Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/34352e37312e3232342e302f32322d3234203d3e203238313436.roa
File: 34352e37312e3232342e302f32322d3234203d3e203238313436.roa (raw, json)
Hash identifier: lk8OmHDu869FgdQniyFadLgT7jVX85J8yqKQdtIB+6Q=
Subject key identifier: 29:CD:9C:DD:BD:1A:BD:7E:18:30:24:F4:EA:DA:91:65:78:C4:56:20
Certificate issuer: /CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Certificate serial: 12F851E2E8D69079619C0F79C25063B0CC3AF78A
Authority key identifier: C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/34352e37312e3232342e302f32322d3234203d3e203238313436.roa
Signing time: Fri 08 Nov 2024 18:27:07 +0000
ROA not before: Fri 08 Nov 2024 18:22:07 +0000
ROA not after: Fri 07 Nov 2025 18:27:07 +0000
asID: 28146
IP address blocks: 45.71.224.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:f8:51:e2:e8:d6:90:79:61:9c:0f:79:c2:50:63:b0:cc:3a:f7:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C33A5DDC754BD16555FE132A7EE0F058C2FF7B56
Validity
Not Before: Nov 8 18:22:07 2024 GMT
Not After : Nov 7 18:27:07 2025 GMT
Subject: CN=29CD9CDDBD1ABD7E183024F4EADA916578C45620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:96:b4:1d:1d:fe:2e:57:b2:4b:d5:97:b4:
74:d1:42:44:18:61:35:e9:be:6a:35:c3:bd:21:2e:
59:8d:93:39:34:c5:fd:3b:ff:43:ab:f4:df:f8:96:
11:12:88:8e:61:ed:6c:e4:37:58:f3:77:6c:d9:0e:
c8:47:09:cb:75:f1:d4:71:fc:2d:a7:a5:09:4a:1f:
dd:59:00:b6:9e:ad:97:70:0a:34:1d:d3:1b:2a:f5:
e5:f7:62:d1:ea:81:51:3e:0e:4d:85:5c:c0:aa:b8:
fd:db:aa:b4:45:00:f3:5d:ad:6f:d5:81:7e:53:8e:
94:86:1f:7b:c5:b1:4b:a1:43:ee:d2:9f:8e:01:c2:
dc:97:76:0f:70:67:b9:5e:f1:ff:6f:c1:8e:9c:22:
fb:00:b6:05:15:ee:23:d0:f7:fa:ca:0d:1a:2c:2a:
68:b2:ef:77:31:15:fd:49:d8:dc:eb:90:c9:fc:9a:
37:81:89:b9:9b:13:02:c2:ac:1a:13:08:13:32:81:
68:7e:cf:ef:b1:59:5f:0f:2d:14:a5:35:7d:43:14:
63:87:08:45:03:65:21:20:95:04:94:8c:5f:74:26:
2f:29:5f:ef:a3:4d:22:ea:b5:96:a5:a4:a8:65:98:
9d:fe:04:18:c1:61:e6:fa:4b:04:f3:12:b6:6a:19:
16:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:9C:DD:BD:1A:BD:7E:18:30:24:F4:EA:DA:91:65:78:C4:56:20
X509v3 Authority Key Identifier:
keyid:C3:3A:5D:DC:75:4B:D1:65:55:FE:13:2A:7E:E0:F0:58:C2:FF:7B:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C33A5DDC754BD16555FE132A7EE0F058C2FF7B56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8FDCh6X5yrKd7CYYvZpDL9SqSzMABjPaa6ds1KRK6qK6/0/34352e37312e3232342e302f32322d3234203d3e203238313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.224.0/22
Signature Algorithm: sha256WithRSAEncryption
28:6b:1e:fb:ac:1c:3b:5d:1d:6c:a4:9d:3f:c9:1c:f7:35:06:
d2:fa:7a:37:8f:8d:4b:f4:2e:fb:a0:15:86:80:23:8d:e3:b5:
ca:64:93:be:2f:dc:9e:4a:04:1d:7f:4f:65:cd:11:13:dc:76:
df:45:c5:c6:a9:57:f7:03:ee:5d:63:26:54:45:fc:b2:be:aa:
67:c1:de:86:c8:f8:c2:f2:eb:be:02:e0:6b:f2:bc:75:ee:2c:
1c:2e:48:2c:3a:f2:ec:4e:32:44:ce:54:8f:0a:91:11:f5:6a:
3c:4a:64:a3:ce:eb:c6:7f:a4:0c:46:7e:f0:1f:61:1f:cf:d2:
0b:ea:03:2d:c6:54:62:19:14:e2:c7:c8:35:fd:2e:15:72:5f:
84:16:d7:07:79:0d:38:ca:8a:00:1d:03:8e:79:33:d7:bd:57:
60:ef:e8:32:47:6a:b5:7d:29:8b:18:29:e6:0e:07:ab:50:61:
ff:fb:0c:38:66:70:ba:66:8c:82:64:64:fc:0b:eb:1e:23:27:
8d:88:69:97:18:57:e5:dc:14:84:6c:e6:29:8c:14:23:21:76:
6c:d1:7e:c8:9b:b8:2b:e7:7f:13:95:96:97:2d:1f:cb:06:f4:
06:fb:a7:7d:61:b1:49:76:4b:75:65:a0:e7:22:0b:91:26:aa:
76:46:c0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 13:30:51 2025 by rpki-client