Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/XWWV878AXX23G99pEXbrrnADvVAaxJMuKmoiUhDLxvH/0/3138392e31342e3230342e302f32322d3232203d3e203238333238.roa
File:                     3138392e31342e3230342e302f32322d3232203d3e203238333238.roa (raw, json)
Hash identifier:          g403Yy61S6X91B4S9DZGQlOo5nbvmThzJvRzWnjPA7M=
Subject key identifier:   64:38:A7:48:31:F4:FA:D1:91:4C:47:62:67:2E:FD:FE:94:70:D3:B9
Certificate issuer:       /CN=5B2D2DF0A92DA3733DD7225515A63E3D6BF65785
Certificate serial:       54C59543C65674CC3EE0BE5950DC0A8FA22995D5
Authority key identifier: 5B:2D:2D:F0:A9:2D:A3:73:3D:D7:22:55:15:A6:3E:3D:6B:F6:57:85
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B2D2DF0A92DA3733DD7225515A63E3D6BF65785.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/XWWV878AXX23G99pEXbrrnADvVAaxJMuKmoiUhDLxvH/0/3138392e31342e3230342e302f32322d3232203d3e203238333238.roa
Signing time:             Fri 26 Apr 2024 16:55:52 +0000
ROA not before:           Fri 26 Apr 2024 16:50:52 +0000
ROA not after:            Fri 25 Apr 2025 16:55:52 +0000
asID:                     28328
IP address blocks:        189.14.204.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Mon 29 Jul 2024 12:21:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:c5:95:43:c6:56:74:cc:3e:e0:be:59:50:dc:0a:8f:a2:29:95:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5B2D2DF0A92DA3733DD7225515A63E3D6BF65785
        Validity
            Not Before: Apr 26 16:50:52 2024 GMT
            Not After : Apr 25 16:55:52 2025 GMT
        Subject: CN=6438A74831F4FAD1914C4762672EFDFE9470D3B9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:32:57:a4:d4:c8:e2:66:0f:bc:16:36:0a:fe:
                    07:c8:69:cc:f9:0e:b9:de:76:e6:cf:1e:77:b3:2b:
                    78:18:40:47:6c:3a:3a:55:ae:08:7a:78:31:cd:e4:
                    f4:d0:0a:55:98:28:65:c8:c3:fb:7e:d3:f8:c4:85:
                    f8:10:29:c2:44:52:df:68:d0:42:cb:12:ed:5c:61:
                    04:5e:16:e1:f4:a6:f3:70:3d:95:b7:51:91:2c:57:
                    ab:43:61:2c:82:91:c4:20:4d:69:20:bc:dc:06:14:
                    9d:91:1f:bf:3c:3f:95:32:c1:cc:79:ac:36:67:27:
                    89:b3:7d:bb:d4:4e:56:48:a9:48:0a:a7:1e:9b:3c:
                    f5:ed:a1:b1:50:b0:9e:4f:ad:db:7e:88:59:b3:89:
                    85:24:ad:e2:ce:42:77:0f:b7:77:66:d1:36:34:4a:
                    fc:3d:64:1b:44:5f:c2:ac:13:7b:42:b6:dd:86:62:
                    25:e8:dd:ef:09:8e:20:ab:fe:c3:48:a0:d3:e2:79:
                    38:3c:1a:9e:50:f8:fd:2f:2d:ce:2c:47:17:0e:db:
                    44:70:75:34:93:10:ce:bc:5d:9b:85:4e:bd:af:19:
                    49:5b:39:35:91:b6:d9:af:42:88:dd:c4:10:53:53:
                    8f:f1:4a:5c:be:65:f1:83:db:87:d6:8e:a9:f1:ec:
                    33:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:38:A7:48:31:F4:FA:D1:91:4C:47:62:67:2E:FD:FE:94:70:D3:B9
            X509v3 Authority Key Identifier:
                keyid:5B:2D:2D:F0:A9:2D:A3:73:3D:D7:22:55:15:A6:3E:3D:6B:F6:57:85

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/XWWV878AXX23G99pEXbrrnADvVAaxJMuKmoiUhDLxvH/0/5B2D2DF0A92DA3733DD7225515A63E3D6BF65785.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5B2D2DF0A92DA3733DD7225515A63E3D6BF65785.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/XWWV878AXX23G99pEXbrrnADvVAaxJMuKmoiUhDLxvH/0/3138392e31342e3230342e302f32322d3232203d3e203238333238.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  189.14.204.0/22

    Signature Algorithm: sha256WithRSAEncryption
         aa:98:ee:aa:f4:f1:19:08:2f:d7:61:41:f2:49:97:56:aa:49:
         34:f4:3f:0a:54:80:29:fb:cd:65:01:aa:2f:62:8c:86:ef:3f:
         1a:ee:02:06:7c:88:69:f9:6d:e9:e4:2e:38:ad:d8:b4:9a:f7:
         d3:8e:43:7b:2d:85:be:df:88:3e:57:04:da:70:c6:9e:e9:72:
         d8:d4:a6:2f:ec:a9:3f:0c:e5:84:39:e0:62:dc:05:38:94:8b:
         b0:95:ef:78:08:14:d3:88:b3:28:5d:f9:52:b5:e9:fb:0d:2a:
         91:5f:42:a2:30:8e:96:73:4c:d7:ad:85:84:24:07:28:32:7f:
         95:55:0c:9a:f1:39:4c:99:e2:36:b1:de:7b:82:2b:be:e7:9d:
         40:51:71:b8:5c:3d:43:cf:4f:2b:7f:29:59:bb:89:d7:d2:f1:
         65:a4:b6:d1:1d:22:e7:08:43:d1:4a:eb:76:06:cb:2c:77:90:
         95:b9:7b:b8:c7:8b:82:b3:a5:75:c3:e4:da:36:a1:2f:92:1d:
         8a:56:d3:e9:1a:15:ab:6f:ed:d8:de:93:bf:35:9d:d3:af:59:
         40:a8:2c:8c:4a:b8:fb:07:1c:bb:40:83:b1:62:c7:c4:ed:67:
         04:f2:1f:2c:ff:52:ce:88:46:90:db:29:b1:b5:02:e9:e0:59:
         33:68:e7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 14:18:38 2024 by rpki-client on console-ams.rpki-client.org