Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3232203d3e20323635303738.roa
File: 3137302e3233332e3131322e302f32322d3232203d3e20323635303738.roa (raw, json)
Hash identifier: +dM9P1qQIorF8G+5/cwwQ/gmsTd5imaFLqsmKtI0wn8=
Subject key identifier: 79:0D:4D:7F:76:D6:E9:9F:4B:D7:6F:19:E1:65:F4:A2:1F:C8:6D:EC
Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2
Certificate serial: 5EFD5725D2166A13BCE1A4701606267BC089221B
Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3232203d3e20323635303738.roa
Signing time: Tue 10 Dec 2024 21:48:42 +0000
ROA not before: Tue 10 Dec 2024 21:43:42 +0000
ROA not after: Tue 09 Dec 2025 21:48:42 +0000
asID: 265078
IP address blocks: 170.233.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 21 Apr 2025 13:25:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:fd:57:25:d2:16:6a:13:bc:e1:a4:70:16:06:26:7b:c0:89:22:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2
Validity
Not Before: Dec 10 21:43:42 2024 GMT
Not After : Dec 9 21:48:42 2025 GMT
Subject: CN=790D4D7F76D6E99F4BD76F19E165F4A21FC86DEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ca:79:8a:6a:bd:7e:41:22:79:70:db:73:a2:
59:1c:e4:4b:ea:f7:5d:d4:7a:7d:5e:d9:33:52:44:
bd:f3:f6:78:db:76:6c:cd:3c:d3:4a:cd:c3:c7:67:
3b:26:ac:47:75:49:c3:0a:b5:97:64:fe:07:2f:c9:
8e:6b:4c:51:29:b5:a3:df:1f:de:a4:89:d9:ec:32:
81:bc:8c:b9:1c:88:07:97:9f:27:a9:a8:d5:55:4b:
4e:e8:5d:af:09:0d:ed:ce:df:ac:1e:16:c5:b8:b5:
6d:63:06:f9:cf:a9:5f:a1:39:2d:6c:6c:f5:ee:b7:
fd:19:bd:13:37:cf:4b:34:93:33:c6:6b:93:13:cd:
44:29:f7:48:ca:4d:9f:f1:55:b2:ef:12:00:b8:95:
0e:34:33:08:f5:5a:d6:9d:c9:ea:c2:01:76:80:0e:
6b:86:9d:b8:4c:27:a1:cf:3d:b8:55:01:ee:c1:8c:
e8:89:78:08:16:3e:de:ef:a2:62:56:d5:a8:12:77:
02:eb:0e:d4:08:b4:dc:4c:28:64:5e:88:fe:83:8d:
65:4f:c0:10:91:58:80:b2:9e:fc:13:06:8a:d7:a9:
f6:05:5a:3f:7f:2f:65:8f:b7:31:54:dc:50:59:d9:
d8:80:8b:29:ce:1b:33:53:d2:41:8f:9f:fd:5a:1f:
2e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0D:4D:7F:76:D6:E9:9F:4B:D7:6F:19:E1:65:F4:A2:1F:C8:6D:EC
X509v3 Authority Key Identifier:
keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3232203d3e20323635303738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.112.0/22
Signature Algorithm: sha256WithRSAEncryption
10:79:32:ad:06:dd:6a:9b:de:20:69:83:fa:15:5b:3d:31:46:
ce:08:5c:fe:91:5c:d5:05:15:3a:1e:71:75:fe:69:0c:e4:8c:
6a:bb:49:1c:2f:5e:3b:d3:21:89:e4:9c:7b:92:01:bb:76:a4:
54:6d:78:c1:65:23:ae:b8:fb:c2:02:83:bf:cc:ad:cb:eb:bf:
9b:a5:70:8c:08:85:3f:82:1e:f4:cc:ac:36:47:1b:db:5d:bd:
9e:b4:42:81:a2:75:bc:3d:99:e3:30:05:33:0d:6f:99:c3:40:
43:49:05:46:70:db:49:8d:40:e9:6d:33:75:c0:38:20:99:a1:
3f:2a:ab:70:84:4e:5c:f3:49:75:28:1e:74:93:88:69:32:ce:
57:dc:43:62:a2:ca:bf:24:25:74:1f:7a:9d:ae:05:a9:1b:4b:
ae:af:b8:07:17:34:98:98:92:cb:45:ed:e7:1e:8f:c1:c2:39:
8d:03:dd:14:f6:e4:45:a2:ef:c0:db:16:a8:95:12:47:98:9a:
40:63:36:e8:4b:84:55:7a:2f:bd:a8:da:19:d2:7a:95:dc:be:
7b:22:47:2a:15:51:a7:fc:a0:15:aa:ba:fa:ab:2c:f8:75:78:
ee:13:5b:b3:94:8d:0e:57:18:1f:d4:ff:da:6e:5e:e9:4b:10:
22:57:a4:2b
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUXv1XJdIWahO84aRwFgYme8CJIhswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB
MUEzMDJCMjAeFw0yNDEyMTAyMTQzNDJaFw0yNTEyMDkyMTQ4NDJaMDMxMTAvBgNV
BAMTKDc5MEQ0RDdGNzZENkU5OUY0QkQ3NkYxOUUxNjVGNEEyMUZDODZERUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvynmKar1+QSJ5cNtzolkc5Evq
913Uen1e2TNSRL3z9njbdmzNPNNKzcPHZzsmrEd1ScMKtZdk/gcvyY5rTFEptaPf
H96kidnsMoG8jLkciAeXnyepqNVVS07oXa8JDe3O36weFsW4tW1jBvnPqV+hOS1s
bPXut/0ZvRM3z0s0kzPGa5MTzUQp90jKTZ/xVbLvEgC4lQ40Mwj1WtadyerCAXaA
DmuGnbhMJ6HPPbhVAe7BjOiJeAgWPt7vomJW1agSdwLrDtQItNxMKGReiP6DjWVP
wBCRWICynvwTBorXqfYFWj9/L2WPtzFU3FBZ2diAiynOGzNT0kGPn/1aHy7NAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUeQ1Nf3bW6Z9L128Z4WX0oh/IbewwHwYDVR0j
BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz
VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy
RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv
MzEzNzMwMmUzMjMzMzMyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy
MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrpcDANBgkqhkiG9w0BAQsFAAOCAQEAEHky
rQbdapveIGmD+hVbPTFGzghc/pFc1QUVOh5xdf5pDOSMartJHC9eO9MhieSce5IB
u3akVG14wWUjrrj7wgKDv8yty+u/m6VwjAiFP4Ie9MysNkcb2129nrRCgaJ1vD2Z
4zAFMw1vmcNAQ0kFRnDbSY1A6W0zdcA4IJmhPyqrcIROXPNJdSgedJOIaTLOV9xD
YqLKvyQldB96na4FqRtLrq+4Bxc0mJiSy0Xt5x6PwcI5jQPdFPbkRaLvwNsWqJUS
R5iaQGM26EuEVXovvajaGdJ6ldy+eyJHKhVRp/ygFaq6+qss+HV47hNbs5SNDlcY
H9T/2m5e6UsQIlekKw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 10:30:07 2025 by rpki-client