Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa
File: 323830343a6438343a3a2f33322d3438203d3e203238313731.roa (raw, json)
Hash identifier: BU5S2CsjRrcuUY4GbMW8CTFH+iT54YG17Du2G3TBhwA=
Subject key identifier: 47:D8:9E:D9:A2:97:4C:4F:81:84:6B:E0:E0:32:65:07:DE:29:4B:8F
Certificate issuer: /CN=8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0
Certificate serial: 7AD86B74DFF4C6108A2944A4718C5C8228095A48
Authority key identifier: 8B:A6:99:C4:70:16:69:EC:E8:E7:D3:F4:A8:60:C4:F6:D5:C7:64:D0
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa
Signing time: Wed 03 Apr 2024 19:00:00 +0000
ROA not before: Wed 03 Apr 2024 18:55:00 +0000
ROA not after: Thu 03 Apr 2025 19:00:00 +0000
asID: 28171
IP address blocks: 2804:d84::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:d8:6b:74:df:f4:c6:10:8a:29:44:a4:71:8c:5c:82:28:09:5a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0
Validity
Not Before: Apr 3 18:55:00 2024 GMT
Not After : Apr 3 19:00:00 2025 GMT
Subject: CN=3082010A0282010100CEC4E2EC22B5F9EA6071CEA0B9FBB5AB546E559F157475ED11EA6E97FDB7CF672D3FF455A1E14238D09B1EE03BF616AC13DA79D7A0CF57D05161E96041BAA67BDF49BFDDAEC556E1890D675479F9DA8274A9CD4CF7B8FB863B0ADD0BC42D3EF8CBA1A506C8715E3454EDFFBD12D3A83BF58CD4A01F37B4A4E23C22D812842782FD6F46AC3B42101B43E8DD1CF393419E7ED2D85B9A6A169210692685FB5DA838AB837769D835F1DEFD7B5909CE709F8355C75E6487470FEADDE062647AE59C0F29B12568745BE631FB4DBB8C5DF180610D1F017E4B2068F85CBC48F3AD1E647BBCE111EFF48151D6FB14E43385BCB6D554D1308AD5CF6346B96BF75ED179ADF90203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c4:e2:ec:22:b5:f9:ea:60:71:ce:a0:b9:fb:
b5:ab:54:6e:55:9f:15:74:75:ed:11:ea:6e:97:fd:
b7:cf:67:2d:3f:f4:55:a1:e1:42:38:d0:9b:1e:e0:
3b:f6:16:ac:13:da:79:d7:a0:cf:57:d0:51:61:e9:
60:41:ba:a6:7b:df:49:bf:dd:ae:c5:56:e1:89:0d:
67:54:79:f9:da:82:74:a9:cd:4c:f7:b8:fb:86:3b:
0a:dd:0b:c4:2d:3e:f8:cb:a1:a5:06:c8:71:5e:34:
54:ed:ff:bd:12:d3:a8:3b:f5:8c:d4:a0:1f:37:b4:
a4:e2:3c:22:d8:12:84:27:82:fd:6f:46:ac:3b:42:
10:1b:43:e8:dd:1c:f3:93:41:9e:7e:d2:d8:5b:9a:
6a:16:92:10:69:26:85:fb:5d:a8:38:ab:83:77:69:
d8:35:f1:de:fd:7b:59:09:ce:70:9f:83:55:c7:5e:
64:87:47:0f:ea:dd:e0:62:64:7a:e5:9c:0f:29:b1:
25:68:74:5b:e6:31:fb:4d:bb:8c:5d:f1:80:61:0d:
1f:01:7e:4b:20:68:f8:5c:bc:48:f3:ad:1e:64:7b:
bc:e1:11:ef:f4:81:51:d6:fb:14:e4:33:85:bc:b6:
d5:54:d1:30:8a:d5:cf:63:46:b9:6b:f7:5e:d1:79:
ad:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D8:9E:D9:A2:97:4C:4F:81:84:6B:E0:E0:32:65:07:DE:29:4B:8F
X509v3 Authority Key Identifier:
keyid:8B:A6:99:C4:70:16:69:EC:E8:E7:D3:F4:A8:60:C4:F6:D5:C7:64:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BA699C4701669ECE8E7D3F4A860C4F6D5C764D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CJhG6X9jdPGAtdPRz66yts2chEbhZAhbgpTYFCeMBuYj/1/323830343a6438343a3a2f33322d3438203d3e203238313731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:d84::/32
Signature Algorithm: sha256WithRSAEncryption
4e:34:54:a5:ba:df:33:7c:43:b2:53:45:d4:ba:28:13:cc:64:
3d:50:27:e1:b6:37:b0:18:89:25:16:af:07:b2:3e:a1:f3:4f:
f9:ac:06:3d:91:1a:ff:4a:4d:66:a1:f3:cd:7c:65:86:54:10:
85:db:84:f6:91:ea:13:5b:41:eb:f5:6e:66:75:e7:d7:97:af:
1d:ab:24:21:17:3c:94:67:01:65:38:94:f5:cf:db:e6:ec:78:
f5:a8:13:54:f6:c7:d9:6e:85:e0:04:8a:f7:09:5f:0d:02:c5:
c5:a4:76:d0:5f:5e:dc:a8:1f:b0:1e:9e:7e:8c:68:d3:06:27:
ea:1c:05:86:5a:40:81:92:95:68:95:4e:d6:f8:b2:c2:09:8e:
ba:20:24:63:74:27:e6:26:95:e0:1c:cc:10:cb:03:9a:05:70:
a3:a1:88:22:b4:c0:6c:54:0f:e5:e3:be:95:21:94:df:69:1e:
9c:30:53:25:a0:af:4a:29:9f:c9:d7:e5:7e:c0:da:1d:f0:40:
67:37:19:82:96:98:de:83:86:f0:82:96:01:1e:6a:b0:7b:5f:
f6:e7:5b:1b:1d:b5:30:04:bf:e0:38:da:32:35:90:ec:80:70:
f7:ad:2c:bd:78:e2:3e:6a:8f:c0:d3:2d:e6:3e:c3:9f:95:65:
3a:54:c6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 18:45:39 2024 by rpki-client on console-ams.rpki-client.org