Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38352e3233352e302f32342d3234203d3e20323632363137.roa
File: 3137372e38352e3233352e302f32342d3234203d3e20323632363137.roa (raw, json)
Hash identifier: YT/UPElmHPfOQDeID+oSnroQp1kUf8KMW5TBAqfSvHU=
Subject key identifier: 71:88:77:82:66:CE:F9:30:95:DE:DC:40:31:BE:92:BE:C9:91:67:72
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 632DEE84CDAD3825EA8B4A2D17BC6CE99654D49F
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38352e3233352e302f32342d3234203d3e20323632363137.roa
Signing time: Wed 05 Mar 2025 20:35:54 +0000
ROA not before: Wed 05 Mar 2025 20:30:54 +0000
ROA not after: Wed 04 Mar 2026 20:35:54 +0000
asID: 262617
IP address blocks: 177.85.235.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:2d:ee:84:cd:ad:38:25:ea:8b:4a:2d:17:bc:6c:e9:96:54:d4:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 5 20:30:54 2025 GMT
Not After : Mar 4 20:35:54 2026 GMT
Subject: CN=7188778266CEF93095DEDC4031BE92BEC9916772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e5:70:ec:f0:92:9a:44:e7:80:e6:bd:68:b4:
86:21:42:70:90:d2:cd:63:86:06:ef:07:66:1f:ed:
0c:a0:b4:b8:ff:e8:01:f7:10:67:90:ee:3a:5f:36:
05:c6:cc:b3:14:72:26:72:aa:14:99:a3:96:90:51:
c5:8f:ba:3f:72:90:4f:af:39:3e:09:53:44:0c:2e:
d6:81:25:a4:9c:dc:62:b9:6a:b1:f5:6d:7f:3d:52:
23:1e:7a:29:bd:b7:c7:ab:8d:40:27:bf:d4:ba:ae:
e0:12:ab:5c:e1:28:86:ca:55:81:a5:68:73:76:ac:
fd:0e:2e:37:73:8d:30:eb:4a:78:95:a3:b3:19:96:
14:9f:9b:74:07:9f:ff:34:9e:67:ed:a2:1b:31:7b:
88:6d:ec:f2:fc:b9:1e:da:be:27:f7:1c:e6:99:cb:
ee:4b:21:44:66:b1:77:f3:dd:1a:9e:c1:be:a8:9c:
38:c4:57:0c:bb:64:d5:34:ed:4e:5b:b3:f7:be:60:
91:98:41:c8:ca:31:e3:91:66:3c:9c:d4:e1:02:93:
e8:49:a8:2b:fc:66:62:3d:32:de:45:36:1d:04:22:
b1:4c:8f:bf:b1:d0:46:2f:06:1b:98:24:ad:75:f1:
9b:f4:6b:62:09:02:ce:bc:3e:8f:cd:ee:c7:36:99:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:88:77:82:66:CE:F9:30:95:DE:DC:40:31:BE:92:BE:C9:91:67:72
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/3137372e38352e3233352e302f32342d3234203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.85.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:92:b1:68:d5:6d:5f:a1:3c:66:53:de:8e:b5:b9:68:34:ad:
7e:32:1f:90:cb:34:22:aa:26:f9:4d:45:1a:c0:92:08:09:89:
6d:16:c1:36:de:c2:be:4c:41:d9:08:4e:d4:10:d8:04:45:cb:
c0:4f:34:84:2d:3e:8d:4f:ce:a6:ea:6b:30:57:0d:5f:1e:4f:
68:2f:3e:58:72:4c:a2:e7:14:e8:45:a7:c7:31:23:62:94:5e:
39:6e:bc:23:6a:ce:5b:20:84:16:ec:60:23:09:f8:26:e3:b1:
c7:9d:bd:fe:8a:97:ad:11:b3:4c:bf:c2:84:b7:e9:1e:45:54:
8d:24:57:51:15:c6:02:97:0d:92:86:69:c2:d8:95:ac:0b:2e:
b9:50:a6:f5:0b:c9:c3:b9:7c:c1:71:5d:bc:44:28:84:2f:bc:
29:a8:87:13:16:5e:d5:26:2f:f5:68:be:63:dd:b3:fa:39:da:
01:45:95:6d:95:3a:27:80:52:1e:63:36:24:51:d8:b0:59:f0:
d4:55:00:e5:91:9f:ba:4c:48:14:85:90:8f:bb:12:da:5a:8e:
b3:f0:80:26:a9:3a:0b:30:32:54:9a:be:bf:70:84:6e:d7:4b:
5c:2a:d1:c3:7d:ca:34:ee:65:83:63:50:ad:98:1f:e2:4f:ec:
6c:3a:74:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 08:54:52 2025 by rpki-client