Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e352e302f32342d3234203d3e203238313234.roa
File: 3138372e31392e352e302f32342d3234203d3e203238313234.roa (raw, json)
Hash identifier: vDc/j0W0GvMATZidyjla7BgUgIp80WCHaObOkUeQc38=
Subject key identifier: BF:D8:DA:F5:77:B9:22:C0:3D:68:9B:1F:F8:FC:9D:DF:D8:E9:40:05
Certificate issuer: /CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Certificate serial: 60A8C416B8E988DF3BDA5B20443072D38671DAC9
Authority key identifier: AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject info access: rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e352e302f32342d3234203d3e203238313234.roa
Signing time: Thu 02 Feb 2023 20:00:02 +0000
ROA not before: Thu 02 Feb 2023 19:55:02 +0000
ROA not after: Thu 01 Feb 2024 20:00:02 +0000
asID: 28124
IP address blocks: 187.19.5.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:a8:c4:16:b8:e9:88:df:3b:da:5b:20:44:30:72:d3:86:71:da:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAB9B3905E93FDE63A41BF51929A3CADCCA064AB
Validity
Not Before: Feb 2 19:55:02 2023 GMT
Not After : Feb 1 20:00:02 2024 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:ff:f9:5f:77:c9:ab:ff:f6:2e:fa:be:55:
ba:9a:de:86:77:30:1e:23:2e:86:52:1e:ad:ea:e8:
64:3e:dc:00:ed:38:d1:65:63:47:c9:e7:95:51:73:
58:e2:89:7d:e8:8f:46:4a:f3:20:c6:ee:5b:fb:6a:
12:c7:c0:75:26:7d:7a:b9:44:7e:7a:c8:29:15:e2:
7a:4a:ca:a9:b5:71:aa:75:52:cf:df:89:5c:ce:6b:
a4:ba:b2:f4:9a:f8:c7:2b:66:88:1e:c9:44:ba:79:
0b:a7:a8:46:ff:6f:f1:61:dc:63:cb:ee:ed:02:80:
03:1c:82:8c:cd:e1:f2:c8:6f:04:d1:2d:3a:7f:8d:
20:36:1c:b5:44:5e:64:41:aa:af:55:43:7e:c7:6f:
0e:9f:f2:5d:12:b8:bc:25:30:e0:29:d1:f8:52:3b:
61:97:1f:9b:e5:8d:bc:38:d8:c1:2e:98:65:e3:3e:
65:e3:0e:f8:33:cb:a0:dd:9d:aa:da:3a:10:96:03:
a8:85:ed:e6:70:3c:a1:e8:7b:81:b1:dc:ef:96:98:
7d:04:6e:c2:39:44:de:15:ca:b4:0f:ac:8f:0a:8d:
2a:ec:4b:a4:54:be:fb:4c:08:59:d4:03:d2:48:55:
82:8b:a3:71:c8:61:59:11:0f:58:cf:d1:de:36:fc:
e4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D8:DA:F5:77:B9:22:C0:3D:68:9B:1F:F8:FC:9D:DF:D8:E9:40:05
X509v3 Authority Key Identifier:
keyid:AA:B9:B3:90:5E:93:FD:E6:3A:41:BF:51:92:9A:3C:AD:CC:A0:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/AAB9B3905E93FDE63A41BF51929A3CADCCA064AB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/Fyy9t7bAaY1SRtMjjkXwUMnEcxYueq65dZ9LaV1ND2yA/0/3138372e31392e352e302f32342d3234203d3e203238313234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.19.5.0/24
Signature Algorithm: sha256WithRSAEncryption
54:e3:14:a7:8b:7b:a2:1b:5f:5a:ee:d5:b6:74:6a:41:29:84:
86:be:7d:87:95:13:76:e9:af:07:96:6d:41:76:0f:39:3e:0d:
e5:e0:28:2c:f7:cf:08:be:0b:94:1d:6d:ea:e4:bd:ba:49:1d:
84:3d:59:f8:85:75:c9:82:c3:e3:3d:30:29:f3:c6:0d:76:48:
b9:e2:15:23:f4:90:dc:ae:5b:93:0f:f6:6c:61:c5:b4:a9:eb:
01:81:a4:62:74:16:27:d0:6c:57:e4:aa:a3:0c:a0:24:ff:fa:
f2:48:5a:2d:50:fb:59:63:ae:a8:00:dd:ea:87:2d:f5:3f:e1:
63:41:1c:62:28:b3:59:d0:20:21:e1:59:08:8d:71:d2:03:0e:
80:0e:5d:65:7c:dd:c7:c3:4a:db:03:58:74:12:f5:4d:f2:bd:
18:9a:ac:f3:a7:5a:7e:d5:c0:8f:c0:f0:c3:2d:f4:3e:30:51:
dd:a6:ba:28:fa:26:4f:a7:64:af:c3:36:3d:8f:63:4a:43:e0:
f5:5e:f4:b1:97:5f:ff:59:a4:b8:83:37:71:6a:0f:ff:05:9d:
a0:73:3b:c6:9a:77:18:43:da:61:a0:ed:ff:ed:08:c8:88:af:
fa:54:f6:64:0c:77:69:52:82:bc:11:01:58:a0:28:18:ae:dd:
88:85:09:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 30 17:16:22 2023 by rpki-client on console-fra.rpki-client.org