc:cf:d9:94:f1:7e:31:
ce:2d:52:d5:cb:05:df:95:ee:5f:b7:0e:c8:35:e1:68:14:91:
2d:fd:91:23:3e:ee:c5:82:04:67:a7:53:93:d2:1c:e4:87:2e:
6d:a1:68:f6:ca:9e:9d:7a:82:a9:b0:e6:f6:a7:bc:94:34:82:
16:ab:19:6a:12:9e:c1:a5:7e:05:3d:a4:f0:a1:24:ff:67:b0:
1f:38:54:59:ce:1a:74:1f:0d:58:d8:3c:56:eb:10:9e:31:83:
a7:07:45:41:19:12:b5:1e:c8:7b:1d:bd:b7:51:2e:64:ee:fa:
4e:b9:4b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 23 03:05:13 2026 by rpki-client