Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38312e302f32342d3234203d3e20323634353731.roa
File: 3133382e33362e38312e302f32342d3234203d3e20323634353731.roa (raw, json)
Hash identifier: 5Fzuac9IiAX78IKULXJME3mgHCUSdcGEqbanyiJao68=
Subject key identifier: 12:61:6F:6B:72:D5:EA:8D:DF:C9:55:55:60:A9:9E:4B:DF:20:C7:65
Certificate issuer: /CN=84210C699884A23E38D45F40B27833D84A440F91
Certificate serial: 65A3F57099C451E38B15F0A909951ED877D1D375
Authority key identifier: 84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38312e302f32342d3234203d3e20323634353731.roa
Signing time: Wed 03 Apr 2024 18:32:12 +0000
ROA not before: Wed 03 Apr 2024 18:27:12 +0000
ROA not after: Wed 02 Apr 2025 18:32:12 +0000
asID: 264571
IP address blocks: 138.36.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:a3:f5:70:99:c4:51:e3:8b:15:f0:a9:09:95:1e:d8:77:d1:d3:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84210C699884A23E38D45F40B27833D84A440F91
Validity
Not Before: Apr 3 18:27:12 2024 GMT
Not After : Apr 2 18:32:12 2025 GMT
Subject: CN=12616F6B72D5EA8DDFC9555560A99E4BDF20C765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d5:4d:ec:84:3c:c3:b7:9f:cf:b4:40:5c:e8:
cc:22:10:b4:dc:71:d3:d1:c9:2e:65:6e:37:f0:fd:
6f:17:24:8c:21:e6:13:94:30:b4:90:23:99:58:b1:
58:ba:75:8c:87:63:96:9e:e7:e4:60:4a:82:f0:7b:
e4:d4:e1:7a:a0:ce:d2:fe:13:9e:67:dc:3b:c6:7e:
d1:a0:72:95:8d:b7:d3:1d:64:98:8d:85:7b:32:5c:
f1:aa:81:96:96:6c:d6:b9:a9:ec:ed:af:6a:ef:5a:
8a:3a:f3:b5:68:34:0a:53:80:4c:78:a9:bf:90:19:
6f:00:33:3a:bf:71:06:83:19:f4:a0:4d:e3:61:04:
8b:e6:b3:3e:66:b4:f3:3b:85:c6:f9:77:09:a6:f2:
d5:aa:90:e8:d6:d8:d2:a1:ea:e2:0f:14:cf:33:5e:
19:13:2f:5f:96:9c:a3:d3:f8:a7:3b:99:ad:fc:58:
95:99:97:47:a9:96:41:b8:7e:d5:f0:db:bf:c0:18:
fc:58:b5:a3:ff:f8:bd:b1:ad:de:71:2b:c0:c0:d8:
20:f5:c3:ca:b6:a6:89:48:c0:1b:53:2a:6e:1a:61:
b6:c9:60:a9:f9:47:82:56:36:f6:91:70:0c:9e:bc:
77:b6:27:d8:38:07:03:23:5e:69:52:b8:61:1d:df:
1d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:61:6F:6B:72:D5:EA:8D:DF:C9:55:55:60:A9:9E:4B:DF:20:C7:65
X509v3 Authority Key Identifier:
keyid:84:21:0C:69:98:84:A2:3E:38:D4:5F:40:B2:78:33:D8:4A:44:0F:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/84210C699884A23E38D45F40B27833D84A440F91.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/84210C699884A23E38D45F40B27833D84A440F91.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CPxhNqg5EAcghUDjU4YBeesmmKaFdqnvE3r5GK5fnyFF/1/3133382e33362e38312e302f32342d3234203d3e20323634353731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.81.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:fb:b7:bd:5c:54:06:3f:e0:e0:06:b3:01:cb:c9:59:dc:25:
