Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32312d3231203d3e203238353732.roa
File: 3230302e3139322e3135322e302f32312d3231203d3e203238353732.roa (raw, json)
Hash identifier: Z3LWn457AI1sw0EtyDq6eno3gEGcQSTfRJey4wbUbcI=
Subject key identifier: 7E:EE:E7:61:54:D1:42:0F:10:66:13:11:EA:86:A3:C4:59:D1:7B:91
Certificate issuer: /CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Certificate serial: 139DD5FB17204AB9ADD98BC5DC28D9ECBAEDEECE
Authority key identifier: 19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32312d3231203d3e203238353732.roa
Signing time: Mon 05 Aug 2024 17:04:05 +0000
ROA not before: Mon 05 Aug 2024 16:59:05 +0000
ROA not after: Mon 04 Aug 2025 17:04:05 +0000
asID: 28572
IP address blocks: 200.192.152.0/21 maxlen: 21
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:9d:d5:fb:17:20:4a:b9:ad:d9:8b:c5:dc:28:d9:ec:ba:ed:ee:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Validity
Not Before: Aug 5 16:59:05 2024 GMT
Not After : Aug 4 17:04:05 2025 GMT
Subject: CN=7EEEE76154D1420F10661311EA86A3C459D17B91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d7:8b:2b:44:c9:65:3b:4c:8c:41:83:b2:1e:
17:53:d9:e8:31:4b:2c:87:ce:aa:8f:2a:33:f2:b0:
40:e2:63:91:b4:a5:49:12:9b:ca:be:48:df:c3:65:
2c:36:1b:a0:6b:53:3f:75:63:90:d1:59:82:42:84:
84:fe:ef:d3:36:fb:a4:cd:58:87:22:8f:a0:d4:94:
55:4b:d2:41:87:1e:e8:b6:c6:7b:0f:5e:e8:12:08:
fb:9b:36:97:3b:ab:4e:4a:63:73:41:6a:22:33:3b:
c4:d7:08:99:15:a9:ad:ff:90:ce:4e:25:99:60:45:
4a:a1:7c:d5:63:8a:c7:03:12:ec:df:98:39:ca:55:
49:03:b7:12:c3:73:ec:6b:07:71:b1:b8:62:7c:28:
82:65:27:82:4f:42:a9:5c:a5:4a:9d:c5:77:38:9e:
38:b1:e4:02:1c:73:07:52:96:a2:1e:6e:8e:5f:a2:
c4:93:45:de:7b:0e:59:47:73:5b:27:c2:94:af:12:
e9:4c:0e:e7:54:dc:66:df:0a:fa:30:8d:c0:fe:34:
fb:f9:b1:06:04:f4:cf:4c:49:e9:09:60:57:c3:fc:
4e:8a:7e:53:5f:cb:ed:79:fd:55:90:05:d0:4d:96:
fd:40:9b:27:29:67:16:e4:28:f5:da:9a:70:28:ef:
fd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EE:E7:61:54:D1:42:0F:10:66:13:11:EA:86:A3:C4:59:D1:7B:91
X509v3 Authority Key Identifier:
keyid:19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32312d3231203d3e203238353732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.192.152.0/21
Signature Algorithm: sha256WithRSAEncryption
87:9c:13:5b:28:9a:34:0b:83:ea:d0:6b:10:69:3d:7c:93:08:
20:15:77:ac:3c:7f:4c:e9:57:41:7c:eb:31:f6:7b:fc:f6:2f:
b5:b3:ff:95:e7:30:fe:63:7b:02:2b:19:78:53:94:a4:3e:1b:
a0:98:e0:1d:28:2f:1d:60:01:10:dc:bc:1a:a9:c0:6a:41:6f:
70:69:a7:a4:77:da:a2:42:70:bc:85:e5:ce:85:ea:56:c6:f1:
44:00:b0:18:c5:69:1c:bf:c8:e8:de:3b:41:8c:38:79:b8:45:
b0:59:42:fc:b8:a0:dd:0c:f5:8e:de:d9:a0:7a:7b:13:79:34:
d7:84:5c:6f:49:78:e8:7e:35:91:a9:7e:41:7e:2e:cf:c6:af:
56:a0:38:b6:f2:e6:40:fb:81:23:8d:4a:c6:10:19:2a:0a:86:
9f:53:20:ab:8d:bf:6d:fc:4f:28:b9:4c:91:a3:e5:a4:f0:d6:
dc:19:5d:d6:d3:12:0b:96:8c:e7:64:81:a9:86:fe:1c:38:e2:
6e:79:f0:e5:20:a5:dc:ae:69:2b:e7:a0:5c:06:82:eb:32:8b:
8c:ac:81:1e:7b:c1:30:af:47:c0:06:2e:06:48:d3:a8:fb:f8:
b9:cc:86:32:27:7c:93:7b:26:61:41:38:ea:6d:f0:3c:b5:e4:
77:a7:a3:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 02:28:06 2025 by rpki-client