Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/AtFmE8fzSTKtAu8GbXu4e7D1cquWGrynJ7ZXkbbjbRbU/1/3136382e302e322e302f32332d3233203d3e20323635323430.roa
File: 3136382e302e322e302f32332d3233203d3e20323635323430.roa (raw, json)
Hash identifier: FrBi6TMiFzgRHT7JkJcFZAQ4iPFBhFyzk96LfhQwgrw=
Subject key identifier: AF:31:25:89:6D:6C:48:1E:DA:B4:96:A1:F9:97:2D:95:CC:55:33:CE
Certificate issuer: /CN=9CCEF403C7A1A251917EB6D9B0A71238B784A27D
Certificate serial: 374C67D225E15AFB76D7AFEADD814B2374640273
Authority key identifier: 9C:CE:F4:03:C7:A1:A2:51:91:7E:B6:D9:B0:A7:12:38:B7:84:A2:7D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CCEF403C7A1A251917EB6D9B0A71238B784A27D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/AtFmE8fzSTKtAu8GbXu4e7D1cquWGrynJ7ZXkbbjbRbU/1/3136382e302e322e302f32332d3233203d3e20323635323430.roa
Signing time: Thu 04 Apr 2024 04:19:38 +0000
ROA not before: Thu 04 Apr 2024 04:14:38 +0000
ROA not after: Thu 03 Apr 2025 04:19:38 +0000
asID: 265240
IP address blocks: 168.0.2.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:4c:67:d2:25:e1:5a:fb:76:d7:af:ea:dd:81:4b:23:74:64:02:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9CCEF403C7A1A251917EB6D9B0A71238B784A27D
Validity
Not Before: Apr 4 04:14:38 2024 GMT
Not After : Apr 3 04:19:38 2025 GMT
Subject: CN=AF3125896D6C481EDAB496A1F9972D95CC5533CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:da:66:46:4f:50:6d:40:56:7a:4a:d4:59:78:
13:cc:cf:33:28:09:51:7c:bd:88:3f:9a:f2:37:c9:
f5:8b:dd:31:e4:ff:ac:fa:2d:b4:8e:ec:e0:c5:d1:
57:28:9d:fc:e6:13:0b:aa:04:ab:04:02:ad:73:cf:
0e:92:7d:5f:da:9b:34:8a:f5:bd:51:2a:4e:bf:55:
cf:d7:83:d1:3a:58:10:03:14:54:96:1d:ae:02:72:
4f:b5:c7:f5:e3:be:ec:c1:d7:4e:71:1f:64:51:ed:
8b:26:03:4b:35:b5:ab:22:b9:a2:0a:2b:8d:37:4d:
f5:4f:31:bc:42:cf:ea:a9:5c:9d:85:82:e5:8d:07:
de:bd:35:52:8b:db:19:ae:9c:8a:f4:c7:a0:ab:db:
9b:36:a6:2f:ee:f8:21:aa:7f:2f:e4:ca:c1:34:7a:
ff:46:79:57:66:34:56:00:c2:15:e0:68:bf:8b:ba:
38:f2:03:13:d3:2f:4e:4f:64:78:ce:11:37:76:7b:
ea:ec:2e:3e:0e:a5:a3:41:da:82:38:46:65:8e:8b:
fd:a8:dd:9f:8a:51:2d:f5:c6:43:61:1d:e4:47:05:
68:c9:c3:fb:f7:6b:c2:3c:87:b0:9c:c3:d6:50:27:
cb:27:8e:22:0e:3e:66:a6:82:b2:52:3c:69:63:73:
9c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:31:25:89:6D:6C:48:1E:DA:B4:96:A1:F9:97:2D:95:CC:55:33:CE
X509v3 Authority Key Identifier:
keyid:9C:CE:F4:03:C7:A1:A2:51:91:7E:B6:D9:B0:A7:12:38:B7:84:A2:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/AtFmE8fzSTKtAu8GbXu4e7D1cquWGrynJ7ZXkbbjbRbU/1/9CCEF403C7A1A251917EB6D9B0A71238B784A27D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CCEF403C7A1A251917EB6D9B0A71238B784A27D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/AtFmE8fzSTKtAu8GbXu4e7D1cquWGrynJ7ZXkbbjbRbU/1/3136382e302e322e302f32332d3233203d3e20323635323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.0.2.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:5f:76:66:4f:d8:b2:f1:57:c1:25:1d:68:f1:82:e9:48:2a:
23:86:89:bf:8e:9a:cf:ee:9c:34:79:a5:e5:04:bf:60:72:4e:
6e:7e:5d:08:50:e1:ad:c6:e4:77:04:ac:09:01:07:28:0a:8c:
74:54:7f:45:a9:34:37:97:16:8f:9a:54:71:24:45:f6:a8:47:
9a:26:a9:df:9b:8c:23:ac:fb:ea:d2:6b:3f:69:29:e7:8a:4a:
d7:8d:d5:e6:ee:82:fc:d6:d8:da:7c:e4:ce:1a:47:56:ec:7a:
65:b6:f4:17:f2:a5:9c:56:1e:23:c9:c4:67:53:a1:d3:23:cc:
93:97:bd:59:8b:18:fa:92:9b:ef:50:c1:61:92:bc:6a:a6:83:
8b:c8:ce:e9:23:20:ff:06:7c:13:bd:a6:0c:fe:4f:36:b6:f3:
46:c2:cb:05:54:53:fe:0b:37:fb:51:8c:0a:04:84:18:36:0a:
9e:f3:f0:8b:c6:e1:90:d9:7f:1d:68:14:91:f3:4c:95:04:69:
8f:1c:50:65:4a:df:5d:ee:a7:2f:2a:4d:db:f1:20:47:12:85:
0a:8d:d3:e0:8c:3a:d3:fd:45:e2:70:1e:00:9c:d1:64:08:1d:
a9:5b:df:43:6d:cd:1b:c6:5f:57:54:fb:b2:4b:bb:39:95:7c:
da:9b:f1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 01:54:33 2024 by rpki-client on console-ams.rpki-client.org