Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/HaPqNfuG7XFC1UakJCfuNP9pit6zCww8pUCZnmq1j6qh/1/AS11921.roa
File: AS11921.roa (raw, json)
Hash identifier: 8mrDYgmhM+KCeaB2I9P3cUIyKaoDJz+c6K9CnhnlrUw=
Subject key identifier: C6:25:B0:00:0F:78:00:66:3C:CC:A0:71:23:A1:1F:26:64:F2:03:CD
Certificate issuer: /CN=D79C7E4BAE4953730FE72125E941901AFC590C0B
Certificate serial: 4519906D0A1CDAF3F909EAB28772799394940E5B
Authority key identifier: D7:9C:7E:4B:AE:49:53:73:0F:E7:21:25:E9:41:90:1A:FC:59:0C:0B
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D79C7E4BAE4953730FE72125E941901AFC590C0B.cer
Subject info access: rsync://rpki-repo.registro.br/repo/HaPqNfuG7XFC1UakJCfuNP9pit6zCww8pUCZnmq1j6qh/1/AS11921.roa
Signing time: Mon 21 Oct 2024 18:54:23 +0000
ROA not before: Mon 21 Oct 2024 18:49:23 +0000
ROA not after: Mon 20 Oct 2025 18:54:23 +0000
asID: 11921
IP address blocks: 200.150.128.0/20 maxlen: 20
200.150.128.0/24 maxlen: 24
200.150.129.0/24 maxlen: 24
200.150.130.0/24 maxlen: 24
200.150.131.0/24 maxlen: 24
200.150.132.0/24 maxlen: 24
200.150.133.0/24 maxlen: 24
200.150.134.0/24 maxlen: 24
200.150.135.0/24 maxlen: 24
200.150.136.0/24 maxlen: 24
200.150.137.0/24 maxlen: 24
200.150.138.0/24 maxlen: 24
200.150.139.0/24 maxlen: 24
200.150.140.0/24 maxlen: 24
200.150.141.0/24 maxlen: 24
200.150.142.0/24 maxlen: 24
200.150.143.0/24 maxlen: 24
200.194.96.0/21 maxlen: 21
200.194.96.0/24 maxlen: 24
200.194.97.0/24 maxlen: 24
200.194.98.0/24 maxlen: 24
200.194.99.0/24 maxlen: 24
200.194.100.0/24 maxlen: 24
200.194.101.0/24 maxlen: 24
200.194.102.0/24 maxlen: 24
200.194.103.0/24 maxlen: 24
200.194.104.0/21 maxlen: 21
200.194.104.0/24 maxlen: 24
200.194.105.0/24 maxlen: 24
200.194.106.0/24 maxlen: 24
200.194.107.0/24 maxlen: 24
200.194.108.0/24 maxlen: 24
200.194.109.0/24 maxlen: 24
200.194.110.0/24 maxlen: 24
200.194.111.0/24 maxlen: 24
200.233.64.0/20 maxlen: 20
200.233.64.0/24 maxlen: 24
200.233.65.0/24 maxlen: 24
200.233.66.0/24 maxlen: 24
200.233.67.0/24 maxlen: 24
200.233.68.0/24 maxlen: 24
200.233.69.0/24 maxlen: 24
200.233.70.0/24 maxlen: 24
200.233.71.0/24 maxlen: 24
200.233.72.0/24 maxlen: 24
200.233.73.0/24 maxlen: 24
200.233.74.0/24 maxlen: 24
200.233.75.0/24 maxlen: 24
200.233.76.0/24 maxlen: 24
200.233.77.0/24 maxlen: 24
200.233.78.0/24 maxlen: 24
200.233.79.0/24 maxlen: 24
201.49.0.0/18 maxlen: 18
201.49.0.0/24 maxlen: 24
201.49.1.0/24 maxlen: 24
201.49.2.0/24 maxlen: 24
201.49.3.0/24 maxlen: 24
201.49.4.0/24 maxlen: 24
201.49.5.0/24 maxlen: 24
201.49.6.0/24 maxlen: 24
201.49.7.0/24 maxlen: 24
201.49.8.0/24 maxlen: 24
201.49.9.0/24 maxlen: 24
201.49.10.0/24 maxlen: 24
201.49.11.0/24 maxlen: 24
201.49.12.0/24 maxlen: 24
201.49.13.0/24 maxlen: 24
201.49.14.0/24 maxlen: 24
201.49.15.0/24 maxlen: 24
201.49.16.0/24 maxlen: 24
201.49.17.0/24 maxlen: 24
201.49.18.0/24 maxlen: 24
201.49.19.0/24 maxlen: 24
201.49.21.0/24 maxlen: 24
201.49.22.0/24 maxlen: 24
201.49.23.0/24 maxlen: 24
201.49.24.0/24 maxlen: 24
201.49.25.0/24 maxlen: 24
201.49.26.0/24 maxlen: 24
201.49.27.0/24 maxlen: 24
201.49.28.0/24 maxlen: 24
201.49.29.0/24 maxlen: 24
201.49.30.0/24 maxlen: 24
201.49.31.0/24 maxlen: 24
201.49.32.0/24 maxlen: 24
201.49.33.0/24 maxlen: 24
201.49.34.0/24 maxlen: 24
201.49.35.0/24 maxlen: 24
201.49.36.0/24 maxlen: 24
201.49.37.0/24 maxlen: 24
201.49.38.0/24 maxlen: 24
201.49.39.0/24 maxlen: 24
201.49.40.0/24 maxlen: 24
201.49.41.0/24 maxlen: 24
201.49.42.0/24 maxlen: 24
