Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135332e302f32342d3234203d3e203238353732.roa
File: 3230302e3139322e3135332e302f32342d3234203d3e203238353732.roa (raw, json)
Hash identifier: 0Be0lcA0omg1cO5kYiaA8kHZazZBv5AEE82IS6msjzw=
Subject key identifier: 44:14:85:2F:20:F3:9B:4A:26:6C:1B:CD:CA:28:FA:E2:BD:0D:DD:0C
Certificate issuer: /CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Certificate serial: 27DD4D7787A9A7951A952C9B73F980A37F4B1093
Authority key identifier: 19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject info access: rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135332e302f32342d3234203d3e203238353732.roa
Signing time: Sat 29 Jun 2024 15:32:22 +0000
ROA not before: Sat 29 Jun 2024 15:27:22 +0000
ROA not after: Sat 28 Jun 2025 15:32:22 +0000
asID: 28572
IP address blocks: 200.192.153.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:dd:4d:77:87:a9:a7:95:1a:95:2c:9b:73:f9:80:a3:7f:4b:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19EAE38D15F5899D3609C411EB1A1C6B42DFB009
Validity
Not Before: Jun 29 15:27:22 2024 GMT
Not After : Jun 28 15:32:22 2025 GMT
Subject: CN=4414852F20F39B4A266C1BCDCA28FAE2BD0DDD0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c1:73:fb:f7:96:9d:d6:5b:76:ff:00:ee:e9:
10:ea:5f:61:8c:86:4f:9d:05:cd:84:97:e0:a6:de:
6e:a3:d5:aa:b8:95:8f:90:02:dd:ee:ff:a1:67:29:
c1:55:48:33:89:a4:39:1a:41:cb:cc:e7:d1:85:fb:
3c:a0:44:59:98:62:f6:ad:50:06:02:10:d6:a0:7b:
72:d7:dc:62:13:fd:5f:7f:e8:9c:16:e8:25:10:77:
2f:f9:85:2f:4c:7b:dc:cb:cd:ec:8a:3d:b6:f2:e8:
a8:07:77:6d:4b:11:e0:3a:73:44:aa:96:d4:b4:72:
01:6b:f4:b7:1e:17:e1:83:a3:05:c5:83:d3:6b:92:
20:e4:6c:0a:5d:d8:cc:34:23:72:8a:e5:0d:3f:8a:
be:1b:04:28:18:98:ba:34:45:79:bb:4f:1f:7f:6d:
c2:1f:93:61:f3:37:94:71:fd:d1:e1:61:6a:d6:e7:
8e:a2:7e:58:a2:27:2b:2f:70:b3:c6:5a:d0:a6:7a:
46:c6:66:54:55:ad:cb:ba:3d:65:3a:83:29:d8:22:
29:e1:39:86:34:77:3b:f7:c4:f6:2f:cd:cf:4e:dd:
90:c1:d7:9c:b9:13:02:51:c2:c3:37:29:f8:9d:60:
bd:72:ab:c6:c3:a5:53:18:ba:42:de:4b:a0:d1:66:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:14:85:2F:20:F3:9B:4A:26:6C:1B:CD:CA:28:FA:E2:BD:0D:DD:0C
X509v3 Authority Key Identifier:
keyid:19:EA:E3:8D:15:F5:89:9D:36:09:C4:11:EB:1A:1C:6B:42:DF:B0:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/19EAE38D15F5899D3609C411EB1A1C6B42DFB009.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/BNZmfczX8xLpULCAXWBxajkwBHDJJksJhJK4PoawxASQ/0/3230302e3139322e3135332e302f32342d3234203d3e203238353732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.192.153.0/24
Signature Algorithm: sha256WithRSAEncryption
72:7b:44:1c:81:9f:d2:b9:78:61:ae:65:c6:f2:14:9e:7a:32:
68:88:7e:a1:98:62:af:15:e3:25:38:c4:2c:b0:be:1e:9d:23:
37:8f:38:72:4c:86:a4:cb:e8:ed:35:8d:c9:93:03:a9:fa:08:
59:a4:52:34:62:7a:5b:b9:3a:02:53:cc:c6:4d:de:48:0b:b9:
82:16:ab:f4:c8:35:e0:d7:d4:7b:bf:c5:49:cc:ab:ad:f0:7c:
f3:02:47:21:3b:f3:4f:fc:46:8f:1d:fb:f3:26:05:09:60:01:
3f:f6:c8:6a:07:0f:77:bd:07:f8:7f:45:eb:b6:d5:0e:eb:84:
c5:3d:c4:93:b5:6a:84:20:8a:52:b8:eb:1a:ca:95:e1:5a:56:
0b:eb:03:23:c8:d7:09:8c:9c:bd:e5:1f:f2:89:52:36:7b:30:
b5:fd:10:bc:15:6a:07:6d:3e:89:4a:b4:4c:88:19:25:ed:5f:
de:81:f0:79:0f:10:38:74:03:51:7a:18:93:e2:94:7a:bd:e6:
c7:4b:c2:20:d9:e0:98:2a:7b:f9:c2:b5:3d:be:a6:19:7c:08:
4d:6a:33:68:37:02:90:e3:4c:c7:54:f3:02:b3:fa:56:a0:70:
4a:d0:42:91:16:71:3f:e0:ee:86:e4:c1:e9:39:92:19:3f:44:
2a:ce:6d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 13:27:43 2025 by rpki-client