Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32322d3232203d3e203238353732.roa
File: 3230302e3139322e3135322e302f32322d3232203d3e203238353732.roa (raw, json)
Hash identifier: d82eJrW7M84VOTNt2NlFYIK1fwDqYUDMhxND/ob0wp4=
Subject key identifier: 70:87:79:A9:2A:DE:25:F4:27:61:FB:D0:AB:50:E8:89:64:AA:4C:DA
Certificate issuer: /CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Certificate serial: 704B3C00DF6CA952A835405BCD2B21A465C2CD6D
Authority key identifier: 19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32322d3232203d3e203238353732.roa
Signing time: Sat 29 Jun 2024 15:32:17 +0000
ROA not before: Sat 29 Jun 2024 15:27:17 +0000
ROA not after: Sat 28 Jun 2025 15:32:17 +0000
asID: 28572
IP address blocks: 200.192.152.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:4b:3c:00:df:6c:a9:52:a8:35:40:5b:cd:2b:21:a4:65:c2:cd:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Validity
Not Before: Jun 29 15:27:17 2024 GMT
Not After : Jun 28 15:32:17 2025 GMT
Subject: CN=708779A92ADE25F42761FBD0AB50E88964AA4CDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8a:4d:ad:78:a5:aa:e3:c2:b5:1b:ee:0b:71:
66:84:5b:b9:79:bf:dc:21:d8:a5:ba:4e:e2:e2:fa:
e7:c0:a0:b9:59:97:39:ed:2d:46:a0:e8:d5:2d:7b:
bb:b3:0b:06:44:34:d9:b8:61:cc:56:a9:72:61:9c:
40:70:b0:eb:e8:49:63:7a:e0:70:f3:06:dd:3b:a6:
62:bf:c3:92:4a:ca:25:c7:fb:7b:64:9a:e6:89:c1:
96:01:d7:03:66:69:89:55:77:3d:ff:e5:c4:b8:6b:
ae:b9:6a:f0:75:a1:23:c8:06:bf:38:28:89:6a:c8:
00:80:c5:c1:a2:eb:2d:80:52:34:09:17:63:28:c2:
28:e9:fb:43:e1:62:e5:9f:54:a2:b0:fb:2c:b5:62:
81:ba:d9:7e:28:7d:a1:8d:28:df:6a:11:3e:9e:dc:
c4:96:e0:f9:d5:b9:fc:b4:3d:c9:e3:20:d2:0e:88:
e5:d4:89:26:a0:2f:ee:28:c9:e6:82:16:55:75:83:
5c:43:73:45:cc:bd:a9:76:cb:11:4e:a2:b2:f7:69:
41:51:26:60:9f:73:81:bf:25:12:88:7b:5f:e9:c4:
6c:bd:3d:2f:c4:e5:85:ef:4a:e4:ae:c1:db:45:db:
5a:92:b2:38:77:16:f7:72:c7:ba:09:34:d5:1b:b7:
d6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:87:79:A9:2A:DE:25:F4:27:61:FB:D0:AB:50:E8:89:64:AA:4C:DA
X509v3 Authority Key Identifier:
keyid:19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135322e302f32322d3232203d3e203238353732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.192.152.0/22
Signature Algorithm: sha256WithRSAEncryption
33:3e:62:f8:92:94:e8:2f:f6:68:b2:6a:6f:a1:71:57:41:9a:
42:22:4a:08:3c:a2:6c:04:45:14:40:51:99:0e:8e:d9:fa:96:
5d:6c:57:f3:f4:06:40:5f:4a:a0:2e:71:c3:46:d5:0d:fd:56:
32:2e:55:67:dd:b4:55:2c:16:78:72:01:ea:46:a9:35:b2:53:
c2:49:b5:35:d4:9b:d5:82:05:1a:0f:2d:b4:5c:74:7b:2e:45:
22:68:74:df:6b:18:b7:6c:37:03:19:03:b1:e7:98:6d:aa:c3:
0b:5e:2a:a9:d4:74:2b:cb:9e:a6:23:2a:4f:82:87:58:24:8f:
5a:58:46:31:ca:f4:49:4b:49:be:bb:82:55:f1:d1:3b:56:30:
42:1c:e2:36:f1:af:40:a5:c5:65:c3:27:ae:9f:59:16:88:90:
19:97:69:b1:05:ef:98:2e:79:bd:0c:59:37:3d:a2:c4:a6:38:
4b:6e:b5:5f:a6:20:39:ec:1a:12:1d:f5:a6:a4:d7:b9:ad:ae:
b6:a9:21:2a:d6:8c:e7:fd:6b:a6:1d:59:d7:6e:19:02:f7:eb:
0e:18:2e:68:cc:eb:4f:d0:72:0c:16:1e:0a:3d:c8:49:b4:42:
b9:49:e8:d9:8b:4e:ef:40:2c:3f:48:e8:ac:86:68:b9:61:39:
84:d3:c6:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 02:37:37 2025 by rpki-client