Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/323830343a323865343a3a2f33322d3438203d3e203238323630.roa
File: 323830343a323865343a3a2f33322d3438203d3e203238323630.roa (raw, json)
Hash identifier: cvr9x8zXj6Pf+DfenEK+PiuKfl31HCvDsimN/RHaHGE=
Subject key identifier: AD:C7:11:6F:9D:34:0B:44:10:18:6B:E3:E4:F6:4B:C7:40:1F:A5:FC
Certificate issuer: /CN=8BD556C1877889D5972C0C092DDCA81620EC2EE1
Certificate serial: 6209E304A2D4B7DA24FAB81E01284F9F6FE25CB9
Authority key identifier: 8B:D5:56:C1:87:78:89:D5:97:2C:0C:09:2D:DC:A8:16:20:EC:2E:E1
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BD556C1877889D5972C0C092DDCA81620EC2EE1.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/323830343a323865343a3a2f33322d3438203d3e203238323630.roa
Signing time: Wed 29 May 2024 16:21:45 +0000
ROA not before: Wed 29 May 2024 16:16:45 +0000
ROA not after: Wed 28 May 2025 16:21:45 +0000
asID: 28260
IP address blocks: 2804:28e4::/32 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:09:e3:04:a2:d4:b7:da:24:fa:b8:1e:01:28:4f:9f:6f:e2:5c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BD556C1877889D5972C0C092DDCA81620EC2EE1
Validity
Not Before: May 29 16:16:45 2024 GMT
Not After : May 28 16:21:45 2025 GMT
Subject: CN=ADC7116F9D340B4410186BE3E4F64BC7401FA5FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d0:24:d9:b6:d7:a2:17:4c:68:f6:77:3f:5d:
a9:39:11:5f:03:3d:4e:d3:d1:28:9e:c3:02:37:dc:
6b:22:a6:7b:6b:a9:0a:6f:a5:aa:5f:9c:fd:04:3b:
74:77:d3:40:98:ce:f7:64:45:f9:1a:4d:3e:ba:11:
be:59:b2:9a:b9:3d:3b:50:f2:01:ab:42:0d:db:6b:
c2:79:fe:d8:c9:9f:d4:2f:c5:ec:a6:f1:54:ae:13:
34:46:73:67:f5:fe:6e:f3:84:23:7c:91:df:c5:06:
5e:bb:16:2f:60:be:c5:32:0f:ea:3b:ec:06:4b:09:
af:9a:ce:09:03:25:dd:6a:62:bf:70:64:07:7a:5f:
b6:74:f8:ad:15:f7:58:ac:0d:52:40:53:89:fc:5e:
68:32:8c:07:62:d4:8a:77:b5:22:92:ea:73:57:e6:
dc:27:5c:76:2c:da:e4:82:55:83:b9:9f:ae:89:6a:
a3:6e:34:bd:a1:28:b1:23:a5:8f:fc:bf:5b:94:41:
8d:fb:37:03:6d:2f:a0:3f:76:b7:27:b7:b0:5d:bf:
87:06:95:89:28:b2:e4:86:e2:b4:c3:31:3b:5c:ed:
bd:b5:77:d1:25:a6:52:e6:5e:50:11:c0:20:20:08:
3b:01:20:3c:4d:35:a3:01:60:be:04:8b:e0:44:4a:
ed:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C7:11:6F:9D:34:0B:44:10:18:6B:E3:E4:F6:4B:C7:40:1F:A5:FC
X509v3 Authority Key Identifier:
keyid:8B:D5:56:C1:87:78:89:D5:97:2C:0C:09:2D:DC:A8:16:20:EC:2E:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/8BD556C1877889D5972C0C092DDCA81620EC2EE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BD556C1877889D5972C0C092DDCA81620EC2EE1.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D81aiXpDAv5WBmgE8oEpfordjGP62otn2fHrhaL4cgby/0/323830343a323865343a3a2f33322d3438203d3e203238323630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:28e4::/32
Signature Algorithm: sha256WithRSAEncryption
1a:37:2d:8e:60:1f:e0:e1:a2:42:ba:a5:1e:e1:cb:4e:63:18:
50:33:60:b9:50:b8:0e:7a:c0:e2:ee:10:a0:bf:3d:1e:ba:84:
cb:b7:81:55:24:3b:52:d1:8d:89:78:3c:2e:df:fd:e4:4b:71:
61:45:9b:64:78:1a:21:ac:dc:1a:fc:e7:8b:b8:e8:17:6c:1a:
92:64:51:13:c1:28:31:2c:84:ee:6c:7e:c6:17:72:87:03:0d:
66:80:f3:f9:30:3a:85:c1:dd:49:16:5e:66:68:56:8e:8c:2d:
89:69:a3:57:b9:7c:4f:71:c3:f2:cc:3f:54:eb:01:6d:6e:a1:
b5:fd:12:f3:8d:0b:c2:76:cc:7a:c8:d1:78:f2:98:b3:41:a4:
7d:45:51:3b:36:eb:39:9f:c2:26:d6:52:45:2a:bb:86:a7:ad:
d5:6c:92:ef:e4:65:9a:c7:a4:a9:a2:dc:14:49:18:bf:cc:f1:
53:55:4b:0d:4b:27:92:28:9c:59:0b:40:c2:d4:f3:7d:58:8c:
71:eb:3d:72:2c:87:4b:a7:e4:a7:14:fe:14:ea:c1:ee:ef:ad:
ea:d5:3c:f4:59:18:50:e0:76:9c:52:ae:7d:18:a3:01:b2:7b:
02:1f:4a:6b:d3:d6:df:90:d1:21:b5:f1:c8:1f:d2:03:fb:2f:
0c:4d:3b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 02:34:15 2024 by rpki-client on console-ams.rpki-client.org