Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/8WCE5HvAqYe2CuoYtEUx3cGYH3jLLCm19UsvVk7A9qcY/0/3230302e33362e3139322e302f32322d3234203d3e20323731343238.roa
File: 3230302e33362e3139322e302f32322d3234203d3e20323731343238.roa (raw, json)
Hash identifier: qsUyrZiTzCWIKjxcVsQC4aw40DIoki1Nh8ew5DbBEsI=
Subject key identifier: 5E:C5:85:DE:CF:2E:D1:D3:58:80:37:E7:45:58:2B:C0:32:EA:E6:B9
Certificate issuer: /CN=11332B40892A7FE90447BE6A8C1D881D90DB17FF
Certificate serial: 60162771EEAA8D88A858ADE5CC290D79B258E505
Authority key identifier: 11:33:2B:40:89:2A:7F:E9:04:47:BE:6A:8C:1D:88:1D:90:DB:17:FF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11332B40892A7FE90447BE6A8C1D881D90DB17FF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/8WCE5HvAqYe2CuoYtEUx3cGYH3jLLCm19UsvVk7A9qcY/0/3230302e33362e3139322e302f32322d3234203d3e20323731343238.roa
Signing time: Wed 29 Oct 2025 16:38:20 +0000
ROA not before: Wed 29 Oct 2025 16:33:20 +0000
ROA not after: Wed 28 Oct 2026 16:38:20 +0000
asID: 271428
IP address blocks: 200.36.192.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:16:27:71:ee:aa:8d:88:a8:58:ad:e5:cc:29:0d:79:b2:58:e5:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11332B40892A7FE90447BE6A8C1D881D90DB17FF
Validity
Not Before: Oct 29 16:33:20 2025 GMT
Not After : Oct 28 16:38:20 2026 GMT
Subject: CN=5EC585DECF2ED1D3588037E745582BC032EAE6B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e3:0d:11:21:7b:37:38:bc:d6:67:e2:71:33:
a3:af:72:2c:fb:8f:24:ee:aa:02:3a:36:dc:b5:4f:
2f:a1:85:35:f0:b4:35:1c:47:2c:ab:2b:9d:b3:b6:
cc:6f:f1:00:3e:90:cf:a3:05:3c:71:6f:f4:29:a6:
5c:65:8f:0d:71:43:35:73:d3:1a:e1:0c:22:27:b4:
5e:e6:91:50:3d:83:0d:3b:9a:36:17:2f:c9:d6:78:
44:43:9f:fc:63:d4:30:9c:39:a6:00:0b:81:63:c3:
a8:0c:c1:03:c2:0b:7d:85:75:f6:84:01:ac:2e:7f:
4e:0e:93:91:0e:38:b9:3c:b2:17:2b:da:ed:6c:8a:
fc:7c:38:83:5b:b7:bb:84:fc:c0:7e:85:35:73:49:
1c:5e:26:c6:e0:61:ac:49:99:c5:cd:70:09:39:34:
33:dc:0e:e8:fb:7e:0b:1a:6d:a4:06:71:5c:45:c3:
ab:ee:5a:5c:fe:50:b4:07:31:8d:f7:c8:8a:59:23:
51:e9:7d:34:f3:6f:55:06:d2:db:1c:16:18:cc:55:
78:7c:8d:98:9e:2a:f7:f1:34:d7:5e:42:b6:78:cc:
10:69:9d:d7:92:d2:aa:dd:02:1f:c6:5f:54:30:a3:
ce:99:a4:0b:d6:90:c5:4d:1d:e2:d8:06:8d:f4:03:
3e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C5:85:DE:CF:2E:D1:D3:58:80:37:E7:45:58:2B:C0:32:EA:E6:B9
X509v3 Authority Key Identifier:
keyid:11:33:2B:40:89:2A:7F:E9:04:47:BE:6A:8C:1D:88:1D:90:DB:17:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/8WCE5HvAqYe2CuoYtEUx3cGYH3jLLCm19UsvVk7A9qcY/0/11332B40892A7FE90447BE6A8C1D881D90DB17FF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/11332B40892A7FE90447BE6A8C1D881D90DB17FF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/8WCE5HvAqYe2CuoYtEUx3cGYH3jLLCm19UsvVk7A9qcY/0/3230302e33362e3139322e302f32322d3234203d3e20323731343238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.36.192.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:1f:ca:0f:61:1c:df:ce:19:b7:e9:19:24:83:d8:71:e2:92:
fd:bb:63:ad:f4:a5:17:ed:7f:da:42:46:03:76:8b:41:b3:64:
fb:14:d9:a5:06:77:d2:f9:62:d1:b3:2c:a5:58:da:44:d2:02:
9c:44:6e:71:3e:0c:ad:85:e8:05:58:2c:f9:91:f8:03:6d:17:
1a:b9:35:6c:ef:aa:b7:b9:68:be:f7:11:46:3a:43:74:8d:79:
d7:7d:a7:61:66:eb:30:23:83:a0:ef:e3:b5:e2:72:e9:7d:3e:
59:6f:d9:3a:af:9d:73:26:e8:95:15:c2:8c:cf:15:00:34:6e:
d6:30:0f:a4:15:df:ca:70:68:07:80:1b:01:e6:6f:bf:1f:c8:
8c:e6:31:c5:5c:fb:e6:71:ea:66:16:08:55:2b:30:5c:a7:4f:
a9:4b:8d:e0:ba:e3:44:d2:ed:fc:10:62:19:f6:ad:55:4d:f3:
3d:23:79:96:2e:e2:70:b4:6a:ff:42:2b:13:86:09:4e:ee:70:
c9:55:85:a8:b4:7c:fa:c9:0e:6c:9a:14:ce:87:d0:23:97:44:
7b:6f:91:31:4d:fe:77:22:a7:0e:fb:34:e8:e8:98:ee:a0:ae:
8b:cf:8b:20:1b:82:3c:73:ce:4e:13:6c:6f:71:d9:33:15:db:
f0:ad:f1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 05:05:44 2025 by rpki-client