Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232392e302f32342d3234203d3e203532353332.roa
File: 3230312e34392e3232392e302f32342d3234203d3e203532353332.roa (raw, json)
Hash identifier: knUiTSRCcfRqRCbS9s4HY5ek24I6rDHLbnGKEBzLO8I=
Subject key identifier: 3C:0F:B5:38:C5:B9:02:05:8C:28:DE:4C:74:2D:F4:48:0B:8E:6F:0E
Certificate issuer: /CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A
Certificate serial: 430752567C66E3E47266DD69F7E7C1C667A4F47F
Authority key identifier: 2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer
Subject info access: rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232392e302f32342d3234203d3e203532353332.roa
Signing time: Thu 08 Aug 2024 12:37:37 +0000
ROA not before: Thu 08 Aug 2024 12:32:37 +0000
ROA not after: Thu 07 Aug 2025 12:37:37 +0000
asID: 52532
IP address blocks: 201.49.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 12:58:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:07:52:56:7c:66:e3:e4:72:66:dd:69:f7:e7:c1:c6:67:a4:f4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A
Validity
Not Before: Aug 8 12:32:37 2024 GMT
Not After : Aug 7 12:37:37 2025 GMT
Subject: CN=3C0FB538C5B902058C28DE4C742DF4480B8E6F0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:94:07:20:2b:bc:8a:44:d2:b7:d5:97:94:7f:
d7:a9:02:95:c9:00:24:64:0b:fa:85:61:ff:95:9b:
95:09:b3:d2:a7:c2:3d:db:19:88:dd:86:fd:78:89:
5a:73:9f:44:14:75:55:db:72:f3:0a:c8:e0:49:c5:
34:1b:c6:5f:a6:05:33:f1:f4:2c:a8:5b:64:f5:f4:
04:a1:84:e2:0a:69:05:19:a5:a8:a2:13:c5:8b:f3:
aa:3e:69:b8:58:59:82:58:e1:30:39:57:29:e0:7a:
90:df:18:20:ea:93:20:38:41:19:78:8c:cd:de:5d:
08:ab:65:f1:31:69:0a:15:49:52:17:28:4f:13:6c:
ea:98:35:e3:8f:24:60:74:72:bb:5a:ed:c4:4b:8d:
19:76:8a:2f:17:df:32:84:da:73:1f:93:ee:21:37:
c4:a6:cb:0c:9d:bb:e7:d1:68:16:73:b4:37:f9:1e:
15:d9:0e:d5:21:dc:08:f5:5a:c1:21:dd:fb:b1:51:
9b:99:ba:c8:c4:3d:26:9e:67:9a:d0:f1:e7:29:61:
62:da:4f:23:60:0e:54:d7:74:4f:b2:60:b4:69:07:
14:1a:85:2c:77:9b:5a:ac:9b:7b:52:6a:fb:2f:7b:
40:01:2f:05:3f:78:6d:ee:d2:fc:9f:df:92:19:f2:
fa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0F:B5:38:C5:B9:02:05:8C:28:DE:4C:74:2D:F4:48:0B:8E:6F:0E
X509v3 Authority Key Identifier:
keyid:2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232392e302f32342d3234203d3e203532353332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.49.229.0/24
Signature Algorithm: sha256WithRSAEncryption
90:97:95:52:d9:d2:cf:9e:8f:a5:cc:eb:20:e6:c2:97:62:f7:
33:a1:b1:74:c8:aa:e6:13:e8:18:27:49:96:31:a4:9e:47:41:
f4:28:5d:df:f9:7e:35:73:f8:9b:29:0d:88:d4:79:92:d1:9b:
