Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/guR79uiqD6mmuy7SaZKHUPGXGdVfAYV2LEbf64KaS2y/1/34352e37302e3131342e302f32332d3234203d3e20323637353631.roa
File: 34352e37302e3131342e302f32332d3234203d3e20323637353631.roa (raw, json)
Hash identifier: vGtp920jpWbqeoS9VLpwnkivLxxMxm8+ZUL8P4dqep4=
Subject key identifier: 89:A9:80:1E:CF:8E:64:92:8C:5C:38:95:8A:EB:33:01:F8:31:B8:C0
Certificate issuer: /CN=95E83C1EC29F8251CA035F581B61B808604EC59D
Certificate serial: 36D195B3CC33C5D89C0156FC95107F7601C2FDEA
Authority key identifier: 95:E8:3C:1E:C2:9F:82:51:CA:03:5F:58:1B:61:B8:08:60:4E:C5:9D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/95E83C1EC29F8251CA035F581B61B808604EC59D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/guR79uiqD6mmuy7SaZKHUPGXGdVfAYV2LEbf64KaS2y/1/34352e37302e3131342e302f32332d3234203d3e20323637353631.roa
Signing time: Thu 06 Mar 2025 13:59:40 +0000
ROA not before: Thu 06 Mar 2025 13:54:40 +0000
ROA not after: Thu 05 Mar 2026 13:59:40 +0000
asID: 267561
IP address blocks: 45.70.114.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Mar 2025 13:40:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:d1:95:b3:cc:33:c5:d8:9c:01:56:fc:95:10:7f:76:01:c2:fd:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95E83C1EC29F8251CA035F581B61B808604EC59D
Validity
Not Before: Mar 6 13:54:40 2025 GMT
Not After : Mar 5 13:59:40 2026 GMT
Subject: CN=89A9801ECF8E64928C5C38958AEB3301F831B8C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0f:0a:7d:19:6e:57:be:64:25:ea:da:1f:22:
e6:64:71:ab:65:8d:63:1c:1e:68:57:12:4e:e1:89:
d6:b4:c2:3c:ad:72:da:d5:eb:b9:1e:4f:93:54:52:
f9:41:a7:3a:0f:8d:10:99:4b:37:9a:08:43:50:73:
eb:4c:ee:08:6f:86:80:34:f1:49:4e:02:4c:4d:e6:
1c:f1:12:6e:70:25:c4:9b:03:47:27:8a:df:b5:09:
e1:7e:13:83:52:68:b9:8e:13:c7:e2:49:e4:61:9c:
fa:ee:d5:ce:0c:95:d8:27:69:d2:4f:e2:fc:a7:6d:
a8:65:c1:e6:ed:57:44:57:00:81:65:a9:f2:da:99:
51:a4:72:ca:ed:50:7f:0a:32:88:10:b9:01:55:99:
e6:96:41:e1:cd:52:46:e7:41:6e:44:8f:37:34:08:
32:b1:da:01:15:c8:3b:1d:32:72:61:6e:64:ae:74:
0e:08:bc:8d:4e:00:29:5b:28:25:82:47:0a:39:c3:
20:32:4e:17:43:91:3b:43:1c:59:8e:5d:27:96:9b:
67:1f:dd:29:a4:b1:dc:fb:43:ed:f8:4f:ff:9c:e3:
08:f7:88:b9:e3:64:bc:f4:82:01:b5:dd:e6:0d:54:
de:df:fb:1b:90:ae:fd:44:a9:34:6d:66:4c:ec:ba:
64:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A9:80:1E:CF:8E:64:92:8C:5C:38:95:8A:EB:33:01:F8:31:B8:C0
X509v3 Authority Key Identifier:
keyid:95:E8:3C:1E:C2:9F:82:51:CA:03:5F:58:1B:61:B8:08:60:4E:C5:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/guR79uiqD6mmuy7SaZKHUPGXGdVfAYV2LEbf64KaS2y/1/95E83C1EC29F8251CA035F581B61B808604EC59D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/95E83C1EC29F8251CA035F581B61B808604EC59D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/guR79uiqD6mmuy7SaZKHUPGXGdVfAYV2LEbf64KaS2y/1/34352e37302e3131342e302f32332d3234203d3e20323637353631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.114.0/23
Signature Algorithm: sha256WithRSAEncryption
58:2a:6c:43:4f:ed:0e:7a:b2:c1:5c:e2:b4:97:3d:9d:75:f5:
d5:b3:b6:b3:b2:83:c2:90:87:2d:05:2c:56:1a:40:78:8f:03:
ed:54:df:51:c6:9b:2c:c3:c4:dd:92:ab:f2:fa:83:c1:0a:48:
45:32:97:bc:45:7c:42:c3:21:c9:dc:d5:12:36:15:bf:d0:8d:
d6:3a:d3:e9:b4:76:90:78:4e:2a:29:e6:d3:73:c9:84:56:90:
fb:51:b0:0f:65:c1:8e:96:f4:34:01:cf:ad:ab:9d:2c:99:03:
f6:aa:c2:d1:35:d1:aa:a2:3b:ff:9b:1c:9a:9c:cf:95:77:1e:
d8:90:71:cd:42:c2:b1:5c:d9:01:91:92:9a:09:fe:de:39:15:
1f:88:58:5e:72:e2:6d:9e:68:55:34:a0:36:51:1a:a9:62:58:
60:cd:d7:ac:8f:83:02:e3:31:ae:b6:71:94:05:5d:c2:1e:08:
40:b9:f3:e5:c3:d2:fa:67:bd:c5:33:23:a8:23:14:23:db:ac:
45:c2:a1:1b:89:23:15:55:de:38:03:a7:bd:bd:9c:e7:81:b1:
43:cb:dd:5d:d6:a7:bd:3c:51:74:cf:58:ee:cb:25:08:18:1d:
72:80:d5:2a:0b:ab:f3:a6:51:43:d5:c1:db:db:32:42:73:9c:
a9:20:9e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 14:08:09 2025 by rpki-client