Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa
File: 34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa (raw, json)
Hash identifier: HhfkXQUch5PZ6WQfd8GO8I+vOlmr9YSsz7fUF6KJeJc=
Subject key identifier: 09:0E:1B:E5:4A:C5:3F:9F:35:43:C8:B0:14:DC:5E:D4:86:4C:65:D4
Certificate issuer: /CN=16CB8773EACB65F30777ECC795BCEC32A0DA9198
Certificate serial: 3BB83E7B25C202646F3DD36798762377901362CC
Authority key identifier: 16:CB:87:73:EA:CB:65:F3:07:77:EC:C7:95:BC:EC:32:A0:DA:91:98
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/16CB8773EACB65F30777ECC795BCEC32A0DA9198.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa
Signing time: Thu 29 May 2025 18:25:56 +0000
ROA not before: Thu 29 May 2025 18:20:56 +0000
ROA not after: Thu 28 May 2026 18:25:56 +0000
asID: 268850
IP address blocks: 45.174.128.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:b8:3e:7b:25:c2:02:64:6f:3d:d3:67:98:76:23:77:90:13:62:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16CB8773EACB65F30777ECC795BCEC32A0DA9198
Validity
Not Before: May 29 18:20:56 2025 GMT
Not After : May 28 18:25:56 2026 GMT
Subject: CN=090E1BE54AC53F9F3543C8B014DC5ED4864C65D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:06:b3:94:43:de:8d:da:42:7f:35:72:d7:bb:
f1:5e:bd:a4:6e:5d:16:2c:14:c0:62:57:a9:50:2c:
03:aa:d7:94:f6:04:7f:6b:f7:15:ee:fc:31:20:07:
21:53:ff:bd:72:a1:40:fa:89:1c:66:1d:80:66:a3:
d8:ef:fa:d2:d9:71:6a:71:26:cf:30:1d:78:76:41:
5b:bf:c1:3b:84:84:db:1a:9d:4e:b4:86:e2:7e:b6:
d4:35:a4:cf:a5:01:d0:26:88:c8:e7:05:a7:38:69:
a4:16:be:d9:ae:4a:7e:e3:18:3c:50:4d:1f:d3:61:
c1:60:72:47:0b:b7:42:6e:45:30:fb:82:8e:7e:38:
9c:f9:ae:77:f7:ec:2d:b5:2f:f9:40:e7:60:69:ea:
03:da:71:17:2a:7a:15:e8:98:62:2a:21:cb:be:47:
4b:e6:83:0b:9e:0b:80:8b:21:bd:af:ed:1a:db:51:
df:18:21:26:77:ad:d2:be:10:ea:ff:af:0e:d9:cf:
1e:10:da:2a:d2:d4:df:6e:20:9c:74:a0:fa:5e:23:
87:52:10:2c:44:5d:e0:af:bf:cd:df:2f:e4:70:60:
7e:4e:bd:ee:95:7e:73:23:5a:47:d7:13:c9:5c:88:
21:c5:50:f1:55:1e:ab:b4:6b:64:84:ad:29:29:23:
15:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0E:1B:E5:4A:C5:3F:9F:35:43:C8:B0:14:DC:5E:D4:86:4C:65:D4
X509v3 Authority Key Identifier:
keyid:16:CB:87:73:EA:CB:65:F3:07:77:EC:C7:95:BC:EC:32:A0:DA:91:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/16CB8773EACB65F30777ECC795BCEC32A0DA9198.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/16CB8773EACB65F30777ECC795BCEC32A0DA9198.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.174.128.0/24
Signature Algorithm: sha256WithRSAEncryption
04:1f:0d:8f:4a:e4:20:5f:fe:2a:c8:f3:11:7f:db:07:dc:7d:
6e:60:b4:02:6d:17:3e:37:e6:f4:a0:f6:e5:3a:0b:5f:0d:71:
19:4f:c7:67:88:4d:77:d2:c4:1c:94:d3:1e:43:a4:04:1b:af:
38:a1:bf:06:a9:42:7b:fc:41:03:e8:72:45:b5:b3:57:ae:a8:
be:1f:45:22:62:25:dc:cc:6b:b2:d5:88:c3:d1:cb:ca:39:8f:
64:bd:e1:06:88:63:9c:d5:9c:e5:a5:c4:8b:01:75:df:26:4f:
b5:00:18:ce:8f:24:f3:05:56:00:a8:c2:2d:e9:66:20:5f:b9:
74:90:45:e5:25:55:26:c7:ec:9c:e3:8f:8e:f8:f6:6d:81:eb:
07:64:59:14:89:86:7c:15:e7:46:54:4d:6e:bc:85:94:c0:13:
c6:55:d5:d0:29:42:af:bd:a7:8f:d4:2c:99:64:3c:77:5b:98:
24:86:bb:c0:23:d6:3e:61:82:7a:e8:f8:f2:f2:49:0f:cf:33:
93:56:18:6e:34:b2:cb:f7:6d:be:07:91:c2:83:01:96:34:77:
59:b8:d9:5e:fb:7b:ca:d4:25:a2:06:d1:64:2e:a9:00:23:69:
63:8c:e3:f2:e4:c2:10:a9:1a:ff:58:fd:49:25:b7:ef:42:a0:
08:67:da:72
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUO7g+eyXCAmRvPdNnmHYjd5ATYswwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTZDQjg3NzNFQUNCNjVGMzA3NzdFQ0M3OTVCQ0VDMzJB
MERBOTE5ODAeFw0yNTA1MjkxODIwNTZaFw0yNjA1MjgxODI1NTZaMDMxMTAvBgNV
BAMTKDA5MEUxQkU1NEFDNTNGOUYzNTQzQzhCMDE0REM1RUQ0ODY0QzY1RDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoBrOUQ96N2kJ/NXLXu/FevaRu
XRYsFMBiV6lQLAOq15T2BH9r9xXu/DEgByFT/71yoUD6iRxmHYBmo9jv+tLZcWpx
Js8wHXh2QVu/wTuEhNsanU60huJ+ttQ1pM+lAdAmiMjnBac4aaQWvtmuSn7jGDxQ
TR/TYcFgckcLt0JuRTD7go5+OJz5rnf37C21L/lA52Bp6gPacRcqehXomGIqIcu+
R0vmgwueC4CLIb2v7RrbUd8YISZ3rdK+EOr/rw7Zzx4Q2irS1N9uIJx0oPpeI4dS
ECxEXeCvv83fL+RwYH5Ove6VfnMjWkfXE8lciCHFUPFVHqu0a2SErSkpIxURAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUCQ4b5UrFP581Q8iwFNxe1IZMZdQwHwYDVR0j
BBgwFoAUFsuHc+rLZfMHd+zHlbzsMqDakZgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRXIyc0FQRlR4ckZCVFVoMWVRZFFQWXVzWkFjcEd6c1FOVnVrZWhQWkVF
a1YvMC8xNkNCODc3M0VBQ0I2NUYzMDc3N0VDQzc5NUJDRUMzMkEwREE5MTk4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzE2Q0I4NzczRUFDQjY1RjMw
Nzc3RUNDNzk1QkNFQzMyQTBEQTkxOTguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0VyMnNBUEZUeHJGQlRVaDFlUWRRUFl1c1pBY3BHenNRTlZ1a2VoUFpFRWtWLzAv
MzQzNTJlMzEzNzM0MmUzMTMyMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2
MzgzODM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAAtroAwDQYJKoZIhvcNAQELBQADggEBAAQfDY9K
5CBf/irI8xF/2wfcfW5gtAJtFz435vSg9uU6C18NcRlPx2eITXfSxByU0x5DpAQb
rzihvwapQnv8QQPockW1s1euqL4fRSJiJdzMa7LViMPRy8o5j2S94QaIY5zVnOWl
xIsBdd8mT7UAGM6PJPMFVgCowi3pZiBfuXSQReUlVSbH7Jzjj4749m2B6wdkWRSJ
hnwV50ZUTW68hZTAE8ZV1dApQq+9p4/ULJlkPHdbmCSGu8Aj1j5hgnro+PLySQ/P
M5NWGG40ssv3bb4HkcKDAZY0d1m42V77e8rUJaIG0WQuqQAjaWOM4/LkwhCpGv9Y
/Uklt+9CoAhn2nI=
-----END CERTIFICATE-----
Generated at Fri Jun 6 19:40:06 2025 by rpki-client