f1:8c:26:fe:8c:58:a5:c5:14:b7:13:17:44:1a:2e:b4:d4:74:
6e:00:08:f8:c9:a5:c2:9b:f5:49:0c:f7:9c:d9:7d:6d:06:b0:
aa:a3:64:0e:b7:a7:29:06:99:f8:53:1c:5b:54:77:ed:18:95:
f0:09:b8:e5:43:af:b8:1b:f4:ac:15:66:43:c8:51:e0:2d:62:
66:3b:8c:d1:0a:c3:80:f7:01:73:25:a0:a6:75:65:3a:8b:83:
34:c9:5e:2d:0a:c1:c0:38:0f:3f:eb:cb:11:e6:b5:75:bc:47:
10:4e:86:90:e7:51:e2:2e:44:cb:3a:d8:30:c8:2c:ad:23:f4:
d6:4a:73:d9:b5:1e:c6:8a:81:fa:31:25:b6:79:d1:46:b7:02:
6a:55:a6:0d:bd:13:7e:a5:e9:9b:a1:6e:3f:ae:1e:49:17:20:
48:9f:a7:75:95:7c:d7:6c:5e:05:0b:3e:fc:09:14:fb:e3:19:
4f:64:69:6f:50:4e:bd:df:dd:0c:7d:74:ef:b4:1b:e8:7a:79:
57:2a:67:a7
-----BEGIN CERTIFICATE-----
MIIFQjCCBCqgAwIBAgIUQwdSVnxm4+RyZt1p9+fBxmek9H8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJB
ODlDMkQxQTAeFw0yNDA4MDgxMjMyMzdaFw0yNTA4MDcxMjM3MzdaMDMxMTAvBgNV
BAMTKDNDMEZCNTM4QzVCOTAyMDU4QzI4REU0Qzc0MkRGNDQ4MEI4RTZGMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvlAcgK7yKRNK31ZeUf9epApXJ
ACRkC/qFYf+Vm5UJs9Knwj3bGYjdhv14iVpzn0QUdVXbcvMKyOBJxTQbxl+mBTPx
9CyoW2T19AShhOIKaQUZpaiiE8WL86o+abhYWYJY4TA5VyngepDfGCDqkyA4QRl4
jM3eXQirZfExaQoVSVIXKE8TbOqYNeOPJGB0crta7cRLjRl2ii8X3zKE2nMfk+4h
N8Smywydu+fRaBZztDf5HhXZDtUh3Aj1WsEh3fuxUZuZusjEPSaeZ5rQ8ecpYWLa
TyNgDlTXdE+yYLRpBxQahSx3m1qsm3tSavsve0ABLwU/eG3u0vyf35IZ8vpXAgMB
AAGjggJMMIICSDAdBgNVHQ4EFgQUPA+1OMW5AgWMKN5MdC30SAuObw4wHwYDVR0j
BBgwFoAULBzJQ1N+cqpZm8m5QPsYC6icLRowDgYDVR0PAQH/BAQDAgeAMIGSBgNV
HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv
cmVwby9hZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNp
LzEvMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJBODlDMkQxQS5jcmww
eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y
ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS8yQzFDQzk0MzUzN0U3MkFBNTk5
QkM5Qjk0MEZCMTgwQkE4OUMyRDFBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG
CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9h
ZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNpLzEvMzIz
MDMxMmUzNDM5MmUzMjMyMzkyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMyMzUz
MzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/
BBAwDjAMBAIAATAGAwQAyTHlMA0GCSqGSIb3DQEBCwUAA4IBAQCQl5VS2dLPno+l
zOsg5sKXYvczobF0yKrmE+gYJ0mWMaSeR0H0KF3f+X41c/ibKQ2I1HmS0ZvxjCb+
jFilxRS3ExdEGi601HRuAAj4yaXCm/VJDPec2X1tBrCqo2QOt6cpBpn4UxxbVHft
GJXwCbjlQ6+4G/SsFWZDyFHgLWJmO4zRCsOA9wFzJaCmdWU6i4M0yV4tCsHAOA8/
68sR5rV1vEcQToaQ51HiLkTLOtgwyCytI/TWSnPZtR7GioH6MSW2edFGtwJqVaYN
vRN+pemboW4/rh5JFyBIn6d1lXzXbF4FCz78CRT74xlPZGlvUE69390MfXTvtBvo
enlXKmen
-----END CERTIFICATE-----
Generated at Thu Apr 17 07:40:51 2025 by rpki-client