Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/H271QMdvWExEAdwHK57gTuwdKJeknrKdce4hTcpi2nDo/0/32342e3135322e38382e302f32322d3332203d3e20323730343839.roa
File: 32342e3135322e38382e302f32322d3332203d3e20323730343839.roa (raw, json)
Hash identifier: 5SsMRyFNX414GQeu5DcDP47MHb3k5ehUVrsQgXo9A/k=
Subject key identifier: 60:4C:6B:BA:B8:9B:57:E2:DB:BB:BF:8E:24:BF:57:5F:05:7E:F5:1F
Certificate issuer: /CN=5B0DB9324CBC0FFD2457266E0D95998A2EEA3B74
Certificate serial: 63181775BCABB7A8160E0426D5C7741DE329F59D
Authority key identifier: 5B:0D:B9:32:4C:BC:0F:FD:24:57:26:6E:0D:95:99:8A:2E:EA:3B:74
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B0DB9324CBC0FFD2457266E0D95998A2EEA3B74.cer
Subject info access: rsync://rpki-repo.registro.br/repo/H271QMdvWExEAdwHK57gTuwdKJeknrKdce4hTcpi2nDo/0/32342e3135322e38382e302f32322d3332203d3e20323730343839.roa
Signing time: Fri 18 Oct 2024 19:08:18 +0000
ROA not before: Fri 18 Oct 2024 19:03:18 +0000
ROA not after: Fri 17 Oct 2025 19:08:18 +0000
asID: 270489
IP address blocks: 24.152.88.0/22 maxlen: 32
Validation: Failed, certificate revoked on Thu 28 Nov 2024 12:58:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:18:17:75:bc:ab:b7:a8:16:0e:04:26:d5:c7:74:1d:e3:29:f5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5B0DB9324CBC0FFD2457266E0D95998A2EEA3B74
Validity
Not Before: Oct 18 19:03:18 2024 GMT
Not After : Oct 17 19:08:18 2025 GMT
Subject: CN=604C6BBAB89B57E2DBBBBF8E24BF575F057EF51F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d7:09:5d:40:cc:ba:bb:f3:81:1e:a9:6c:a3:
20:76:6a:21:7f:70:43:64:f0:be:c8:8d:bc:9f:86:
c4:03:96:13:b0:b3:0e:ec:cd:91:bc:23:a2:95:44:
57:b8:8d:58:93:56:b6:b9:ab:4d:f0:e4:51:ad:7a:
a3:2b:6e:38:62:e8:bf:f7:ce:2c:3e:55:77:14:7b:
54:d3:1e:0a:c5:3a:f4:14:01:75:7c:21:bf:d3:04:
ae:49:69:82:5c:74:4d:bf:4f:f8:8e:2e:36:e8:ac:
b4:21:d8:33:ee:2e:ce:b2:88:c2:45:04:a1:69:22:
7f:9c:58:da:7f:14:b4:25:d3:c0:a2:75:23:94:18:
c8:2a:eb:80:5a:2f:e6:0c:8e:1e:7f:03:19:27:92:
44:2b:d4:ae:0b:d9:9a:0d:b0:eb:56:06:6e:e8:03:
a8:84:a3:e0:8c:1d:2a:d7:2b:f1:ce:93:4e:bf:2e:
d4:27:08:6e:24:ea:23:fa:4c:da:8e:cd:0c:3b:40:
87:a9:87:27:7b:09:87:9b:a8:82:7b:db:22:4c:bc:
ea:af:de:c8:98:2a:08:6e:c0:da:ff:aa:2a:87:cf:
71:18:6f:f1:8f:fe:7c:16:9c:10:3e:ee:d0:64:39:
f4:11:2e:0a:cd:5c:0e:2e:35:49:a6:62:bd:05:40:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4C:6B:BA:B8:9B:57:E2:DB:BB:BF:8E:24:BF:57:5F:05:7E:F5:1F
X509v3 Authority Key Identifier:
keyid:5B:0D:B9:32:4C:BC:0F:FD:24:57:26:6E:0D:95:99:8A:2E:EA:3B:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/H271QMdvWExEAdwHK57gTuwdKJeknrKdce4hTcpi2nDo/0/5B0DB9324CBC0FFD2457266E0D95998A2EEA3B74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B0DB9324CBC0FFD2457266E0D95998A2EEA3B74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/H271QMdvWExEAdwHK57gTuwdKJeknrKdce4hTcpi2nDo/0/32342e3135322e38382e302f32322d3332203d3e20323730343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.152.88.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:4a:b6:9d:ff:47:1a:e7:02:96:5b:4b:46:7d:e2:a7:59:05:
