Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/H1gLreWLfcLs2P4xidRLK14ktCjW1KUn7hDB4ALTqHn8/0/3138392e31342e37322e302f32312d3231203d3e203238323736.roa
File:                     3138392e31342e37322e302f32312d3231203d3e203238323736.roa (raw, json)
Hash identifier:          m3gr+jBo6LTmPFgXHOw9rgmAECShxfwRZu2ejHDSJrc=
Subject key identifier:   16:82:10:7B:29:DB:37:93:DF:63:B3:7F:B3:2F:22:AA:BB:20:D2:4A
Certificate issuer:       /CN=8ABC084B53F9798714C06A642B698DD90EC2F25E
Certificate serial:       69DD785F765F735910A97863531B4AF0EAB6B740
Authority key identifier: 8A:BC:08:4B:53:F9:79:87:14:C0:6A:64:2B:69:8D:D9:0E:C2:F2:5E
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8ABC084B53F9798714C06A642B698DD90EC2F25E.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/H1gLreWLfcLs2P4xidRLK14ktCjW1KUn7hDB4ALTqHn8/0/3138392e31342e37322e302f32312d3231203d3e203238323736.roa
Signing time:             Tue 23 Apr 2024 19:04:14 +0000
ROA not before:           Tue 23 Apr 2024 18:59:14 +0000
ROA not after:            Tue 22 Apr 2025 19:04:14 +0000
asID:                     28276
IP address blocks:        189.14.72.0/21 maxlen: 21

Validation:               Failed, certificate revoked on Wed 05 Jun 2024 19:18:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            69:dd:78:5f:76:5f:73:59:10:a9:78:63:53:1b:4a:f0:ea:b6:b7:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8ABC084B53F9798714C06A642B698DD90EC2F25E
        Validity
            Not Before: Apr 23 18:59:14 2024 GMT
            Not After : Apr 22 19:04:14 2025 GMT
        Subject: CN=1682107B29DB3793DF63B37FB32F22AABB20D24A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:3d:ce:1f:8c:20:f6:9e:b9:56:f6:08:a1:74:
                    70:e8:2c:4a:f3:8a:24:ec:bc:22:ea:6f:81:a3:27:
                    aa:53:31:23:82:6e:a4:2a:41:cc:72:a5:17:d6:13:
                    81:69:1a:a7:d9:df:51:57:37:55:fb:97:c5:df:08:
                    9d:9d:f1:e1:40:3e:f9:6e:cc:d7:d3:8b:fd:1f:18:
                    59:e0:c1:5f:da:28:9c:a5:6d:cd:13:63:cb:d3:89:
                    3b:1d:b1:49:7f:e4:18:a3:8e:3f:95:a6:b6:23:8c:
                    64:c8:bc:bf:b7:01:ad:e3:07:eb:9c:61:2d:f0:0e:
                    81:91:8b:81:93:24:b0:7f:b2:91:01:25:15:16:f5:
                    1e:ad:17:ac:9b:4d:ce:5c:b0:26:0f:5d:15:fe:eb:
                    3b:b0:e9:5a:e3:ac:ac:cd:a2:96:09:ff:8a:86:23:
                    da:7e:6f:c1:bf:f5:a4:07:8c:a0:78:f3:77:7b:8a:
                    61:b4:42:ae:ac:e3:a4:7a:e4:3a:4d:a9:46:c4:50:
                    86:55:f5:9d:02:67:88:9f:4d:0e:95:72:c3:10:76:
                    74:be:59:22:60:a5:6f:f2:ee:23:ca:34:04:2d:74:
                    c4:81:21:78:af:5c:de:88:67:ff:81:41:e6:d2:cf:
                    6e:26:8c:e8:8a:fe:9b:b9:5d:6e:17:87:06:f4:01:
                    29:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:82:10:7B:29:DB:37:93:DF:63:B3:7F:B3:2F:22:AA:BB:20:D2:4A
            X509v3 Authority Key Identifier:
                keyid:8A:BC:08:4B:53:F9:79:87:14:C0:6A:64:2B:69:8D:D9:0E:C2:F2:5E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/H1gLreWLfcLs2P4xidRLK14ktCjW1KUn7hDB4ALTqHn8/0/8ABC084B53F9798714C06A642B698DD90EC2F25E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8ABC084B53F9798714C06A642B698DD90EC2F25E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/H1gLreWLfcLs2P4xidRLK14ktCjW1KUn7hDB4ALTqHn8/0/3138392e31342e37322e302f32312d3231203d3e203238323736.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  189.14.72.0/21

    Signature Algorithm: sha256WithRSAEncryption
         d1:14:c2:62:aa:5f:6c:9c:85:1d:01:71:f8:4d:e2:74:84:f6:
         04:fa:13:65:28:0e:4c:f0:b3:3b:4a:92:b5:d9:e1:c5:95:13:
         6d:7b:60:4f:d0:00:98:4f:83:4c:a5:0e:24:9b:b3:1b:ba:35:
         9d:2b:22:ee:a6:be:92:1b:29:9f:f5:b7:b0:14:1d:33:c8:df:
         86:65:3a:9f:63:fd:4d:7f:55:10:9f:03:25:c5:eb:ed:82:55:
         75:06:05:bc:02:e5:f1:7b:b5:97:07:ad:5c:10:88:9e:0b:aa:
         b6:01:53:e0:59:05:ae:4f:ec:83:54:1a:34:f3:95:b6:ae:1d:
         f4:5d:01:b0:af:f1:dc:2a:4e:56:23:88:2c:8d:be:be:d0:80:
         31:4a:e3:74:07:ae:3c:75:09:45:21:9f:bd:e0:dc:5d:31:95:
         74:bf:33:26:33:cc:8e:a4:7c:e8:81:ea:17:00:6c:13:d3:ef:
         7e:5f:4a:8a:25:0d:c5:2a:ef:d3:91:f0:5e:c6:e8:bf:3b:60:
         a4:27:f9:f5:7d:f4:d2:0d:27:3b:0f:78:49:ae:c1:40:df:ea:
         cd:71:43:cc:d3:67:09:31:c4:74:7a:64:09:7b:0e:f5:4c:0f:
         27:ae:dd:21:14:e3:34:d1:8f:2b:e0:15:00:bd:f4:34:07:d0:
         20:d9:5e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:43:34 2024 by rpki-client on console-ams.rpki-client.org