Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/CY8UkggCCB2cbcPh6mqHZVWeY3WJYNVrqtUjgPBqAmYT/0/34352e37302e3136342e302f32322d3234203d3e20323637353738.roa
File: 34352e37302e3136342e302f32322d3234203d3e20323637353738.roa (raw, json)
Hash identifier: LjE6dgGw2eV8yz/WXSBtiIH0Ae9zASpZIN71Kqjl/vw=
Subject key identifier: E8:54:CF:26:7C:A5:F9:A2:E8:03:8D:A3:68:63:76:99:14:18:DE:C9
Certificate issuer: /CN=C54DE33022CD4D3A53CEC70AD26EF7C0CA091205
Certificate serial: 415271CB0637A425BA72C620C3AC46272685D1EC
Authority key identifier: C5:4D:E3:30:22:CD:4D:3A:53:CE:C7:0A:D2:6E:F7:C0:CA:09:12:05
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C54DE33022CD4D3A53CEC70AD26EF7C0CA091205.cer
Subject info access: rsync://rpki-repo.registro.br/repo/CY8UkggCCB2cbcPh6mqHZVWeY3WJYNVrqtUjgPBqAmYT/0/34352e37302e3136342e302f32322d3234203d3e20323637353738.roa
Signing time: Sat 13 Jul 2024 22:19:49 +0000
ROA not before: Sat 13 Jul 2024 22:14:49 +0000
ROA not after: Sat 12 Jul 2025 22:19:49 +0000
asID: 267578
IP address blocks: 45.70.164.0/22 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:52:71:cb:06:37:a4:25:ba:72:c6:20:c3:ac:46:27:26:85:d1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C54DE33022CD4D3A53CEC70AD26EF7C0CA091205
Validity
Not Before: Jul 13 22:14:49 2024 GMT
Not After : Jul 12 22:19:49 2025 GMT
Subject: CN=E854CF267CA5F9A2E8038DA3686376991418DEC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:93:08:3f:bd:ff:23:e3:29:41:5d:1d:4b:23:
ad:fa:75:2e:c6:9b:ab:a1:76:cb:a1:8a:2e:d9:e1:
39:6a:d8:4b:99:0a:a8:a6:44:8e:c1:7f:ed:b1:8a:
93:88:84:b8:b7:e4:66:7d:9b:fb:66:bb:5a:38:55:
09:94:8c:fd:26:bd:96:74:e9:8a:57:ad:6e:79:d2:
6b:ea:3f:d2:10:8e:06:6e:26:b4:29:0c:ce:33:df:
f7:15:8b:75:d7:1d:2f:95:0c:c7:b8:c2:c0:7d:37:
6d:00:45:26:7e:ab:ca:30:0a:50:99:95:d8:f0:a2:
e1:cb:1f:59:07:1e:cc:59:27:54:03:24:4b:b3:23:
6c:cf:89:bc:65:ec:b9:ad:90:78:2b:4a:24:e1:07:
9f:31:50:54:c1:7e:db:6b:10:01:e7:44:6a:64:83:
b5:5f:14:ed:24:35:09:cd:7e:96:99:70:f8:cd:03:
04:65:23:63:61:bd:59:ad:64:5e:8c:a8:48:4e:7f:
5b:17:f4:eb:13:9a:30:7a:21:a9:68:0d:1a:68:20:
a1:62:4a:9a:2a:77:8f:ff:bc:ae:16:f5:5b:5f:58:
9f:a7:f5:8a:ac:8d:ef:1c:33:e1:f5:f9:bc:cd:cd:
61:8c:09:3c:5c:e9:20:ae:c8:38:fa:2a:df:bc:ad:
57:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:54:CF:26:7C:A5:F9:A2:E8:03:8D:A3:68:63:76:99:14:18:DE:C9
X509v3 Authority Key Identifier:
keyid:C5:4D:E3:30:22:CD:4D:3A:53:CE:C7:0A:D2:6E:F7:C0:CA:09:12:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/CY8UkggCCB2cbcPh6mqHZVWeY3WJYNVrqtUjgPBqAmYT/0/C54DE33022CD4D3A53CEC70AD26EF7C0CA091205.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C54DE33022CD4D3A53CEC70AD26EF7C0CA091205.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/CY8UkggCCB2cbcPh6mqHZVWeY3WJYNVrqtUjgPBqAmYT/0/34352e37302e3136342e302f32322d3234203d3e20323637353738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.164.0/22
Signature Algorithm: sha256WithRSAEncryption
24:f3:f0:43:6f:56:24:6d:a0:ed:82:37:cb:61:cf:64:80:8f:
e4:64:d0:85:0a:0f:47:20:85:97:1a:54:4b:05:ca:02:f1:94:
a4:df:57:1f:6a:1f:88:3a:22:a1:f5:c4:47:95:20:9b:ee:bc:
12:1d:9a:5a:46:b9:f3:f4:2a:4a:2c:2e:d4:6a:8f:b9:53:6a:
15:9f:e6:66:12:78:cb:d5:a3:ba:4e:74:3a:4a:e8:58:d1:6d:
1b:e4:2a:d2:67:ea:ef:b9:4e:d7:33:29:32:63:0f:7f:27:40:
12:42:87:ef:6f:67:45:6b:47:f3:a3:b5:cb:13:36:75:f2:88:
a5:3b:ed:e1:04:ab:e8:5c:44:b9:ed:e7:fc:c6:c3:b0:85:b4:
fc:dc:2a:dc:93:a8:fb:ee:2c:81:ce:63:fc:b3:fd:10:98:d0:
d8:58:6d:16:2a:8f:ac:ab:98:3c:49:27:b0:0c:e1:13:aa:4e:
a6:e0:91:93:6d:87:ef:25:0a:72:6a:e4:a3:4a:60:08:2a:82:
6b:ca:82:99:d6:d6:14:7d:17:e7:01:85:a7:77:da:00:a9:79:
3f:fa:75:eb:d3:4f:c1:6c:c3:1c:30:3d:b6:55:fc:cf:2b:28:
bf:56:69:ee:67:ef:7b:bc:b2:30:02:ff:c0:6d:14:5f:44:fc:
f8:52:15:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 18:24:54 2024 by rpki-client on console-fra.rpki-client.org