Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AKuVh62sehnGrn4egwFVQPVVktjmodtPw5qpPKVkRKze/0/3138392e38392e36382e302f32322d3232203d3e203238313834.roa
File: 3138392e38392e36382e302f32322d3232203d3e203238313834.roa (raw, json)
Hash identifier: 4Rvgxc3uZEcnXvTA6FBDvppEPwAvNVvRQKYAIdzHDfg=
Subject key identifier: CE:48:A4:EA:03:89:77:57:14:54:07:96:98:B8:D6:B7:1E:4D:02:5C
Certificate issuer: /CN=E624FE33C9F73B65471DFA93BA8DE921E4FA1166
Certificate serial: 1DFA8FD002020944DBB3581B95328B1842679BC4
Authority key identifier: E6:24:FE:33:C9:F7:3B:65:47:1D:FA:93:BA:8D:E9:21:E4:FA:11:66
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E624FE33C9F73B65471DFA93BA8DE921E4FA1166.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AKuVh62sehnGrn4egwFVQPVVktjmodtPw5qpPKVkRKze/0/3138392e38392e36382e302f32322d3232203d3e203238313834.roa
Signing time: Fri 24 May 2024 00:20:11 +0000
ROA not before: Fri 24 May 2024 00:15:11 +0000
ROA not after: Fri 23 May 2025 00:20:11 +0000
asID: 28184
IP address blocks: 189.89.68.0/22 maxlen: 22
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:fa:8f:d0:02:02:09:44:db:b3:58:1b:95:32:8b:18:42:67:9b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E624FE33C9F73B65471DFA93BA8DE921E4FA1166
Validity
Not Before: May 24 00:15:11 2024 GMT
Not After : May 23 00:20:11 2025 GMT
Subject: CN=CE48A4EA038977571454079698B8D6B71E4D025C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a5:24:b4:d4:14:16:32:be:47:2a:45:d1:61:
d5:cf:72:e7:04:20:cf:81:92:6b:57:ca:ea:32:5e:
6f:90:ff:9b:d3:c7:a7:dc:d7:75:b9:e1:59:10:4b:
87:13:91:6b:9d:50:6c:6d:11:5c:b7:33:d8:2a:ae:
64:67:f9:a3:5e:c9:e1:46:14:6b:e0:76:6f:d3:c1:
3c:c2:0c:62:19:20:ee:cd:75:e9:06:1c:5e:0f:39:
38:16:cb:f2:ab:ec:b7:cb:3b:14:a2:6a:9b:c9:92:
9c:35:eb:55:c5:d8:0a:14:6a:19:bd:b3:e8:c0:77:
78:ec:26:f1:7b:63:03:1e:4c:80:98:c2:3a:b4:08:
b8:bd:35:d9:cb:b0:77:65:e4:90:47:b8:59:3f:f5:
8c:62:ef:b6:2d:f9:2a:ca:52:65:78:e9:eb:b1:b4:
b1:df:d9:ca:f3:a7:32:80:11:47:8a:8a:2f:16:0c:
67:07:f3:7c:a4:bf:25:63:a5:c6:43:71:4a:e2:44:
a9:24:51:cc:b5:a9:06:4d:71:e5:71:45:52:aa:ff:
75:8f:d8:b9:f6:10:94:ea:04:18:4c:75:59:95:a6:
06:b0:5c:f6:59:e2:93:7a:3d:2f:3d:ec:f1:38:a8:
c9:bd:4e:20:63:c7:14:35:e6:14:50:fe:c9:b5:9b:
71:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:48:A4:EA:03:89:77:57:14:54:07:96:98:B8:D6:B7:1E:4D:02:5C
X509v3 Authority Key Identifier:
keyid:E6:24:FE:33:C9:F7:3B:65:47:1D:FA:93:BA:8D:E9:21:E4:FA:11:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AKuVh62sehnGrn4egwFVQPVVktjmodtPw5qpPKVkRKze/0/E624FE33C9F73B65471DFA93BA8DE921E4FA1166.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E624FE33C9F73B65471DFA93BA8DE921E4FA1166.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AKuVh62sehnGrn4egwFVQPVVktjmodtPw5qpPKVkRKze/0/3138392e38392e36382e302f32322d3232203d3e203238313834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.89.68.0/22
Signature Algorithm: sha256WithRSAEncryption
98:a8:38:bd:63:2d:50:45:e3:dc:52:50:e4:4d:70:61:92:cd:
1c:7c:3e:3a:be:a7:1b:e5:6c:72:ac:0c:4d:9f:3f:d7:1f:a7:
72:ea:3d:73:a2:b3:5f:ea:d0:95:fb:64:ba:05:59:6a:97:25:
c6:e4:6d:da:02:d9:b2:dd:c6:ce:4a:0d:40:6b:f6:d3:c8:1d:
94:9e:7d:b1:3d:cd:6f:f5:fc:05:98:e2:0f:af:61:48:1e:c3:
47:f4:e2:42:66:87:b9:aa:1d:2c:ca:5a:81:a2:aa:a6:bf:c9:
c9:61:cd:bc:32:25:27:18:1d:c0:70:18:a6:03:58:7c:48:f6:
5d:94:82:f4:74:7b:dd:62:b4:13:6e:f7:21:93:3f:45:46:89:
51:4c:ae:67:5b:d1:dd:35:c7:e0:af:2a:90:19:38:9a:9a:c9:
cb:1f:34:a5:7d:61:8a:60:62:d4:99:d2:c9:9b:10:54:e3:c4:
1c:b8:46:1c:ea:b7:9e:1e:ae:68:52:4a:c9:ed:73:30:2a:26:
1c:bd:33:b8:4f:7c:0d:1c:9b:ec:ae:b4:4d:05:01:0c:0c:f1:
65:66:4c:40:b3:78:0f:31:48:97:1a:d3:d0:04:fa:72:d7:fa:
f7:e8:c8:19:73:b9:74:19:a1:56:37:fe:c5:1f:56:94:c3:1d:
7c:84:e1:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 16:45:55 2024 by rpki-client on console-fra.rpki-client.org