Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a3a2f33322d3332203d3e20323632353033.roa
File: 323830343a326265303a3a2f33322d3332203d3e20323632353033.roa (raw, json)
Hash identifier: wT3u0hfewq/7gQeASl42DvbhvjDo5azWr5sFwr8eVR4=
Subject key identifier: A9:DE:7E:95:59:FA:1A:BE:E8:9F:3C:F7:79:19:A7:14:78:35:59:2C
Certificate issuer: /CN=0085D523C19EB69C5F086AF7848E34ABFC1D67A9
Certificate serial: 30C3DE4462AAB1C2A96C1CB5D6D5C8448EB94476
Authority key identifier: 00:85:D5:23:C1:9E:B6:9C:5F:08:6A:F7:84:8E:34:AB:FC:1D:67:A9
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a3a2f33322d3332203d3e20323632353033.roa
Signing time: Tue 25 Jun 2024 12:18:56 +0000
ROA not before: Tue 25 Jun 2024 12:13:56 +0000
ROA not after: Tue 24 Jun 2025 12:18:56 +0000
asID: 262503
IP address blocks: 2804:2be0::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:c3:de:44:62:aa:b1:c2:a9:6c:1c:b5:d6:d5:c8:44:8e:b9:44:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0085D523C19EB69C5F086AF7848E34ABFC1D67A9
Validity
Not Before: Jun 25 12:13:56 2024 GMT
Not After : Jun 24 12:18:56 2025 GMT
Subject: CN=A9DE7E9559FA1ABEE89F3CF77919A7147835592C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:59:bf:b4:12:33:64:27:3a:6e:fa:18:f7:
f9:57:68:0c:40:58:74:27:c4:bb:92:62:b6:fa:a9:
5f:1b:7a:50:95:91:81:1a:b2:de:dc:1f:21:80:68:
2e:06:f8:aa:10:b5:1a:3a:a2:33:7d:72:f3:af:ed:
70:4e:61:cb:af:e6:98:da:b5:95:be:f7:6f:10:82:
a5:39:43:83:79:65:ca:93:1b:74:7d:4f:b9:9c:84:
f7:70:8b:ed:ec:a9:be:f3:7a:a7:f3:5e:00:c2:e9:
11:98:eb:29:28:61:a0:93:94:1c:e9:d3:d2:a3:ef:
8c:52:c7:46:a9:f3:f2:c3:ac:1c:42:aa:b8:cd:9d:
d9:11:64:20:cb:b9:1b:f7:ba:71:0e:40:37:6c:53:
17:45:f8:b3:15:95:8e:16:95:d6:a4:ca:b5:44:89:
74:d0:35:e0:ff:2e:88:ea:84:dd:75:de:da:28:f0:
d4:12:91:b1:27:d3:b5:cd:b9:df:40:3a:e4:fb:49:
73:13:98:9a:31:71:fd:20:79:a3:d2:7f:66:73:60:
f2:62:31:99:f5:7d:04:8a:e3:43:08:ed:a3:72:17:
50:6b:14:c8:21:2c:f9:32:26:64:b1:61:d2:2a:f4:
dc:68:2e:ee:70:9b:00:a9:d5:ad:ae:30:ed:d5:97:
f4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:DE:7E:95:59:FA:1A:BE:E8:9F:3C:F7:79:19:A7:14:78:35:59:2C
X509v3 Authority Key Identifier:
keyid:00:85:D5:23:C1:9E:B6:9C:5F:08:6A:F7:84:8E:34:AB:FC:1D:67:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0085D523C19EB69C5F086AF7848E34ABFC1D67A9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a3a2f33322d3332203d3e20323632353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:2be0::/32
Signature Algorithm: sha256WithRSAEncryption
04:1b:db:44:0d:fd:10:43:b8:fe:78:42:35:9c:e0:6e:ea:83:
