Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: xtXhzl4yEWBvj6quY2aC2s/RoQjPcRcuIADYsRXXQuk=
Subject key identifier: 29:EF:6E:9E:6A:03:DA:80:9E:8B:40:90:44:80:94:E7:94:00:EB:2B
Certificate issuer: /CN=A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B
Certificate serial: 3297B451DD88CFEFA50248FDC598E07307DC32E7
Authority key identifier: A7:CF:6A:D9:57:FD:96:A4:24:FF:83:F6:75:AC:AF:C7:EE:E7:EF:8B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
Signing time: Tue 10 Dec 2024 22:08:40 +0000
ROA not before: Tue 10 Dec 2024 22:03:40 +0000
ROA not after: Tue 09 Dec 2025 22:08:40 +0000
asID: 263584
IP address blocks: 177.129.142.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:97:b4:51:dd:88:cf:ef:a5:02:48:fd:c5:98:e0:73:07:dc:32:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B
Validity
Not Before: Dec 10 22:03:40 2024 GMT
Not After : Dec 9 22:08:40 2025 GMT
Subject: CN=29EF6E9E6A03DA809E8B4090448094E79400EB2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:27:11:ba:24:a4:97:4c:c3:7e:af:9a:a1:78:
2e:23:46:d1:c0:4e:38:12:08:47:7a:ae:a5:7c:1d:
0b:5d:0a:04:52:21:85:a3:90:c9:9d:83:81:f5:f0:
e3:f4:7a:f6:47:ed:b2:ca:12:b8:2b:f7:b8:b2:3e:
6e:31:de:c8:8f:1f:b6:50:c8:bd:43:3b:5f:34:0c:
f3:c6:05:26:90:e5:71:06:2a:c5:14:1c:87:d9:3f:
52:ad:7d:fa:79:6b:e1:2b:d4:5a:03:71:5f:f1:f2:
d9:70:e7:63:e8:bc:2b:ec:01:75:7d:bc:c7:18:0f:
e9:72:8d:bb:69:79:82:70:ee:12:82:f2:b0:51:a1:
07:a5:8f:f6:c4:1b:d1:7a:c7:35:52:8b:1b:00:ac:
e9:b0:98:6a:ad:6d:46:34:b7:15:bf:dc:c0:0f:bd:
80:29:33:58:7f:4b:77:b5:c6:93:93:22:f7:e8:ee:
b4:f2:d3:5a:5b:e1:63:a7:04:10:4c:42:45:cb:70:
31:a3:8e:a8:36:63:0d:39:3c:57:83:90:10:bf:3c:
a9:60:96:1b:d4:b0:54:7e:95:a6:a7:64:c3:cc:04:
33:4e:56:eb:f4:6f:64:45:f2:9e:ae:c2:5a:17:9a:
c0:d8:a2:a2:69:3b:40:fb:6b:96:ce:f2:ec:fe:f0:
45:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EF:6E:9E:6A:03:DA:80:9E:8B:40:90:44:80:94:E7:94:00:EB:2B
X509v3 Authority Key Identifier:
keyid:A7:CF:6A:D9:57:FD:96:A4:24:FF:83:F6:75:AC:AF:C7:EE:E7:EF:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A7CF6AD957FD96A424FF83F675ACAFC7EEE7EF8B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.142.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:13:44:7e:4e:d6:66:2a:7b:aa:19:fe:a2:c5:94:89:e4:9c:
ec:44:82:11:d0:f6:22:f1:4a:11:27:77:c2:37:2d:78:c5:07:
9a:b1:b6:09:04:f0:b1:09:77:0d:7b:da:7f:16:53:aa:3a:f4:
4f:43:6f:a4:05:c9:f8:e6:31:8d:69:e7:40:3e:9c:b0:00:f5:
99:84:02:4d:19:d7:c6:ef:05:01:35:06:f0:8e:d5:80:09:80:
fa:21:0f:e4:f5:38:df:c9:16:17:94:69:9c:69:70:08:b3:f2:
cc:a7:d9:a6:11:ae:24:6a:8f:42:da:65:8b:16:fb:e5:23:92:
95:56:41:f3:63:36:36:1f:b5:df:92:14:de:8d:89:c0:bb:95:
6a:c0:62:30:a4:b9:4e:32:34:88:4f:5a:86:4a:80:6c:2c:fa:
d0:0f:3c:b9:f3:db:44:cf:8e:3f:9e:df:22:0e:2a:90:27:57:
6b:df:f7:9c:bb:0c:28:29:22:2e:5e:82:84:ec:e5:f7:6f:04:
5b:01:a9:13:72:6c:5e:af:0a:0e:1d:9d:99:f7:37:91:28:60:
34:c1:3a:d6:dd:22:85:c4:50:89:1f:32:4a:49:21:9b:87:f5:
4f:f1:3b:8a:1f:ec:42:af:71:07:b1:2a:eb:fb:78:27:24:44:
07:22:88:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:02:46 2025 by rpki-client