Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31362e302f32322d3232203d3e20323638383738.roa
File: 34352e3137342e31362e302f32322d3232203d3e20323638383738.roa (raw, json)
Hash identifier: Jwko+fy3IR3loGeZeFd4n6btz1e1VrVnm0veZlS3KmM=
Subject key identifier: 76:25:66:C3:C0:77:C3:AA:45:50:5B:2F:63:68:68:C3:33:8D:F0:79
Certificate issuer: /CN=B41C5D20FCE773495931567B28D958303BB191D0
Certificate serial: 0EE785C7E9C6EFF0DC44B83B60CDE60779FC4A82
Authority key identifier: B4:1C:5D:20:FC:E7:73:49:59:31:56:7B:28:D9:58:30:3B:B1:91:D0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B41C5D20FCE773495931567B28D958303BB191D0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31362e302f32322d3232203d3e20323638383738.roa
Signing time: Fri 09 Feb 2024 12:32:33 +0000
ROA not before: Fri 09 Feb 2024 12:27:33 +0000
ROA not after: Fri 07 Feb 2025 12:32:33 +0000
asID: 268878
IP address blocks: 45.174.16.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:e7:85:c7:e9:c6:ef:f0:dc:44:b8:3b:60:cd:e6:07:79:fc:4a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B41C5D20FCE773495931567B28D958303BB191D0
Validity
Not Before: Feb 9 12:27:33 2024 GMT
Not After : Feb 7 12:32:33 2025 GMT
Subject: CN=762566C3C077C3AA45505B2F636868C3338DF079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:64:ff:8d:66:f7:d2:e9:18:70:ba:44:35:a2:
b4:d2:a6:bf:16:e4:ec:77:4f:91:ff:d3:f4:fb:2e:
69:91:36:eb:f3:99:7d:03:30:fe:53:8b:c5:94:76:
9d:24:2a:16:58:b1:29:b4:d7:bb:b0:b3:73:91:ff:
1a:f6:8b:21:f9:f4:9d:eb:d6:8d:75:0b:95:25:5a:
5b:30:d4:66:f9:af:64:ea:d6:b6:f5:c1:60:c1:ee:
19:0d:3e:8f:25:56:00:9e:79:09:c1:eb:fe:48:02:
0f:a5:91:ca:c7:81:f1:11:0c:67:98:42:d2:55:73:
9c:3f:1f:e9:81:c5:df:40:6f:4a:75:c9:8f:e4:08:
f7:dc:94:72:98:63:6e:06:bd:43:72:bf:0e:3f:89:
fc:bf:6b:56:bb:2f:a4:f7:b1:a8:24:63:ad:02:45:
81:f0:ef:9c:21:c8:e1:e8:bf:b6:6b:97:54:3f:75:
05:56:ce:52:f6:6e:b8:95:d6:a3:6e:ac:35:9f:aa:
c6:b2:6a:cc:2e:a5:5f:9b:71:65:81:0c:cb:6c:d7:
fb:f1:7c:d7:e3:cd:78:f9:58:80:05:96:18:93:49:
a9:02:fd:34:a8:b0:62:2b:8a:cf:e6:52:86:54:96:
00:10:24:46:ce:a6:20:72:52:63:e8:62:45:80:b9:
75:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:25:66:C3:C0:77:C3:AA:45:50:5B:2F:63:68:68:C3:33:8D:F0:79
X509v3 Authority Key Identifier:
keyid:B4:1C:5D:20:FC:E7:73:49:59:31:56:7B:28:D9:58:30:3B:B1:91:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/B41C5D20FCE773495931567B28D958303BB191D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/B41C5D20FCE773495931567B28D958303BB191D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/79K4idmLm4ees52PwYMAJQKWXbcVQT85693ikRyzskbo/0/34352e3137342e31362e302f32322d3232203d3e20323638383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.174.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:04:cd:1d:7f:c7:46:b3:89:fe:b3:b4:aa:f5:b4:d6:1e:05:
bc:4c:b3:21:c8:23:71:9d:b6:a5:2a:6a:9a:eb:2d:95:b2:d7:
50:8f:9e:2c:ec:36:98:26:10:05:d2:2d:24:55:49:53:c3:29:
93:39:dd:68:9e:d6:fc:bb:c1:47:72:00:f9:4c:9e:5f:25:12:
86:81:a5:5d:8f:ae:8c:69:1b:a4:92:c6:83:4a:f5:f0:ab:8a:
cd:05:bd:50:12:27:94:ae:30:2a:74:bd:56:12:f8:77:50:d4:
d2:99:f5:62:ee:1b:36:68:69:c7:27:d4:be:84:bf:ce:33:ce:
c6:16:a9:c1:5b:5e:a9:39:4e:cb:cb:08:f6:cc:35:17:b5:94:
f7:25:40:b3:7f:b7:eb:c7:ea:47:63:f5:6d:2a:c0:6c:b3:1a:
7a:43:ce:96:a6:49:d1:7a:d0:92:01:97:73:6b:d2:51:56:47:
90:99:34:4a:c5:72:e8:98:8e:a7:78:ab:9d:6a:54:59:b1:9c:
76:e8:bc:77:44:f0:46:4b:59:3d:fd:97:c2:1c:ec:1a:0e:3f:
64:bb:11:3e:65:ca:c1:69:37:ef:41:a6:e8:cd:aa:b1:4d:32:
b8:f5:61:f6:ff:f7:99:7a:cf:2b:46:66:c1:e9:63:b4:b3:5f:
a7:15:2f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 05:37:51 2024 by rpki-client on console-ams.rpki-client.org