Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32322d3232203d3e203238313234.roa
File: 3138372e31392e302e302f32322d3232203d3e203238313234.roa (raw, json)
Hash identifier: DkOSncMOEZGGUa7IXPWloVjsQwUkb9AFHQipYwxPshg=
Subject key identifier: B4:93:06:FF:1B:D0:7D:56:09:2D:4C:D2:B3:66:F3:9F:58:F9:38:12
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 51247BF84808E8149D94766F38BFB5F2EDA7B9D0
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32322d3232203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:00 +0000
ROA not before: Thu 02 Feb 2023 19:55:00 +0000
ROA not after: Thu 01 Feb 2024 20:00:00 +0000
asID: 28124
IP address blocks: 187.19.0.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:24:7b:f8:48:08:e8:14:9d:94:76:6f:38:bf:b5:f2:ed:a7:b9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:00 2023 GMT
Not After : Feb 1 20:00:00 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:0e:1c:07:26:4b:bd:39:36:54:1e:96:cc:
98:44:6f:90:41:66:7a:9e:ee:05:f9:be:81:0a:1f:
56:17:7a:6a:ef:4e:bf:78:a8:15:9f:a7:da:7a:7e:
40:cc:ef:a9:26:e9:79:42:e5:3b:d4:6e:75:1c:ea:
b4:c6:24:ef:45:ab:d2:f8:ea:e6:81:88:e9:1f:9f:
55:ab:c3:d6:76:d8:bf:8d:5f:f7:13:8d:90:b8:bb:
8d:a6:31:29:fc:73:68:d7:78:c3:da:99:53:2c:9a:
6f:dd:f4:95:3f:84:22:04:df:47:d8:3d:90:1a:9a:
6c:59:b7:1e:54:1f:a5:c1:c4:85:a8:bf:05:28:f7:
57:ad:c9:9a:46:23:a4:7d:61:47:6c:d4:44:14:3c:
65:49:c2:4f:fe:a2:d4:61:30:33:61:b0:2b:2f:cc:
e2:76:3f:99:c1:8d:31:ed:2e:08:96:c2:8a:e2:c4:
e4:9a:38:54:7d:30:c0:a7:80:84:72:10:5e:85:da:
70:6e:6c:48:9d:f3:12:14:3c:08:3b:79:4a:4b:2c:
a2:e3:42:8c:f1:d3:15:d2:e2:2d:c9:51:56:fb:13:
26:be:8e:9c:fb:be:aa:cf:1f:48:f2:e8:50:f1:1f:
d5:41:65:04:d0:ab:6e:23:a5:cf:38:c8:3f:c7:4d:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:93:06:FF:1B:D0:7D:56:09:2D:4C:D2:B3:66:F3:9F:58:F9:38:12
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32322d3232203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.0.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:c0:d3:f7:bb:23:e0:65:e4:ba:ca:85:d1:f0:c9:99:07:14:
bd:e0:94:9f:73:11:10:fc:4d:9e:7b:07:51:54:ab:86:7e:86:
db:d1:d3:54:aa:ce:a9:03:15:06:01:4c:05:45:35:9e:a4:e6:
5a:ce:93:e6:21:b6:f1:52:a2:5b:8e:df:e9:eb:6f:84:50:fa:
ab:25:1b:ea:2e:04:02:78:02:19:30:d0:1b:1e:cc:b7:51:09:
b4:92:c5:90:35:41:ab:06:52:81:06:33:54:fa:12:82:75:9d:
26:35:70:74:f0:02:29:a0:13:ec:04:06:3d:40:53:93:2d:ac:
4a:6d:4f:0b:b0:c2:9a:b5:92:35:dd:93:38:a1:8b:98:74:15:
2b:01:76:7e:be:5c:cd:84:d0:ff:05:f6:c9:d8:63:74:f8:95:
70:08:45:90:42:7a:ed:ee:59:37:b3:80:97:0f:84:b5:52:19:
31:f6:ba:d9:81:6e:51:65:dd:9b:27:f8:fb:d9:53:e9:68:21:
2d:00:76:00:a9:93:b6:34:13:28:cb:48:1c:b3:fd:b8:bb:02:
ef:87:d8:7f:a1:28:c1:e0:b3:0a:ca:f2:a9:5f:7b:aa:70:18:
b3:5c:fc:ec:2f:3f:8a:5d:68:cd:71:4d:45:17:b1:06:e5:55:
a7:c3:1b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:29:25 2023 by rpki-client on console-ams.rpki-client.org