Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31312e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e31312e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: Xo2ZsZbJqRLEz3cbfhQt8MejxIC+Fyu+TcaG1ZIceKE=
Subject key identifier: C4:97:7B:8E:EF:E0:91:C8:A0:F8:73:E6:87:28:80:7C:05:03:6A:7F
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 3CDC953C207ABC771FA51663D3D2DE30934D239A
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31312e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:05 +0000
ROA not before: Thu 02 Feb 2023 19:55:05 +0000
ROA not after: Thu 01 Feb 2024 20:00:05 +0000
asID: 28124
IP address blocks: 187.19.11.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:dc:95:3c:20:7a:bc:77:1f:a5:16:63:d3:d2:de:30:93:4d:23:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:05 2023 GMT
Not After : Feb 1 20:00:05 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:2f:80:f0:2a:0c:e4:f0:94:e6:97:50:91:
d3:50:48:3a:c4:ae:27:87:93:15:19:4a:3b:a7:d2:
69:2a:69:41:da:55:ef:b7:2e:97:a6:09:5d:36:80:
f3:cd:d0:7f:dd:7c:09:79:b7:c0:87:12:76:3b:26:
59:1e:8f:ad:65:ca:b3:a3:10:42:c0:ab:6e:d7:f6:
b8:bb:4e:07:3a:d7:a5:d0:d0:bd:85:d4:ab:32:49:
7d:c6:04:e2:39:bb:0e:3e:1d:bd:bd:99:31:51:b5:
b5:ae:e8:09:6f:31:8b:af:f4:f9:a1:13:68:1f:ad:
aa:a2:de:c4:32:36:58:67:aa:2f:a6:b0:69:6c:e0:
b2:3c:57:f3:2c:58:2f:9c:ba:02:36:16:b1:d2:d6:
ec:ca:88:e4:86:c2:90:6a:9e:c3:67:2a:7e:a1:a6:
87:82:25:35:5e:d1:61:d2:02:11:2d:63:fe:68:f3:
9a:d7:cc:42:70:cc:31:2c:1c:c4:25:f8:ee:05:2e:
91:99:0f:92:cc:5b:fc:8b:42:2c:72:93:c1:3c:f6:
4b:d4:ca:ff:90:be:0a:af:b9:72:1b:f2:9d:57:5c:
a2:0b:f0:41:c5:68:66:69:61:c7:f0:18:14:cd:f9:
e2:cd:64:49:2d:18:08:24:b3:89:a2:4e:a5:22:9c:
ef:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:97:7B:8E:EF:E0:91:C8:A0:F8:73:E6:87:28:80:7C:05:03:6A:7F
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31312e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.11.0/24
Signature Algorithm: sha256WithRSAEncryption
65:18:f1:9d:b9:a7:09:f2:18:0c:f3:a0:68:43:64:b3:84:da:
a8:18:d3:3d:02:b4:7d:53:c5:ee:1c:f3:52:6b:c6:5c:a6:12:
e7:75:56:e0:45:13:23:1e:83:47:f9:8e:60:66:38:b4:35:d8:
f9:d0:a0:40:8a:5e:b8:4f:a8:ec:69:ea:b2:77:74:97:85:19:
73:61:84:63:ae:b6:58:01:62:78:fd:d7:bc:d9:b6:7f:c2:06:
ce:87:6e:01:8c:96:35:60:f2:7f:24:b1:fc:ee:31:29:ce:3f:
97:89:af:ac:1b:ff:9b:68:9c:f9:6d:a0:42:e5:d2:2c:d5:0a:
bc:43:db:ef:2e:45:9e:e9:62:f3:3d:2e:38:72:ce:e8:0b:ef:
1b:ea:1d:e7:7f:2c:7e:9b:9c:6e:ca:00:47:71:77:fe:43:50:
d5:b9:e3:ae:07:ba:2d:98:98:1d:69:24:48:3e:c8:51:97:3b:
0d:f8:67:d7:a7:85:e9:b4:96:a7:c7:0c:e6:74:f0:f5:97:6b:
aa:27:c1:d0:30:14:64:8f:ee:38:5d:b6:c5:f4:6b:23:85:84:
30:18:be:24:ef:72:ea:61:f8:d3:54:64:5e:0a:3c:b0:2e:2b:
84:e5:a7:9e:82:f0:23:c7:d8:c1:c7:a1:4c:92:00:23:f6:f9:
ac:68:b2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:29:25 2023 by rpki-client on console-ams.rpki-client.org