Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31302e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e31302e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: bYGlV9idV4yM1tPLIXGliPgvqTPvO2n9rNFuOzXONG0=
Subject key identifier: 22:E3:EA:02:81:15:F4:15:AB:26:20:B9:EA:11:48:14:6A:FC:9D:9A
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 77335A9DD2DA099910B7F27DF81768BACFFFC5BF
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31302e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:08 +0000
ROA not before: Thu 02 Feb 2023 19:55:08 +0000
ROA not after: Thu 01 Feb 2024 20:00:08 +0000
asID: 28124
IP address blocks: 187.19.10.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:33:5a:9d:d2:da:09:99:10:b7:f2:7d:f8:17:68:ba:cf:ff:c5:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:08 2023 GMT
Not After : Feb 1 20:00:08 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fe:7c:56:27:1f:f4:7f:7a:67:07:aa:7d:79:
eb:0c:9c:d4:17:f7:f4:71:7a:a8:07:af:9a:7e:a2:
61:56:37:42:48:72:70:5c:9a:09:d8:00:57:be:be:
12:1c:7b:ef:87:a6:b3:fc:23:0b:16:0f:11:4b:ac:
21:60:20:4c:a2:e5:e8:92:d8:12:54:ff:74:a5:2d:
03:63:15:08:c6:fb:78:68:7f:aa:39:9d:d0:40:ab:
97:95:07:32:3b:31:cb:a3:78:27:7f:58:c8:51:61:
e5:ed:1c:bb:22:62:62:eb:b4:d9:04:44:5a:6b:b3:
63:8e:96:e7:88:7c:03:e8:27:55:ed:65:45:e8:f4:
fe:b1:37:1d:2d:db:fc:93:a8:70:09:b8:b7:ac:70:
f0:e8:43:ad:93:d2:3f:a8:73:f3:36:40:de:0f:a0:
36:fa:5d:67:4c:f1:d1:44:1f:e1:87:51:c3:dc:91:
a7:34:04:cc:03:fe:67:5d:cd:54:40:60:5f:52:e9:
11:1e:d2:38:3a:71:87:22:bf:03:a8:29:48:47:4d:
a1:43:f1:ea:b9:9d:0c:05:cf:ea:26:3f:1d:be:b1:
3e:a3:b8:e6:97:11:7d:d2:f0:50:50:7c:08:61:b5:
d2:7d:77:df:9f:b3:a4:b6:51:62:bd:ef:f0:8c:0e:
ed:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E3:EA:02:81:15:F4:15:AB:26:20:B9:EA:11:48:14:6A:FC:9D:9A
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31302e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.10.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:61:6e:30:c9:8d:30:43:9b:40:8e:28:de:3b:e7:88:82:fb:
60:2b:cf:93:dd:a9:89:6a:b2:ef:00:13:a9:16:2c:a8:f3:21:
56:21:de:93:7a:cc:2f:a8:8d:e6:00:64:b6:b4:81:7c:d2:de:
9f:4f:e0:75:81:0f:e4:40:42:81:88:3c:81:81:70:b4:6c:4d:
13:3c:1d:9c:a8:70:30:a1:ee:f7:53:d3:9c:b7:00:c3:ed:23:
36:e0:15:7e:72:5a:5e:89:d4:f9:71:4b:38:38:8f:5f:d7:db:
d9:e3:32:e1:8c:d8:d0:cf:ec:16:4e:76:31:46:07:7d:cd:aa:
02:6b:bc:18:22:64:f8:44:18:e3:0e:8f:bc:61:62:53:89:f6:
d5:66:ff:fe:00:89:23:75:bb:27:6f:7f:b2:94:fa:47:96:c1:
ec:af:28:8d:de:03:b2:c4:56:bc:27:af:c8:ae:5e:ee:cd:84:
57:a1:5b:66:d1:bd:50:ed:80:34:f6:97:4c:ea:59:d5:6e:e6:
03:45:54:77:b0:be:38:15:6b:b8:a2:a5:f9:33:4e:32:3a:0b:
3d:a9:42:36:08:c2:83:48:7c:ec:5e:5e:71:8d:62:58:9f:d1:
e6:b6:8f:a4:c6:62:92:dd:eb:56:81:95:55:34:9e:2f:7d:30:
7c:4d:9f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:16:22 2023 by rpki-client on console-fra.rpki-client.org