Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3135333a3a2f34382d3438203d3e20323632363137.roa
File: 323830343a3930633a3135333a3a2f34382d3438203d3e20323632363137.roa (raw, json)
Hash identifier: uERhTIkW5QUlA6LLEWuk7eS+LCRkcnsi9/LaCAsU8wA=
Subject key identifier: 0D:CE:1F:D5:9E:9F:7E:65:67:C2:9E:57:91:31:7A:98:5A:7C:D9:F8
Certificate issuer: /CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Certificate serial: 23373A57F4FBB052EF02453318E5A671D2048029
Authority key identifier: 00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject info access: rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3135333a3a2f34382d3438203d3e20323632363137.roa
Signing time: Tue 18 Mar 2025 20:32:52 +0000
ROA not before: Tue 18 Mar 2025 20:27:52 +0000
ROA not after: Tue 17 Mar 2026 20:32:52 +0000
asID: 262617
IP address blocks: 2804:90c:153::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:37:3a:57:f4:fb:b0:52:ef:02:45:33:18:e5:a6:71:d2:04:80:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00078D2B578982663EFE91FC4B5397C48403E2E4
Validity
Not Before: Mar 18 20:27:52 2025 GMT
Not After : Mar 17 20:32:52 2026 GMT
Subject: CN=0DCE1FD59E9F7E6567C29E5791317A985A7CD9F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:13:11:d4:77:e1:2f:cc:4d:b5:d3:5b:81:d9:
bf:62:5c:22:d8:20:e1:c7:33:43:40:eb:4c:63:0e:
97:eb:97:d8:a4:6f:75:3f:0f:ee:d8:7e:ec:9c:f4:
63:05:1c:55:fd:64:e1:ab:d5:82:e1:b1:52:b9:22:
8b:3f:4f:2c:af:37:ab:ba:6d:06:e6:fa:59:d5:50:
45:79:f1:a4:dc:92:52:8e:42:90:09:d5:5e:89:7d:
48:a0:53:4e:68:dd:38:da:a4:6d:35:0f:04:bb:44:
92:ad:e4:4d:14:d0:44:66:25:bc:a6:ec:be:49:87:
86:37:a1:86:bc:5f:46:03:9c:ec:46:a8:a3:06:d6:
ac:df:80:a4:3c:ca:c9:48:96:bc:45:38:a6:26:94:
7f:d3:74:84:b7:63:ed:af:e8:98:b7:33:a9:ef:ee:
25:fd:b5:ea:af:02:74:f2:32:49:ce:62:a9:a6:ca:
6e:13:0c:f4:f0:f0:90:d0:65:b8:86:7f:83:71:3f:
2a:d5:8e:19:2e:ef:de:51:10:13:0f:d5:71:16:77:
c9:21:07:23:56:be:f1:46:8b:99:4e:1e:69:5c:80:
94:e1:8a:56:b2:19:bc:cf:b3:1d:21:9a:fb:9f:f6:
b9:a6:89:d0:6d:50:03:49:02:9e:3e:ff:35:e9:00:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CE:1F:D5:9E:9F:7E:65:67:C2:9E:57:91:31:7A:98:5A:7C:D9:F8
X509v3 Authority Key Identifier:
keyid:00:07:8D:2B:57:89:82:66:3E:FE:91:FC:4B:53:97:C4:84:03:E2:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/00078D2B578982663EFE91FC4B5397C48403E2E4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/00078D2B578982663EFE91FC4B5397C48403E2E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/DkQEt78w4vWDPZWBJtYqJw6w4bSXP4zC8Kigd1pocHk5/1/323830343a3930633a3135333a3a2f34382d3438203d3e20323632363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:90c:153::/48
Signature Algorithm: sha256WithRSAEncryption
0c:51:45:6c:42:b8:fc:a9:22:a6:b3:58:cf:2f:5d:89:d9:81:
a2:b9:d6:09:d0:2e:26:38:1b:d2:a3:be:5f:43:67:2b:26:e0:
1d:0d:21:5b:a4:af:f6:55:ce:f4:83:69:6d:71:8b:f7:34:47:
c3:47:04:0c:14:6c:5b:a4:fa:c2:a4:57:1c:16:58:d7:9c:2d:
3a:f6:68:91:7c:07:06:6b:5f:75:07:b6:26:d7:8a:09:f1:86:
02:8b:c6:a0:98:ce:ad:15:47:fd:d9:ec:bd:3c:b9:90:ae:e2:
6b:21:18:4e:67:a9:35:aa:80:cc:fe:04:57:11:36:99:cc:22:
e0:b2:55:5c:e1:ef:2e:16:a7:e8:1b:89:4b:8e:bc:fd:d9:28:
e3:07:53:d5:cb:22:4f:b9:9a:5d:10:4b:f6:b3:f3:45:7e:9a:
8b:89:4f:ee:03:04:90:b0:7c:29:b5:db:64:66:63:9e:33:db:
6f:07:85:dd:bf:86:d9:1b:67:a5:ca:82:a8:ee:e1:a9:bc:e7:
c3:de:93:ca:86:0a:3d:51:70:58:a8:f4:3b:e6:f7:fb:de:6d:
07:80:29:3e:28:97:d4:7b:61:96:93:f9:a3:3c:72:19:9a:7d:
9e:db:52:85:af:b4:29:c0:2d:ed:a4:db:24:e1:5d:ae:58:83:
4f:4b:a0:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 12:11:54 2025 by rpki-client