Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/9rAytqZH1tiETWamj8Y81VMnR9CUpyWs7SZ5sFZwgSkM/1/3137302e37382e32382e302f32322d3234203d3e203532353837.roa
File: 3137302e37382e32382e302f32322d3234203d3e203532353837.roa (raw, json)
Hash identifier: gHlM4p5SAA4QXgcbtepkx8FTsEg/JEz97Yg/GsOqAIw=
Subject key identifier: 61:DE:D8:68:F8:FB:88:F6:F1:96:EB:FC:37:0A:0A:E6:AD:BB:A4:AA
Certificate issuer: /CN=0CF3DADBF6F41DDBFB22107D682BAB4859EBEF96
Certificate serial: 39DA0819F7B39BC2732256A0BB1BFEC50EB5E97B
Authority key identifier: 0C:F3:DA:DB:F6:F4:1D:DB:FB:22:10:7D:68:2B:AB:48:59:EB:EF:96
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CF3DADBF6F41DDBFB22107D682BAB4859EBEF96.cer
Subject info access: rsync://rpki-repo.registro.br/repo/9rAytqZH1tiETWamj8Y81VMnR9CUpyWs7SZ5sFZwgSkM/1/3137302e37382e32382e302f32322d3234203d3e203532353837.roa
Signing time: Wed 12 Jun 2024 10:57:59 +0000
ROA not before: Wed 12 Jun 2024 10:52:59 +0000
ROA not after: Wed 11 Jun 2025 10:57:59 +0000
asID: 52587
IP address blocks: 170.78.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 23:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:da:08:19:f7:b3:9b:c2:73:22:56:a0:bb:1b:fe:c5:0e:b5:e9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CF3DADBF6F41DDBFB22107D682BAB4859EBEF96
Validity
Not Before: Jun 12 10:52:59 2024 GMT
Not After : Jun 11 10:57:59 2025 GMT
Subject: CN=61DED868F8FB88F6F196EBFC370A0AE6ADBBA4AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7b:30:01:49:ed:1c:0a:b1:58:d5:d0:ea:d4:
a4:09:67:a7:cc:7f:ef:7c:26:21:f8:d8:23:c6:da:
52:e1:09:43:dc:4e:50:e5:01:36:ca:8e:12:23:c2:
5c:9f:fe:74:68:6a:dd:23:4a:a6:16:0c:00:6c:23:
c1:c4:7b:15:a3:3a:46:26:ec:2a:33:48:02:77:a0:
ce:2b:79:ab:08:b7:0a:eb:51:a8:63:b5:3a:7f:7a:
01:11:e6:7f:bf:8b:35:90:6e:da:f6:fb:42:12:02:
50:2b:17:dd:32:48:79:32:37:9e:66:95:5f:51:25:
5d:ac:ea:99:3c:7c:a1:22:d3:6f:6d:59:8f:28:d2:
86:1c:1d:a9:d6:c5:3e:31:29:65:75:55:88:82:b4:
33:79:10:05:85:23:6f:d0:a6:cf:1b:8d:65:3d:f7:
49:8b:75:f3:16:0b:4e:8c:b5:5b:3c:fa:22:58:5d:
1f:7c:44:43:71:d5:d7:cc:a8:7e:d2:49:c3:f4:d7:
4e:39:e7:2d:f2:f3:d9:e7:a4:3d:e0:80:8c:70:5a:
d9:46:b3:96:c4:5c:7d:22:86:0b:e7:d3:5a:d7:64:
f4:95:2f:82:f1:83:a4:85:a1:6e:fe:46:5a:19:16:
b2:9b:0d:fe:5a:17:5a:cc:3f:0c:c8:57:17:e4:b4:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DE:D8:68:F8:FB:88:F6:F1:96:EB:FC:37:0A:0A:E6:AD:BB:A4:AA
X509v3 Authority Key Identifier:
keyid:0C:F3:DA:DB:F6:F4:1D:DB:FB:22:10:7D:68:2B:AB:48:59:EB:EF:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/9rAytqZH1tiETWamj8Y81VMnR9CUpyWs7SZ5sFZwgSkM/1/0CF3DADBF6F41DDBFB22107D682BAB4859EBEF96.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CF3DADBF6F41DDBFB22107D682BAB4859EBEF96.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/9rAytqZH1tiETWamj8Y81VMnR9CUpyWs7SZ5sFZwgSkM/1/3137302e37382e32382e302f32322d3234203d3e203532353837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.78.28.0/22
Signature Algorithm: sha256WithRSAEncryption
02:f8:20:8e:29:d8:4e:af:27:55:29:97:65:84:aa:8d:69:37:
d6:53:d7:8b:c3:12:89:b6:86:dd:dc:6f:89:6b:84:5f:01:01:
6c:76:d8:5d:ff:99:3f:0c:84:55:62:10:15:25:eb:c2:b2:51:
ad:62:b4:77:10:6c:d4:68:95:fe:11:6a:55:62:89:cb:3d:4f:
b0:60:39:22:95:50:1d:25:2f:bd:9a:87:16:ba:41:7d:a8:8d:
9a:68:be:b1:e2:90:63:c6:a6:8e:57:59:e9:c0:4e:19:bd:59:
e0:93:15:cd:d6:0c:12:03:22:6c:e0:a2:d3:d6:f1:e7:59:8d:
f9:3b:4e:f5:a4:3a:99:90:ca:09:3f:f3:41:00:42:49:db:d5:
42:e1:85:e4:04:78:f6:d3:8e:eb:4a:28:65:07:50:32:d6:98:
a4:a0:0d:8e:16:5e:4b:4a:22:19:61:f2:04:43:11:f9:d6:16:
a8:1a:05:2a:6c:23:96:72:b2:60:87:20:81:57:90:17:0a:21:
f6:e2:58:b2:dc:0b:d5:8b:f8:84:b5:a4:66:1a:b0:25:1f:be:
d1:ff:a3:39:8e:4f:c9:ad:f2:c9:f7:ba:cc:cc:c3:7a:cd:bb:
62:78:f2:e6:77:b0:93:a1:e5:78:b3:2d:c9:66:92:9a:64:54:
7f:82:62:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:37:30 2025 by rpki-client