02:4f:ee:40:cb:f7:c4:bd:6a:74:c4:7a:78:b7:41:a4:24:8e:
bc:d2:0a:80:ff:f0:69:c4:ac:2a:13:f0:1b:41:3f:bd:f0:4d:
ad:5a:71:32:9e:45:3e:f7:d4:97:96:31:3e:98:e5:fd:cf:1b:
db:fb:bd:fd:82:94:a9:8e:78:04:e1:12:32:70:34:c8:78:86:
c5:41:78:38:da:7b:4a:6e:b4:60:65:25:22:28:bc:48:cb:9e:
a3:3d:88:34:bf:03:2c:7e:21:1c:0f:4a:a5:1a:f9:9a:2b:0e:
fb:b3:09:40:b4:74:5b:ab:cf:74:f7:13:f3:ea:25:9e:39:b3:
7f:75:43:61:6a:d9:a7:db:30:6d:cc:8a:3a:c2:50:99:93:ee:
72:25:c3:02:1a:7a:7b:8e:d7:7b:b3:92:fb:16:3b:68:55:88:
f6:ad:4d:f9:24:d2:53:41:ed:2b:d0:ee:64:94:bb:a9:2e:f1:
49:c3:98:09:7f:9a:2e:15:42:d4:0a:e9:a1:64:a5:1d:4e:6f:
1d:7d:91:20:b8:d2:36:2e:88:98:a2:ba:2e:41:73:d0:88:d9:
b7:53:67:c0:a7:5f:35:4d:78:f0:8e:31:5a:b0:d3:1c:34:b6:
9d:21:55:fa
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIUMMPeRGKqscKpbBy11tXIRI65RHYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDA4NUQ1MjNDMTlFQjY5QzVGMDg2QUY3ODQ4RTM0QUJG
QzFENjdBOTAeFw0yNDA2MjUxMjEzNTZaFw0yNTA2MjQxMjE4NTZaMDMxMTAvBgNV
BAMTKEE5REU3RTk1NTlGQTFBQkVFODlGM0NGNzc5MTlBNzE0NzgzNTU5MkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPfVm/tBIzZCc6bvoY9/lXaAxA
WHQnxLuSYrb6qV8belCVkYEast7cHyGAaC4G+KoQtRo6ojN9cvOv7XBOYcuv5pja
tZW+928QgqU5Q4N5ZcqTG3R9T7mchPdwi+3sqb7zeqfzXgDC6RGY6ykoYaCTlBzp
09Kj74xSx0ap8/LDrBxCqrjNndkRZCDLuRv3unEOQDdsUxdF+LMVlY4WldakyrVE
iXTQNeD/LojqhN113too8NQSkbEn07XNud9AOuT7SXMTmJoxcf0geaPSf2ZzYPJi
MZn1fQSK40MI7aNyF1BrFMghLPkyJmSxYdIq9NxoLu5wmwCp1a2uMO3Vl/QHAgMB
AAGjggJQMIICTDAdBgNVHQ4EFgQUqd5+lVn6Gr7onzz3eRmnFHg1WSwwHwYDVR0j
BBgwFoAUAIXVI8GetpxfCGr3hI40q/wdZ6kwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vOEVvNVFNbXF0ZGltNGp3bzVBdFR1UEprUWl6UGNtV1NtOWZvUnVmWU1G
a0YvMC8wMDg1RDUyM0MxOUVCNjlDNUYwODZBRjc4NDhFMzRBQkZDMUQ2N0E5LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAwODVENTIzQzE5RUI2OUM1
RjA4NkFGNzg0OEUzNEFCRkMxRDY3QTkuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzhFbzVRTW1xdGRpbTRqd281QXRUdVBKa1FpelBjbVdTbTlmb1J1ZllNRmtGLzAv
MzIzODMwMzQzYTMyNjI2NTMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzNjMy
MzUzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKAQr4DANBgkqhkiG9w0BAQsFAAOCAQEABBvbRA39
EEO4/nhCNZzgbuqDAk/uQMv3xL1qdMR6eLdBpCSOvNIKgP/wacSsKhPwG0E/vfBN
rVpxMp5FPvfUl5YxPpjl/c8b2/u9/YKUqY54BOESMnA0yHiGxUF4ONp7Sm60YGUl
Iii8SMueoz2INL8DLH4hHA9KpRr5misO+7MJQLR0W6vPdPcT8+olnjmzf3VDYWrZ
p9swbcyKOsJQmZPuciXDAhp6e47Xe7OS+xY7aFWI9q1N+STSU0HtK9DuZJS7qS7x
ScOYCX+aLhVC1ArpoWSlHU5vHX2RILjSNi6ImKK6LkFz0IjZt1NnwKdfNU148I4x
WrDTHDS2nSFV+g==
-----END CERTIFICATE-----
Generated at Fri Oct 4 21:12:38 2024 by rpki-client on console-ams.rpki-client.org