201.49.43.0/24 maxlen: 24
201.49.44.0/24 maxlen: 24
201.49.45.0/24 maxlen: 24
201.49.46.0/24 maxlen: 24
201.49.47.0/24 maxlen: 24
201.49.48.0/24 maxlen: 24
201.49.49.0/24 maxlen: 24
201.49.50.0/24 maxlen: 24
201.49.51.0/24 maxlen: 24
201.49.52.0/24 maxlen: 24
201.49.53.0/24 maxlen: 24
201.49.54.0/24 maxlen: 24
201.49.55.0/24 maxlen: 24
201.49.56.0/24 maxlen: 24
201.49.57.0/24 maxlen: 24
201.49.58.0/24 maxlen: 24
201.49.59.0/24 maxlen: 24
201.49.60.0/24 maxlen: 24
201.49.61.0/24 maxlen: 24
201.49.62.0/24 maxlen: 24
201.49.63.0/24 maxlen: 24
2804:1470::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 22 Oct 2024 19:05:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:19:90:6d:0a:1c:da:f3:f9:09:ea:b2:87:72:79:93:94:94:0e:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D79C7E4BAE4953730FE72125E941901AFC590C0B
Validity
Not Before: Oct 21 18:49:23 2024 GMT
Not After : Oct 20 18:54:23 2025 GMT
Subject: CN=C625B0000F7800663CCCA07123A11F2664F203CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:de:44:c6:0b:75:a0:8e:cd:55:dc:cb:81:30:
7f:7e:65:08:d7:ae:6b:29:7d:7e:75:ed:de:6c:28:
47:18:c8:e9:6e:d7:f4:f9:2c:17:48:4e:c8:0d:16:
3f:73:46:8f:4c:17:00:2b:4a:53:6f:de:b1:31:94:
03:5e:c6:1b:9d:cd:c7:a4:9d:a6:29:a6:1a:14:f0:
6a:9b:17:81:29:2c:26:49:f0:31:0f:4d:c9:21:7d:
da:a3:97:a2:ff:ac:a5:16:1e:6b:98:12:3a:7f:8a:
45:bd:4c:f8:4b:17:55:f0:32:d7:b2:4b:12:88:5f:
6d:ba:04:03:7d:05:55:ca:b1:f0:16:3f:37:db:a2:
b1:b9:25:c1:05:18:58:85:94:a7:b8:f6:81:9d:c9:
90:98:b0:75:ba:f0:76:2e:87:38:e8:8a:81:77:85:
0d:d5:93:59:ba:b4:e9:2c:9e:89:29:f7:22:92:c9:
40:8d:c3:71:6b:d1:d0:40:4e:67:2f:f7:d9:1d:e0:
22:cd:b3:ba:81:2c:b0:c4:23:56:69:56:53:d0:03:
d9:df:70:ad:ba:1c:71:b5:26:70:6d:59:49:06:0d:
e5:99:ae:10:eb:68:5c:b2:82:e0:3c:fa:c4:ec:4a:
e1:63:31:0f:bc:3f:14:f8:79:ee:4f:62:59:12:37:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:25:B0:00:0F:78:00:66:3C:CC:A0:71:23:A1:1F:26:64:F2:03:CD
X509v3 Authority Key Identifier:
keyid:D7:9C:7E:4B:AE:49:53:73:0F:E7:21:25:E9:41:90:1A:FC:59:0C:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/HaPqNfuG7XFC1UakJCfuNP9pit6zCww8pUCZnmq1j6qh/1/D79C7E4BAE4953730FE72125E941901AFC590C0B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D79C7E4BAE4953730FE72125E941901AFC590C0B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/HaPqNfuG7XFC1UakJCfuNP9pit6zCww8pUCZnmq1j6qh/1/AS11921.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.150.128.0/20
200.194.96.0/20
200.233.64.0/20
201.49.0.0/18
IPv6:
2804:1470::/32
Signature Algorithm: sha256WithRSAEncryption
64:15:88:db:86:39:22:80:83:58:45:d6:e8:18:47:66:8c:79:
29:9c:52:25:2d:da:ae:52:7b:13:10:48:e7:9d:e3:e1:76:01:
40:79:66:b3:5b:ca:0e:25:e1:9c:e7:8a:e8:65:e8:ba:f2:59:
be:6d:02:90:dc:34:fd:33:41:3f:df:94:21:89:0f:57:12:e2:
08:74:59:f0:43:05:ef:11:ba:a7:0b:67:87:bb:cb:0a:79:e8:
23:9c:16:8a:ab:a6:c9:ed:b5:e2:60:aa:a7:5c:a2:de:6c:ad:
45:70:f1:8b:0d:b7:07:3b:01:93:55:15:c2:01:13:fd:ff:5b:
c3:84:e6:92:40:b9:e2:26:03:40:21:bc:e3:63:64:1f:c4:bb:
4a:74:01:65:28:d1:11:ae:f3:bd:24:2c:a7:2c:ea:bc:e5:59:
a3:82:98:95:b6:b5:b1:3d:15:15:17:4f:fb:8d:37:ff:72:e3:
a2:2b:2f:8f:5f:ed:1c:94:36:85:68:2a:3f:a6:a1:20:99:88:
17:3c:8a:93:81:22:6f:85:1b:44:5d:5e:d0:a1:8f:6e:a8:c2:
2d:06:0d:58:30:fe:ac:f9:b8:27:90:15:5b:cf:be:ed:68:ce:
b8:73:d0:14:c4:68:c2:5c:45:91:de:10:9d:f2:22:c7:96:c9:
23:34:19:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 21:28:28 2024 by rpki-client on console-ams.rpki-client.org