c3:68:c3:8e:1a:4b:bf:20:06:af:3c:8d:64:80:e1:d1:5c:9b:
fb:2c:9e:1b:08:90:2f:06:e4:7e:75:22:92:89:4d:91:35:92:
8b:53:d0:eb:9b:44:7f:5d:a2:40:d2:d3:7d:5d:5a:e1:ef:9a:
79:fe:e5:22:46:9d:11:14:7d:59:cd:bf:b6:4b:7b:dd:0a:b4:
7b:83:32:b3:95:55:5e:10:4a:36:ba:eb:06:5a:b4:f8:78:41:
86:f5:77:8a:d8:18:e2:39:0b:25:1d:9d:da:23:fd:53:86:e8:
d0:2c:b6:13:e0:d5:ea:05:36:eb:bd:93:57:b2:18:40:9a:c6:
b7:d1:a3:dd:f1:b6:a0:7d:79:8b:3e:63:0e:7b:ba:8c:31:19:
74:38:f2:57:2d:30:2c:53:a0:92:df:e5:02:55:c2:bb:a9:67:
71:00:c5:fd:5f:f8:7e:a4:ec:59:42:a3:c0:65:09:41:62:62:
24:37:ce:c2:41:12:d6:de:90:e2:91:ab:14:ea:84:f9:2f:f1:
d6:9e:83:fe:98:d2:e1:5f:61:aa:94:6a:f4:92:df:4e:c0:92:
a3:f4:35:d2:5b:ea:fb:96:3e:1b:0b:a3:3d:6d:3e:73:0d:89:
db:c2:bf:7c
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUZaP1cJnEUeOLFfCpCZUe2HfR03UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQyMTBDNjk5ODg0QTIzRTM4RDQ1RjQwQjI3ODMzRDg0
QTQ0MEY5MTAeFw0yNDA0MDMxODI3MTJaFw0yNTA0MDIxODMyMTJaMDMxMTAvBgNV
BAMTKDEyNjE2RjZCNzJENUVBOERERkM5NTU1NTYwQTk5RTRCREYyMEM3NjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa1U3shDzDt5/PtEBc6MwiELTc
cdPRyS5lbjfw/W8XJIwh5hOUMLSQI5lYsVi6dYyHY5ae5+RgSoLwe+TU4XqgztL+
E55n3DvGftGgcpWNt9MdZJiNhXsyXPGqgZaWbNa5qeztr2rvWoo687VoNApTgEx4
qb+QGW8AMzq/cQaDGfSgTeNhBIvmsz5mtPM7hcb5dwmm8tWqkOjW2NKh6uIPFM8z
XhkTL1+WnKPT+Kc7ma38WJWZl0eplkG4ftXw27/AGPxYtaP/+L2xrd5xK8DA2CD1
w8q2polIwBtTKm4aYbbJYKn5R4JWNvaRcAyevHe2J9g4BwMjXmlSuGEd3x0VAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUEmFva3LV6o3fyVVVYKmeS98gx2UwHwYDVR0j
BBgwFoAUhCEMaZiEoj441F9Asngz2EpED5EwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vQ1B4aE5xZzVFQWNnaFVEalU0WUJlZXNtbUthRmRxbnZFM3I1R0s1Zm55
RkYvMS84NDIxMEM2OTk4ODRBMjNFMzhENDVGNDBCMjc4MzNEODRBNDQwRjkxLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg0MjEwQzY5OTg4NEEyM0Uz
OEQ0NUY0MEIyNzgzM0Q4NEE0NDBGOTEuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0NQeGhOcWc1RUFjZ2hVRGpVNFlCZWVzbW1LYUZkcW52RTNyNUdLNWZueUZGLzEv
MzEzMzM4MmUzMzM2MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM0
MzUzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQAiiRRMA0GCSqGSIb3DQEBCwUAA4IBAQBd+7e9XFQG
P+DgBrMBy8lZ3CXDaMOOGku/IAavPI1kgOHRXJv7LJ4bCJAvBuR+dSKSiU2RNZKL
U9Drm0R/XaJA0tN9XVrh75p5/uUiRp0RFH1Zzb+2S3vdCrR7gzKzlVVeEEo2uusG
WrT4eEGG9XeK2BjiOQslHZ3aI/1ThujQLLYT4NXqBTbrvZNXshhAmsa30aPd8bag
fXmLPmMOe7qMMRl0OPJXLTAsU6CS3+UCVcK7qWdxAMX9X/h+pOxZQqPAZQlBYmIk
N87CQRLW3pDikasU6oT5L/HWnoP+mNLhX2GqlGr0kt9OwJKj9DXSW+r7lj4bC6M9
bT5zDYnbwr98
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:37 2025 by rpki-client