14:1a:d2:7b:ba:de:f2:76:21:a7:e5:69:df:28:18:01:e1:b0:
cf:ac:30:12:69:05:93:f4:b1:06:91:19:47:93:eb:9e:27:51:
3b:0e:50:c3:db:b7:40:fd:e4:50:e2:d7:7c:db:9d:84:19:20:
43:f6:e2:6d:63:a7:6f:77:80:2a:fe:32:ec:0a:3b:57:12:aa:
4c:c9:8f:01:0c:f4:75:17:5d:d3:e1:d0:58:30:59:bd:d7:dc:
f1:a5:a1:fa:9c:57:2c:c2:9e:18:2a:7d:77:7d:ff:66:68:f0:
81:ba:6f:1b:17:39:06:06:84:b1:af:fa:b9:46:28:e0:cd:04:
ea:17:84:0f:c1:47:55:95:5c:61:11:10:45:c4:c8:d0:fc:18:
c2:a1:2b:c3:98:23:9b:c9:dc:78:f2:7d:5b:a7:4e:b3:3a:23:
dd:d2:a0:a3:67:f7:cc:2a:25:ff:56:ba:30:6d:7d:72:4f:93:
84:db:24:a4:cf:67:04:b5:dc:31:54:e8:84:80:a8:a2:99:f0:
8d:64:87:98:be:7e:1b:04:e7:e6:9c:a8:a3:19:24:b1:10:d2:
47:e7:1a:66:be:b0:3e:4d:61:f6:f1:33:58:8f:4a:31:ec:87:
4c:36:10:9d
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUYxgXdbyrt6gWDgQm1cd0HeMp9Z0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUIwREI5MzI0Q0JDMEZGRDI0NTcyNjZFMEQ5NTk5OEEy
RUVBM0I3NDAeFw0yNDEwMTgxOTAzMThaFw0yNTEwMTcxOTA4MThaMDMxMTAvBgNV
BAMTKDYwNEM2QkJBQjg5QjU3RTJEQkJCQkY4RTI0QkY1NzVGMDU3RUY1MUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1wldQMy6u/OBHqlsoyB2aiF/
cENk8L7IjbyfhsQDlhOwsw7szZG8I6KVRFe4jViTVra5q03w5FGteqMrbjhi6L/3
ziw+VXcUe1TTHgrFOvQUAXV8Ib/TBK5JaYJcdE2/T/iOLjborLQh2DPuLs6yiMJF
BKFpIn+cWNp/FLQl08CidSOUGMgq64BaL+YMjh5/AxknkkQr1K4L2ZoNsOtWBm7o
A6iEo+CMHSrXK/HOk06/LtQnCG4k6iP6TNqOzQw7QIephyd7CYebqIJ72yJMvOqv
3siYKghuwNr/qiqHz3EYb/GP/nwWnBA+7tBkOfQRLgrNXA4uNUmmYr0FQPv5AgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQUYExruribV+Lbu7+OJL9XXwV+9R8wHwYDVR0j
BBgwFoAUWw25Mky8D/0kVyZuDZWZii7qO3QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSDI3MVFNZHZXRXhFQWR3SEs1N2dUdXdkS0pla25yS2RjZTRoVGNwaTJu
RG8vMC81QjBEQjkzMjRDQkMwRkZEMjQ1NzI2NkUwRDk1OTk4QTJFRUEzQjc0LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVCMERCOTMyNENCQzBGRkQy
NDU3MjY2RTBEOTU5OThBMkVFQTNCNzQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0gyNzFRTWR2V0V4RUFkd0hLNTdnVHV3ZEtKZWtucktkY2U0aFRjcGkybkRvLzAv
MzIzNDJlMzEzNTMyMmUzODM4MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzNzMw
MzQzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQCGJhYMA0GCSqGSIb3DQEBCwUAA4IBAQAdSrad/0ca
5wKWW0tGfeKnWQUUGtJ7ut7ydiGn5WnfKBgB4bDPrDASaQWT9LEGkRlHk+ueJ1E7
DlDD27dA/eRQ4td8252EGSBD9uJtY6dvd4Aq/jLsCjtXEqpMyY8BDPR1F13T4dBY
MFm919zxpaH6nFcswp4YKn13ff9maPCBum8bFzkGBoSxr/q5RijgzQTqF4QPwUdV
lVxhERBFxMjQ/BjCoSvDmCObydx48n1bp06zOiPd0qCjZ/fMKiX/VrowbX1yT5OE
2ySkz2cEtdwxVOiEgKiimfCNZIeYvn4bBOfmnKijGSSxENJH5xpmvrA+TWH28TNY
j0ox7IdMNhCd
-----END CERTIFICATE-----
Generated at Mon Apr 14 05:12:17 2025 by rpki-client