Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GBfThanibP9be45pXqsrzTMJbDmBf1ymN45CBDQrmnxb/1/3134332e3133372e3132302e302f32322d3232203d3e20323634303336.roa
File: 3134332e3133372e3132302e302f32322d3232203d3e20323634303336.roa (raw, json)
Hash identifier: 5kYVqoLmoSNSImqRKrF1MxP0+xAQlZQvpBJvOnyJOWE=
Subject key identifier: FA:01:F9:6F:29:D4:63:E0:9D:6B:85:3E:4C:DE:90:7F:D9:50:DF:C6
Certificate issuer: /CN=8BCC3BCD747996DEA6D7F16098CF132148801B30
Certificate serial: 3173DA005E79134277FF6352015E4B0F2B6CE3EC
Authority key identifier: 8B:CC:3B:CD:74:79:96:DE:A6:D7:F1:60:98:CF:13:21:48:80:1B:30
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BCC3BCD747996DEA6D7F16098CF132148801B30.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GBfThanibP9be45pXqsrzTMJbDmBf1ymN45CBDQrmnxb/1/3134332e3133372e3132302e302f32322d3232203d3e20323634303336.roa
Signing time: Mon 03 Mar 2025 12:19:53 +0000
ROA not before: Mon 03 Mar 2025 12:14:53 +0000
ROA not after: Mon 02 Mar 2026 12:19:53 +0000
asID: 264036
IP address blocks: 143.137.120.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:73:da:00:5e:79:13:42:77:ff:63:52:01:5e:4b:0f:2b:6c:e3:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BCC3BCD747996DEA6D7F16098CF132148801B30
Validity
Not Before: Mar 3 12:14:53 2025 GMT
Not After : Mar 2 12:19:53 2026 GMT
Subject: CN=FA01F96F29D463E09D6B853E4CDE907FD950DFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:7a:ae:e0:a0:f2:cb:21:7a:b4:22:95:d7:
76:c7:9c:30:b4:77:ac:87:d1:09:83:b4:b2:88:3a:
4c:ce:d7:a0:a2:84:63:ef:bd:24:14:7f:06:c6:64:
b6:0e:2f:65:a2:3d:26:64:af:49:5a:4b:73:4f:99:
c3:c8:34:f7:f5:0c:21:78:6c:f3:ee:4b:e4:5f:70:
f7:7b:5c:4b:79:b6:7a:f2:67:d5:51:03:84:72:2a:
ac:19:aa:ba:c6:b0:9a:4a:78:90:4f:8d:c4:9e:b0:
5b:85:1a:f7:4b:b4:76:44:95:85:b3:00:4a:87:37:
59:43:9d:ed:11:e0:a0:67:a4:c7:8d:41:13:cd:a4:
06:4d:cd:28:cb:d6:04:d3:ef:96:d0:3a:a9:c3:13:
9b:88:2b:89:fd:43:3b:8d:e0:3e:7d:d3:62:bd:8a:
0d:86:ad:aa:ad:f5:4b:4b:b4:fe:e3:96:15:d7:0b:
7c:5d:08:0e:4d:72:a3:bc:91:a0:60:0c:b1:6c:06:
82:8b:b5:00:bf:da:4f:47:8f:17:35:d3:24:0c:47:
f2:58:74:cf:c6:95:29:46:b2:14:76:5e:40:f2:d1:
f3:2d:a1:8d:af:76:4c:e0:a9:26:13:c8:7a:c1:e6:
81:64:d7:1f:71:d6:53:63:73:4d:b9:2b:e3:d4:53:
b6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:01:F9:6F:29:D4:63:E0:9D:6B:85:3E:4C:DE:90:7F:D9:50:DF:C6
X509v3 Authority Key Identifier:
keyid:8B:CC:3B:CD:74:79:96:DE:A6:D7:F1:60:98:CF:13:21:48:80:1B:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GBfThanibP9be45pXqsrzTMJbDmBf1ymN45CBDQrmnxb/1/8BCC3BCD747996DEA6D7F16098CF132148801B30.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BCC3BCD747996DEA6D7F16098CF132148801B30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GBfThanibP9be45pXqsrzTMJbDmBf1ymN45CBDQrmnxb/1/3134332e3133372e3132302e302f32322d3232203d3e20323634303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.137.120.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:8d:62:0a:48:a6:9d:2c:3d:f8:51:28:1b:b0:20:ed:26:1d:
