Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
File: 323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa (raw, json)
Hash identifier: rt/dVvOcTxvTqTcSRlcz0YXJ8g51puBZ7k2rxHrfUGU=
Subject key identifier: F0:83:B0:DF:1A:8D:F1:0A:C9:ED:BE:E1:B3:94:82:37:EF:9F:46:4D
Certificate issuer: /CN=976D8A1BE7F7639985F6A8FAE6D3E9387646F1A5
Certificate serial: 6367126230608025D28A53464DF93D0E925F88E3
Authority key identifier: 97:6D:8A:1B:E7:F7:63:99:85:F6:A8:FA:E6:D3:E9:38:76:46:F1:A5
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/976D8A1BE7F7639985F6A8FAE6D3E9387646F1A5.cer
Subject info access: rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
Signing time: Tue 29 Oct 2024 15:26:23 +0000
ROA not before: Tue 29 Oct 2024 15:21:23 +0000
ROA not after: Tue 28 Oct 2025 15:26:23 +0000
asID: 273728
IP address blocks: 2804:8b5c:8000::/33 maxlen: 33
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:67:12:62:30:60:80:25:d2:8a:53:46:4d:f9:3d:0e:92:5f:88:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=976D8A1BE7F7639985F6A8FAE6D3E9387646F1A5
Validity
Not Before: Oct 29 15:21:23 2024 GMT
Not After : Oct 28 15:26:23 2025 GMT
Subject: CN=F083B0DF1A8DF10AC9EDBEE1B3948237EF9F464D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7a:cd:bd:2b:1b:ec:a2:23:02:40:1d:5f:56:
d9:40:47:3d:b5:8c:eb:ca:17:fc:9b:af:93:a2:5f:
f6:21:28:38:f8:b2:3f:cc:8e:50:8c:93:dc:b9:b9:
fd:be:9e:dd:9f:0a:49:f5:31:93:d5:da:ca:9d:00:
21:1d:9e:60:fd:3b:ca:f2:7d:c2:05:ab:13:5b:59:
37:f5:3a:57:9b:20:5b:81:9f:93:f8:df:b0:ec:ae:
b7:5e:53:fb:68:34:e4:21:7a:62:35:13:e8:af:d1:
7f:d7:ab:cb:68:bf:93:91:d0:38:ee:9b:14:65:6b:
a6:79:76:e2:95:cd:98:2d:07:30:c0:52:31:f9:8b:
37:d5:62:94:12:f7:0a:8b:92:03:db:0c:5b:79:6a:
2e:d6:91:e4:7d:6d:72:04:63:cc:e9:44:62:d3:0f:
bd:49:ce:d7:d0:e5:d7:a6:dc:d0:5d:a0:32:53:4c:
f5:5b:41:14:b3:b2:80:02:3c:c0:26:23:a1:ab:f1:
2e:2f:12:6c:24:3f:75:9d:97:c0:3e:81:f4:0a:6b:
82:0f:ac:0c:ba:4c:9d:db:ef:1c:03:36:03:72:a1:
a6:b1:f3:39:60:31:f9:8f:c3:46:11:ea:1b:96:9b:
44:9a:39:91:54:c0:2d:96:71:7b:7f:e5:37:a0:e9:
bf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:83:B0:DF:1A:8D:F1:0A:C9:ED:BE:E1:B3:94:82:37:EF:9F:46:4D
X509v3 Authority Key Identifier:
keyid:97:6D:8A:1B:E7:F7:63:99:85:F6:A8:FA:E6:D3:E9:38:76:46:F1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/976D8A1BE7F7639985F6A8FAE6D3E9387646F1A5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/976D8A1BE7F7639985F6A8FAE6D3E9387646F1A5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/JCgoiV1Jo7sCojjmsnHd41irbXFwQhrhh8wv3PUHjQZo/0/323830343a386235633a383030303a3a2f33332d3333203d3e20323733373238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:8b5c:8000::/33
Signature Algorithm: sha256WithRSAEncryption
71:7d:2a:83:26:1e:00:8e:50:bd:bd:43:af:df:36:ad:37:ae:
ce:8d:64:11:0b:95:e2:62:e7:4a:da:be:8a:96:96:f6:fc:d2:
31:a2:6d:fa:76:bb:68:a5:2e:92:ed:fd:8c:27:f1:be:7f:6a:
e4:32:4e:0d:72:48:7a:d3:95:f5:92:77:14:25:7d:c4:c9:b1:
1c:3d:84:80:dc:36:51:a5:3e:40:c5:cc:96:a0:8d:b2:73:9b:
b6:85:45:bf:4f:2e:2c:60:90:f8:7a:9a:ec:64:27:0f:a3:6e:
2d:fb:3e:9d:9b:9b:5f:5c:95:dd:90:f8:a5:ed:b3:3b:78:cb:
1b:c0:e3:2b:a8:83:e0:a0:96:34:ce:67:37:66:a6:77:5a:ef:
38:ef:ac:22:26:1a:e1:4c:53:16:dd:f1:2c:d6:21:33:c9:2e:
be:96:13:72:cd:b6:09:49:c4:5a:b8:d8:ad:10:76:75:24:0d:
7d:b3:62:f1:8a:b6:17:86:8a:ca:8c:df:3b:f8:e7:df:fb:73:
21:39:74:fe:01:c8:fd:32:9a:7a:41:20:ba:f8:b3:8c:1c:e5:
fd:d1:cf:85:b7:56:76:ae:f0:35:02:76:f8:56:00:33:7f:d3:
c3:ba:9e:14:43:a7:b7:61:1d:6c:cd:90:c3:1b:92:fc:34:2c:
4e:52:0a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 13:17:34 2024 by rpki-client on console-fra.rpki-client.org