Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e302e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: YXrc2eQVIUtnwn0dDqZNZgvK1FtLp8KHxf2bLuDj9Y4=
Subject key identifier: 48:BC:EA:B1:16:F2:E1:C6:47:14:79:FC:05:28:73:67:7F:15:17:26
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 2255CBF98485E7571C229BD68EF2F025FD9A340F
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:06 +0000
ROA not before: Thu 02 Feb 2023 19:55:06 +0000
ROA not after: Thu 01 Feb 2024 20:00:06 +0000
asID: 28124
IP address blocks: 187.19.0.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:55:cb:f9:84:85:e7:57:1c:22:9b:d6:8e:f2:f0:25:fd:9a:34:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:06 2023 GMT
Not After : Feb 1 20:00:06 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:54:3f:bd:79:a3:5b:b7:db:0f:86:7e:10:d1:
b7:9e:88:29:1e:3b:42:68:91:ae:69:a5:52:e5:fb:
84:e2:0e:13:ba:f6:f2:55:bc:7c:be:fd:f7:ce:75:
bc:ed:a4:33:90:ce:82:8e:00:df:1a:f8:74:39:98:
2a:37:e8:3d:5c:64:eb:d3:7d:af:4a:dd:54:05:fd:
68:38:e8:78:16:26:1c:c9:de:4f:2a:c3:7c:2f:ca:
0e:6c:6a:58:bf:cc:a6:c0:cc:0a:80:fa:ec:d4:d7:
cd:98:52:c5:e8:a8:f8:cf:5d:22:2d:e7:a4:f0:00:
3d:ef:5e:8c:db:54:34:50:32:b1:17:f3:33:07:6d:
6d:33:8f:84:14:98:9e:b2:31:d5:1c:bc:11:06:ab:
6d:bc:86:61:a5:ad:e9:0a:ef:68:53:57:df:ba:fb:
7a:6e:92:c0:ff:c6:20:12:23:92:28:62:f3:06:b3:
28:2d:1c:93:a3:c8:4b:d6:e9:41:0d:78:44:7f:cb:
d0:bf:63:1f:55:7c:6f:aa:08:e9:61:35:f7:ae:52:
6a:21:93:5a:c9:9c:27:c9:54:29:cf:ac:37:f6:7d:
f0:28:7a:b3:49:cf:a2:d1:8e:28:34:4c:9d:a1:b6:
8f:98:56:64:2f:8d:e0:06:4d:8e:46:f5:7f:cb:c8:
e0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:BC:EA:B1:16:F2:E1:C6:47:14:79:FC:05:28:73:67:7F:15:17:26
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e302e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.0.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:86:45:4a:5c:e5:92:7f:3d:4a:23:25:b0:17:3f:46:d3:b7:
53:f4:1f:3f:3d:4c:dd:1f:b0:e7:6f:e8:55:e0:8a:2c:d2:24:
60:57:7c:03:58:59:9c:cf:01:40:8f:e0:11:a7:d4:64:c6:da:
6a:92:2d:82:d0:a4:39:16:af:5e:2b:1c:fe:76:cf:b6:b2:90:
1d:d2:bd:64:99:d6:19:5f:6a:3f:ab:c9:45:00:b5:63:81:89:
1e:36:e3:8f:46:4c:79:75:4c:cd:2c:d9:16:9f:8a:ad:76:14:
3c:a8:be:2f:4f:77:89:1d:37:fc:5e:24:10:5d:00:a8:02:3d:
41:ad:fc:bb:80:8d:b6:3b:19:0b:12:0e:1d:cb:b5:a7:b2:69:
c6:4a:3a:bd:26:df:2c:33:b5:33:66:9f:60:39:e9:e0:a9:8a:
7c:b5:1f:66:7c:7e:3a:d7:99:7f:9f:7c:44:31:75:cb:7c:26:
9c:5e:75:a1:97:55:50:6f:ab:5f:f6:1f:07:b0:e0:3f:ff:61:
ad:2b:51:b8:70:18:16:e4:30:fc:d6:c1:e9:06:04:11:8e:32:
2b:e3:b4:1d:f3:3e:6f:e8:c4:d8:8c:87:f2:29:21:84:33:f1:
f8:17:9f:0d:64:4f:3e:3e:68:33:f0:4d:13:8d:c4:ef:5c:66:
d2:a1:5c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:29:25 2023 by rpki-client on console-ams.rpki-client.org