67:8b:9a:8b:97:10:20:e6:fb:34:db:39:a1:75:72:b0:2f:fb:
c3:84:c9:38:15:20:ad:b4:18:98:8c:df:a7:72:77:89:53:16:
c6:3e:a8:6f:d0:c9:f6:f7:88:e9:20:01:7c:73:66:9f:bc:9a:
c6:2c:dd:d0:38:3d:c5:3f:b3:e8:22:84:ab:da:61:da:b6:77:
b1:76:bf:3b:c4:3c:a1:c0:fb:11:4e:56:56:c8:fb:28:7a:bb:
4e:63:17:3d:16:ff:7d:6c:26:aa:ae:2b:80:a4:83:00:90:b5:
d6:4f:01:70:dd:be:19:94:f2:65:41:b5:8a:08:bf:6e:52:c2:
3d:b6:c7:d3:02:cc:84:3a:75:4f:e6:39:06:ce:f1:04:b1:d1:
db:f9:24:ca:55:20:d4:2d:8d:b6:9e:aa:4f:89:bd:a9:14:d1:
eb:dd:cd:97:56:a0:2b:bc:1c:fe:36:53:a7:04:23:59:e1:56:
a3:0e:6f:ef:8d:97:71:98:03:d2:21:8f:87:81:02:00:1c:9f:
bc:c1:44:5a:c2:04:23:9c:5c:e2:95:fe:46:9f:63:cf:87:e5:
2b:fc:83:7d:3e:9f:ee:86:61:a9:95:96:ca:60:33:fc:5b:38:
ee:ef:e1:26
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUMXPaAF55E0J3/2NSAV5LDyts4+wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEJDQzNCQ0Q3NDc5OTZERUE2RDdGMTYwOThDRjEzMjE0
ODgwMUIzMDAeFw0yNTAzMDMxMjE0NTNaFw0yNjAzMDIxMjE5NTNaMDMxMTAvBgNV
BAMTKEZBMDFGOTZGMjlENDYzRTA5RDZCODUzRTRDREU5MDdGRDk1MERGQzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh03qu4KDyyyF6tCKV13bHnDC0
d6yH0QmDtLKIOkzO16CihGPvvSQUfwbGZLYOL2WiPSZkr0laS3NPmcPINPf1DCF4
bPPuS+RfcPd7XEt5tnryZ9VRA4RyKqwZqrrGsJpKeJBPjcSesFuFGvdLtHZElYWz
AEqHN1lDne0R4KBnpMeNQRPNpAZNzSjL1gTT75bQOqnDE5uIK4n9QzuN4D5902K9
ig2Graqt9UtLtP7jlhXXC3xdCA5NcqO8kaBgDLFsBoKLtQC/2k9Hjxc10yQMR/JY
dM/GlSlGshR2XkDy0fMtoY2vdkzgqSYTyHrB5oFk1x9x1lNjc025K+PUU7ZzAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQU+gH5bynUY+Cda4U+TN6Qf9lQ38YwHwYDVR0j
BBgwFoAUi8w7zXR5lt6m1/FgmM8TIUiAGzAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR0JmVGhhbmliUDliZTQ1cFhxc3J6VE1KYkRtQmYxeW1ONDVDQkRRcm1u
eGIvMS84QkNDM0JDRDc0Nzk5NkRFQTZEN0YxNjA5OENGMTMyMTQ4ODAxQjMwLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhCQ0MzQkNENzQ3OTk2REVB
NkQ3RjE2MDk4Q0YxMzIxNDg4MDFCMzAuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dCZlRoYW5pYlA5YmU0NXBYcXNyelRNSmJEbUJmMXltTjQ1Q0JEUXJtbnhiLzEv
MzEzNDMzMmUzMTMzMzcyZTMxMzIzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMy
MzYzNDMwMzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAo+JeDANBgkqhkiG9w0BAQsFAAOCAQEApY1i
CkimnSw9+FEoG7Ag7SYdZ4uai5cQIOb7NNs5oXVysC/7w4TJOBUgrbQYmIzfp3J3
iVMWxj6ob9DJ9veI6SABfHNmn7yaxizd0Dg9xT+z6CKEq9ph2rZ3sXa/O8Q8ocD7
EU5WVsj7KHq7TmMXPRb/fWwmqq4rgKSDAJC11k8BcN2+GZTyZUG1igi/blLCPbbH
0wLMhDp1T+Y5Bs7xBLHR2/kkylUg1C2Ntp6qT4m9qRTR693Nl1agK7wc/jZTpwQj
WeFWow5v742XcZgD0iGPh4ECAByfvMFEWsIEI5xc4pX+Rp9jz4flK/yDfT6f7oZh
qZWWymAz/Fs47u/hJg==
-----END CERTIFICATE-----
Generated at Wed Aug 20 22:34:23 2025 by rpki-client