Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31342e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e31342e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: WZYzAmQs3LBkQyD2jrb7T+fA9NgSvOKT/Ufon2qsIB4=
Subject key identifier: 7C:C8:14:35:75:C2:59:D4:86:32:0B:32:71:D3:5E:D3:D2:10:28:61
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 10344FB620C5C5A3EF33B5F9AD1156C5E933FEDF
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31342e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:04 +0000
ROA not before: Thu 02 Feb 2023 19:55:04 +0000
ROA not after: Thu 01 Feb 2024 20:00:04 +0000
asID: 28124
IP address blocks: 187.19.14.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:34:4f:b6:20:c5:c5:a3:ef:33:b5:f9:ad:11:56:c5:e9:33:fe:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:04 2023 GMT
Not After : Feb 1 20:00:04 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b1:e8:32:4c:d2:a2:8e:bd:9b:58:4e:c9:c9:
a9:0f:4e:94:d9:19:06:80:eb:b3:54:df:70:82:db:
ef:09:29:5d:13:6b:a2:a0:de:b3:a3:4c:de:c8:ed:
5c:90:3b:23:0d:3e:a7:96:76:56:b5:14:49:b0:c0:
79:d8:b6:d7:97:38:70:cb:3f:c2:b5:61:dc:a7:03:
47:62:31:d3:d6:06:78:ef:e1:63:a3:08:d0:84:67:
00:40:bc:fd:3d:9d:18:81:74:bc:82:fd:d5:df:18:
90:ae:28:b0:f0:58:29:6c:07:6d:88:dd:60:13:d1:
8e:a0:81:32:8e:04:eb:7e:1d:41:3c:82:78:ce:db:
ec:e8:53:aa:31:83:bc:ea:43:65:b1:1f:39:85:f0:
b1:9d:12:ae:29:97:68:6e:a8:4c:14:2b:cd:1a:1a:
6d:0d:73:82:9f:b5:88:b3:e0:eb:b5:03:c6:73:39:
dc:a6:8a:f4:93:39:92:e7:1b:99:fc:61:02:7e:8e:
48:2e:a7:65:d5:c1:b8:66:77:c6:99:69:3b:19:bd:
60:27:5a:82:3c:9e:a0:43:b9:25:f0:79:95:d3:26:
6a:4a:d5:74:14:08:0a:ea:5d:d7:49:1d:97:76:c8:
36:71:a5:fd:dd:43:cb:b4:e0:0d:24:cf:53:01:a4:
3c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C8:14:35:75:C2:59:D4:86:32:0B:32:71:D3:5E:D3:D2:10:28:61
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e31342e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.14.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:4c:4a:fe:95:19:af:7d:9b:51:d7:f0:3e:dc:4f:88:ec:11:
c8:b6:61:a4:fb:f7:0c:77:2d:a8:96:ae:a9:cc:19:23:ef:65:
d0:34:68:5e:2a:40:9d:c0:ad:9f:1a:88:5c:32:5c:35:d5:fc:
67:87:c7:18:e6:90:55:68:3f:0d:68:81:8a:8a:f7:9c:b2:68:
fe:81:f3:d3:aa:1f:8b:8a:c3:e6:f2:5d:d2:28:c4:bd:b9:aa:
c1:2d:81:03:1b:03:12:f0:69:9e:ff:7a:1d:93:24:e9:46:27:
b0:b5:95:80:d7:2f:fb:c5:c3:c5:fb:34:72:ff:17:ab:58:cb:
66:b5:33:a6:e7:42:09:8b:91:ef:c0:45:eb:4b:2c:8b:6c:80:
84:1b:33:b4:b1:a9:a0:32:de:86:11:f6:32:63:e5:30:11:4c:
ed:30:ba:a8:0c:70:18:3a:e7:36:53:23:07:90:97:cd:5a:d9:
9d:fe:6c:1a:dd:72:3f:07:dc:96:2a:5b:fe:9c:24:9e:2c:49:
91:86:97:02:66:7a:c8:55:f9:4a:dc:6c:38:54:a9:82:4b:72:
62:75:5f:da:7a:5c:ea:20:1b:3d:a7:09:36:6d:ab:1d:bd:f6:
be:a7:9e:94:93:46:36:dd:9b:61:12:ff:72:1f:8f:03:13:00:
29:34:0c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:16:22 2023 by rpki-client on console-fra.rpki-client.org