Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3232203d3e20323637353839.roa
File: 34352e37302e3134382e302f32322d3232203d3e20323637353839.roa (raw, json)
Hash identifier: VWqWQineYy45RybNR+oDTvY2uRfQMhJXB8Jl7SHOmyo=
Subject key identifier: 56:72:ED:1E:03:83:83:50:32:7A:C8:72:EF:08:58:AF:17:B8:50:81
Certificate issuer: /CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC
Certificate serial: 0835C51C6A5234DA37F48DAD8D4944DD688EA8CD
Authority key identifier: AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer
Subject info access: rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3232203d3e20323637353839.roa
Signing time: Mon 15 Jul 2024 13:24:34 +0000
ROA not before: Mon 15 Jul 2024 13:19:34 +0000
ROA not after: Mon 14 Jul 2025 13:24:34 +0000
asID: 267589
IP address blocks: 45.70.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 08 Jan 2025 11:54:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:35:c5:1c:6a:52:34:da:37:f4:8d:ad:8d:49:44:dd:68:8e:a8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC
Validity
Not Before: Jul 15 13:19:34 2024 GMT
Not After : Jul 14 13:24:34 2025 GMT
Subject: CN=5672ED1E03838350327AC872EF0858AF17B85081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a9:19:4f:c5:d8:03:72:d7:27:ff:99:a7:c5:
7d:25:01:3d:8a:46:e6:ac:2c:8b:d3:4a:25:0b:0b:
d9:af:45:42:59:3a:c7:25:34:cf:f7:00:07:d2:80:
19:dd:70:af:0e:cd:61:3e:14:37:0c:d0:50:29:64:
71:09:88:1f:09:4d:86:cf:c5:79:09:ae:52:4b:6d:
5d:cc:68:e9:9c:6a:87:a1:fb:d8:8e:af:d1:f1:a6:
e7:aa:0c:ec:61:a3:f7:af:82:1e:3e:3a:76:db:fe:
ce:59:52:4c:7d:4f:c4:c0:68:86:c5:1d:a9:0d:e7:
76:21:fe:c4:cb:3e:5f:86:7f:53:e2:6c:3b:3d:4c:
b0:0b:15:66:82:0d:d2:10:94:dd:e0:96:98:84:77:
20:51:90:10:9b:a6:89:bd:11:19:ed:55:43:0c:6a:
60:2f:ab:91:20:d3:32:e9:43:31:56:99:6b:7f:8e:
e0:3c:de:d7:6a:2f:5c:52:e2:09:a4:86:17:de:11:
bd:bc:ce:c8:f7:03:77:5d:f5:3a:f2:a4:b3:ae:70:
58:25:91:a6:0e:87:9a:00:6e:32:32:bc:b3:ea:81:
e7:6d:11:3d:6c:6a:76:93:45:63:41:95:d8:0a:c3:
ea:97:74:b2:ba:d9:81:cd:7d:71:5e:3a:48:91:3c:
c7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:72:ED:1E:03:83:83:50:32:7A:C8:72:EF:08:58:AF:17:B8:50:81
X509v3 Authority Key Identifier:
keyid:AF:CA:87:E4:AD:03:5B:5E:4C:A0:ED:A1:C4:C0:42:C6:9B:FE:91:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/AFCA87E4AD035B5E4CA0EDA1C4C042C69BFE91EC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/7KpwKJjGy6R95EFPa7iQd6PJJyvpQQC9hxS2rZti1Bxg/1/34352e37302e3134382e302f32322d3232203d3e20323637353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.148.0/22
Signature Algorithm: sha256WithRSAEncryption
31:69:fc:ef:1e:8e:3b:01:f4:59:fa:b9:f6:13:1b:da:7b:b7:
87:16:86:cd:53:cc:c9:2e:e1:dc:d0:f8:b9:21:df:23:81:9f:
7e:cc:82:cf:bb:11:b7:b3:cb:12:ee:c7:8e:0b:a4:85:dc:48:
df:62:0d:43:e9:b4:7b:1f:56:aa:55:cf:0b:8e:d8:f3:3b:2e:
64:6c:bd:ce:5d:ff:8a:64:89:e1:51:08:a0:33:d6:1b:c1:df:
1c:1c:cf:d9:44:29:d0:50:ac:47:30:59:04:e0:29:71:d1:52:
e2:54:e1:3b:c8:e0:0f:87:b9:57:a5:1f:1d:dc:b9:05:c5:b9:
78:84:fa:16:b7:11:e6:12:80:58:0e:fa:bc:2a:87:73:95:bc:
66:a3:58:45:ad:8f:3e:7b:12:62:df:67:22:c5:74:db:c5:87:
cf:58:cb:7e:86:26:8d:d8:bb:84:4b:4f:49:1e:07:ab:41:83:
7c:3b:0f:34:66:6f:3f:a1:2b:56:a2:ff:96:4f:67:96:83:b1:
e9:fc:d1:90:c5:c1:1d:7a:a7:04:22:a9:d8:70:f6:44:15:0b:
28:42:32:14:a3:e6:32:93:01:d8:1d:6f:03:6f:ac:44:ef:01:
4a:bb:cf:fd:37:18:95:04:a8:d0:8b:bb:9f:b2:9b:fe:3f:48:
c8:53:cd:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:51:21 2025 by rpki-client