Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa
File: 323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa (raw, json)
Hash identifier: 4fwRgGcIql4M7Ly6KU79TFcc0UwQogZC0vtWrJy9vE8=
Subject key identifier: D2:2A:B3:8F:55:FB:10:BF:41:93:AB:E5:48:C6:23:A4:82:C0:A1:CB
Certificate issuer: /CN=0085D523C19EB69C5F086AF7848E34ABFC1D67A9
Certificate serial: 0CAE808C5CC026851A3FFC6C8D1AAA3D37F98CFA
Authority key identifier: 00:85:D5:23:C1:9E:B6:9C:5F:08:6A:F7:84:8E:34:AB:FC:1D:67:A9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa
Signing time: Tue 25 Jun 2024 12:18:56 +0000
ROA not before: Tue 25 Jun 2024 12:13:56 +0000
ROA not after: Tue 24 Jun 2025 12:18:56 +0000
asID: 262503
IP address blocks: 2804:2be0:7200::/40 maxlen: 40
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ae:80:8c:5c:c0:26:85:1a:3f:fc:6c:8d:1a:aa:3d:37:f9:8c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0085D523C19EB69C5F086AF7848E34ABFC1D67A9
Validity
Not Before: Jun 25 12:13:56 2024 GMT
Not After : Jun 24 12:18:56 2025 GMT
Subject: CN=D22AB38F55FB10BF4193ABE548C623A482C0A1CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:43:11:8e:a9:67:23:63:3f:1a:58:84:fa:76:
1c:c2:e8:06:34:1a:2f:40:54:88:a0:af:fb:16:71:
5e:b7:8a:1e:26:da:b1:69:19:f8:f8:43:4b:b3:cc:
6a:26:e4:8e:55:14:a3:c1:35:b4:d9:ad:19:c3:8c:
d7:c8:f0:cb:71:60:90:b4:38:e9:c9:11:3f:85:89:
b5:5d:ae:30:d2:c2:7e:be:5e:c6:be:0a:f1:11:03:
80:81:01:c7:de:88:40:30:09:cd:69:9b:1d:67:6f:
53:13:b9:92:7d:93:b9:83:5b:d5:43:ac:d2:5e:fa:
50:0e:b4:90:70:2a:8a:72:a9:6f:e4:a8:35:a3:8e:
f5:49:69:b7:5b:1c:19:f8:59:4c:4c:34:4c:40:3f:
64:e3:9f:cb:c0:d5:f2:eb:ec:9c:78:6d:e6:49:b6:
52:b1:ab:7f:62:a4:ef:90:d5:61:3f:70:69:53:ce:
f5:74:59:b3:79:f8:e7:af:aa:d1:96:af:1d:c3:6a:
e4:0d:ab:b3:d3:6a:e8:8f:d4:39:42:9a:10:e6:f9:
07:c3:bd:47:c9:db:d0:fa:35:20:57:24:94:f5:0c:
29:40:16:15:e7:6d:fe:f1:ae:d1:53:fa:f9:32:88:
88:eb:af:67:2c:46:7f:df:27:bd:d1:52:40:fc:24:
cc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2A:B3:8F:55:FB:10:BF:41:93:AB:E5:48:C6:23:A4:82:C0:A1:CB
X509v3 Authority Key Identifier:
keyid:00:85:D5:23:C1:9E:B6:9C:5F:08:6A:F7:84:8E:34:AB:FC:1D:67:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2be0:7200::/40
Signature Algorithm: sha256WithRSAEncryption
8c:fe:01:57:b2:14:e1:50:59:b9:20:b0:bc:ce:ce:78:7b:ae:
04:94:2d:4f:f7:eb:fc:e8:0d:a4:b8:b8:16:b4:2c:6f:40:1e:
60:ef:b1:72:a7:40:9e:1e:3e:51:d6:33:64:8b:11:23:9e:45:
36:16:ba:f3:e6:60:88:63:aa:09:d1:ac:c9:48:da:87:0a:fa:
1f:ad:fb:30:d7:91:66:68:b3:a6:05:f0:d5:58:b0:b4:44:77:
64:30:16:73:98:88:18:b7:8a:cd:8d:fc:12:34:4b:e2:e2:32:
60:cc:0b:f8:86:da:af:44:a3:cc:b6:4a:81:cd:f6:4b:12:ed:
78:ed:3a:83:cb:28:1c:8d:69:32:9b:d2:d3:a6:d3:21:72:5f:
64:b6:6f:b3:c4:0a:50:87:dd:5b:09:3e:28:b5:f9:f5:4c:81:
42:d9:9f:57:47:86:9d:2e:d1:10:17:f2:eb:a3:f2:4b:e3:c7:
82:d8:70:07:01:64:04:6a:05:2b:f1:d7:f9:44:3e:1c:e6:2f:
3d:a4:71:93:0f:ad:aa:cc:bc:28:c2:16:c3:53:5a:c7:33:99:
78:1d:12:86:18:00:78:3e:81:48:aa:65:be:dc:fe:f9:7a:0a:
de:3a:87:5c:ef:16:8b:05:c2:f5:ae:4d:1a:5d:41:69:a6:ca:
a6:3a:45:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 18:58:44 2024 by rpki-client on console-fra.rpki-client.org