Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e322e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e322e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: fnMvRTmfuRbTepo9xwfqcx0AbIqv55ifMBHbyf7ilfQ=
Subject key identifier: 24:F4:63:90:5C:C5:25:B0:92:B5:C9:E6:CB:B9:D5:FB:81:76:BE:75
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 3266428DC95884AEEED9DEAC4D6DDE6BB453BE70
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e322e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:03 +0000
ROA not before: Thu 02 Feb 2023 19:55:03 +0000
ROA not after: Thu 01 Feb 2024 20:00:03 +0000
asID: 28124
IP address blocks: 187.19.2.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:66:42:8d:c9:58:84:ae:ee:d9:de:ac:4d:6d:de:6b:b4:53:be:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:03 2023 GMT
Not After : Feb 1 20:00:03 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d0:ac:f7:60:d6:6e:73:75:9f:f6:74:11:78:
32:1d:a6:95:2c:02:3d:0b:87:44:4e:ad:17:a6:2e:
f5:e2:0f:20:2b:18:be:82:f7:6a:79:8e:79:67:f2:
90:83:a9:e4:e1:3d:ff:c9:3f:20:65:1b:69:ec:63:
af:34:18:1f:9a:11:fa:79:42:66:23:13:43:cd:1a:
49:01:38:e4:f6:bc:17:37:83:6a:80:28:ba:5d:c9:
01:a6:ea:7f:c2:43:30:50:69:34:a1:42:cc:b7:d0:
91:39:f3:3b:bf:b2:8c:38:c4:39:b5:f7:51:89:11:
d2:3b:67:fc:41:3c:0e:f0:f8:93:47:26:9e:09:1f:
62:bb:55:68:24:cd:6d:fb:15:84:4a:28:09:9d:5e:
28:ad:8a:87:ba:78:82:0c:f3:26:d4:19:7b:33:90:
50:5e:ea:33:08:2d:2b:a7:ae:1d:87:9b:15:1b:7c:
f5:b1:ac:1e:33:4e:88:13:8d:cb:03:82:3e:04:36:
0c:b2:71:d0:0c:5d:5b:6c:06:76:eb:e6:43:b2:ad:
ac:f1:6b:8b:9f:08:68:17:00:37:9e:17:26:99:38:
d1:0d:27:5d:c7:97:76:87:a4:bd:ab:90:bd:fc:63:
a1:fd:65:d4:25:79:84:9c:07:01:cc:8b:5e:e2:a9:
6b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F4:63:90:5C:C5:25:B0:92:B5:C9:E6:CB:B9:D5:FB:81:76:BE:75
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e322e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:73:e6:cc:d2:c7:a8:07:54:cf:01:c1:99:c1:ea:c2:fc:59:
91:58:f4:d7:33:bc:63:d2:3a:0b:47:f9:5b:c2:da:5c:81:bc:
23:8d:cc:2e:3f:bd:87:7a:c9:84:28:72:55:a1:06:b3:98:15:
a0:19:28:67:da:8c:bc:79:d0:48:f5:91:db:3f:bf:c4:42:b1:
d3:15:d6:7f:e9:c6:2e:75:c6:5d:a7:bb:65:57:19:46:69:c9:
b0:bc:25:ca:f1:40:92:06:a8:1d:4f:74:1d:6c:b9:47:f6:b6:
5d:02:ee:93:92:e8:30:18:45:ab:f4:ac:ae:cd:f1:f0:f1:d9:
d2:cd:d1:ca:d7:af:d1:1a:c4:fd:af:95:e1:d7:8d:7b:eb:d0:
5a:94:5a:33:0e:47:58:07:92:3d:7f:cb:a6:89:b0:48:dd:df:
49:21:ea:32:89:2d:12:f5:7c:e7:9c:13:1f:c5:09:14:1f:fe:
fc:77:b2:a0:10:3c:7a:cc:e4:9f:c6:df:77:14:52:5a:72:10:
be:d1:59:fb:84:60:59:14:d2:08:36:41:93:e1:a4:d7:d8:dc:
97:ec:21:39:3d:3f:79:c5:46:46:8e:c1:4f:94:ff:ef:a5:0f:
9d:10:de:84:2b:62:c4:e7:a9:92:81:77:7d:4c:92:35:ad:87:
47:a1:85:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:29:25 2023 by rpki-client on console-ams.rpki-client.org