Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/C288AyDx9zgnU31rNKrri9VknHxYwvzYQbwuj74KVCV2/0/3133382e3138352e3139362e302f32322d3234203d3e20323633383437.roa
File: 3133382e3138352e3139362e302f32322d3234203d3e20323633383437.roa (raw, json)
Hash identifier: lqnVKTwei9c4q84zUfy9YrHg+FPexq6YoPSLdHkM1wk=
Subject key identifier: C2:0E:19:96:C4:CD:2D:4A:B9:43:2B:66:1D:1B:9E:02:B5:FC:88:3F
Certificate issuer: /CN=704458CDC57956D96E4187B18CAF8B9BC27FC4EF
Certificate serial: 766AA7849888000AAD54AC552067CDA21FFE0701
Authority key identifier: 70:44:58:CD:C5:79:56:D9:6E:41:87:B1:8C:AF:8B:9B:C2:7F:C4:EF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/704458CDC57956D96E4187B18CAF8B9BC27FC4EF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/C288AyDx9zgnU31rNKrri9VknHxYwvzYQbwuj74KVCV2/0/3133382e3138352e3139362e302f32322d3234203d3e20323633383437.roa
Signing time: Tue 30 Apr 2024 19:43:30 +0000
ROA not before: Tue 30 Apr 2024 19:38:30 +0000
ROA not after: Tue 29 Apr 2025 19:43:30 +0000
asID: 263847
IP address blocks: 138.185.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 04:58:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:6a:a7:84:98:88:00:0a:ad:54:ac:55:20:67:cd:a2:1f:fe:07:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704458CDC57956D96E4187B18CAF8B9BC27FC4EF
Validity
Not Before: Apr 30 19:38:30 2024 GMT
Not After : Apr 29 19:43:30 2025 GMT
Subject: CN=C20E1996C4CD2D4AB9432B661D1B9E02B5FC883F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:e1:89:6f:b5:75:2b:48:19:84:78:67:15:
96:38:1c:e7:79:b5:09:09:40:19:d4:f1:72:42:8a:
67:12:a3:ad:71:d3:0a:d9:9b:cc:cb:0c:21:97:cf:
2d:34:ae:f4:55:a0:9b:f8:98:d5:92:aa:7a:68:e4:
d4:96:bd:9c:b5:ac:1e:e6:d4:f3:ce:13:c0:ac:06:
9e:98:c0:ba:b0:c3:d3:51:30:25:01:76:1d:fb:db:
2b:41:9b:14:76:fb:64:e4:b5:d5:fb:d7:6e:ca:95:
73:05:c4:88:4c:2c:7e:ae:5e:77:72:80:f0:17:dc:
3e:29:a1:ff:43:69:03:ef:c9:d5:cd:36:6f:79:88:
e5:7a:17:b3:47:f5:d2:0a:8f:6b:c9:47:8f:0d:94:
61:ed:79:b6:4b:f0:34:f1:13:a4:e8:9a:7d:f2:45:
3b:3d:ee:e1:38:47:d2:a4:bf:24:a5:7d:6d:9a:0d:
93:33:f1:62:9c:a7:d1:90:31:95:0a:fa:60:e4:3d:
10:5d:39:de:5f:61:0a:32:2d:58:12:97:e6:5d:d0:
83:b4:61:00:44:fd:b4:e1:b7:43:bd:85:19:5f:5e:
50:52:16:13:57:10:f7:27:2a:f5:f1:7c:e5:ed:fd:
bc:dd:9a:e5:c8:41:3b:62:5c:b4:14:da:d7:9c:ff:
c8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0E:19:96:C4:CD:2D:4A:B9:43:2B:66:1D:1B:9E:02:B5:FC:88:3F
X509v3 Authority Key Identifier:
keyid:70:44:58:CD:C5:79:56:D9:6E:41:87:B1:8C:AF:8B:9B:C2:7F:C4:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/C288AyDx9zgnU31rNKrri9VknHxYwvzYQbwuj74KVCV2/0/704458CDC57956D96E4187B18CAF8B9BC27FC4EF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/704458CDC57956D96E4187B18CAF8B9BC27FC4EF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/C288AyDx9zgnU31rNKrri9VknHxYwvzYQbwuj74KVCV2/0/3133382e3138352e3139362e302f32322d3234203d3e20323633383437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.185.196.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:d8:88:eb:ec:4c:f3:4b:36:0f:dc:e3:ea:fc:07:40:1f:51:
04:51:7a:df:66:f7:ae:c8:9f:9f:d3:df:76:ee:6d:61:90:c5:
e9:8f:57:c4:76:59:ad:50:1e:62:e4:98:51:83:b9:a7:9b:f1:
28:b5:48:b0:0b:36:cc:14:4d:1c:28:ac:d7:83:d4:54:a7:49:
9d:04:0e:be:f7:6a:e8:75:9b:94:ae:47:c1:86:41:6a:34:dd:
98:66:db:75:7a:ea:63:de:2f:6a:1c:38:8f:f8:e8:3c:fc:40:
1b:ef:f4:8a:de:10:3a:69:1d:58:ce:84:70:32:a9:79:3a:23:
7b:3f:12:e9:39:4c:2c:6f:7f:2a:ec:44:d0:b2:ec:c0:42:58:
5e:c6:85:b2:07:58:7e:dd:83:2b:15:35:78:21:62:ce:01:04:
5f:37:40:bc:98:c9:29:56:97:3d:c2:5f:22:b0:1e:63:55:a2:
8f:be:5e:0e:05:b2:8f:58:04:85:7d:fa:f1:7b:8d:3f:d8:0e:
ec:01:fe:41:52:ec:87:c3:95:4f:1d:7b:6b:ce:60:13:c2:fe:
6e:c0:c1:02:9b:c0:96:b5:f7:70:61:15:48:1f:f0:77:48:0e:
de:d8:50:ea:e2:e4:7d:b8:70:16:a6:6d:3a:76:5f:a3:95:1d:
ca:95:00:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 06:59:40 2024 by rpki-client on console-ams.rpki-client.org