Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4Z98wU5i5cM97Hhi6UobPmcbdMHeXe3EWyAv4P1mZHyS/0/3230312e32302e3134342e302f32302d3234203d3e203238363035.roa
File: 3230312e32302e3134342e302f32302d3234203d3e203238363035.roa (raw, json)
Hash identifier: BApWo/oQXFvtq3eX7P5KjHy70SyHxSM+R2suLWScm1k=
Subject key identifier: 34:D8:44:9F:5F:8C:78:DE:00:C1:48:AD:19:AF:36:B0:FD:F6:0B:31
Certificate issuer: /CN=5A97D9AB7EB0B4A37A687DF48243A86F6FED596D
Certificate serial: 223DF7BC6CC2C358F4765FB01DB2581C11F7FE91
Authority key identifier: 5A:97:D9:AB:7E:B0:B4:A3:7A:68:7D:F4:82:43:A8:6F:6F:ED:59:6D
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A97D9AB7EB0B4A37A687DF48243A86F6FED596D.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4Z98wU5i5cM97Hhi6UobPmcbdMHeXe3EWyAv4P1mZHyS/0/3230312e32302e3134342e302f32302d3234203d3e203238363035.roa
Signing time: Tue 10 Mar 2026 19:30:11 +0000
ROA not before: Tue 10 Mar 2026 19:25:11 +0000
ROA not after: Tue 09 Mar 2027 19:30:11 +0000
asID: 28605
IP address blocks: 201.20.144.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:3d:f7:bc:6c:c2:c3:58:f4:76:5f:b0:1d:b2:58:1c:11:f7:fe:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A97D9AB7EB0B4A37A687DF48243A86F6FED596D
Validity
Not Before: Mar 10 19:25:11 2026 GMT
Not After : Mar 9 19:30:11 2027 GMT
Subject: CN=34D8449F5F8C78DE00C148AD19AF36B0FDF60B31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:83:01:74:5d:63:55:1b:d8:88:17:64:7e:39:
e7:6c:16:88:16:a9:6b:a2:33:7e:a4:46:e1:4a:f3:
f4:aa:20:7b:fa:f5:4c:d3:6f:a6:fb:e8:8d:d1:15:
08:61:9e:5c:89:e5:87:f7:21:9b:c8:0b:2a:c8:7f:
34:5e:00:4b:0c:67:b1:30:3c:08:56:7e:ab:51:68:
cb:67:7c:d1:6c:bc:a1:91:f4:b4:96:f1:06:f7:90:
98:44:d9:0a:8f:ec:c9:f6:32:50:84:b8:e4:8c:38:
cc:eb:12:cc:99:9b:fe:85:76:ef:64:65:eb:f0:c6:
fb:ba:9e:eb:88:8c:47:e0:24:82:81:50:28:61:1e:
47:d9:ea:c2:92:81:ea:bb:8b:82:40:c2:d7:ae:95:
a4:f6:75:58:56:9a:16:56:22:88:7f:ec:28:b9:68:
ec:33:53:9f:61:99:9a:b1:a7:e1:da:d7:a5:c1:80:
a5:1f:be:58:7c:6f:5d:f8:63:71:b2:32:f6:eb:22:
b2:d6:86:4c:80:ed:10:5f:ed:d5:a7:9e:13:4a:14:
21:ae:ee:67:fc:a7:78:bd:31:b5:ca:77:e3:49:4f:
2a:ae:f5:e3:1c:5b:16:ef:38:96:b4:04:41:7d:8f:
53:e3:e5:c4:e8:67:fd:08:56:92:61:72:59:27:a9:
aa:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D8:44:9F:5F:8C:78:DE:00:C1:48:AD:19:AF:36:B0:FD:F6:0B:31
X509v3 Authority Key Identifier:
keyid:5A:97:D9:AB:7E:B0:B4:A3:7A:68:7D:F4:82:43:A8:6F:6F:ED:59:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4Z98wU5i5cM97Hhi6UobPmcbdMHeXe3EWyAv4P1mZHyS/0/5A97D9AB7EB0B4A37A687DF48243A86F6FED596D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5A97D9AB7EB0B4A37A687DF48243A86F6FED596D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4Z98wU5i5cM97Hhi6UobPmcbdMHeXe3EWyAv4P1mZHyS/0/3230312e32302e3134342e302f32302d3234203d3e203238363035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.20.144.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:40:eb:b2:0e:ef:61:01:98:f9:b9:49:74:67:92:41:ac:86:
48:76:88:97:4c:1c:65:7f:f6:64:2a:52:87:6e:44:1f:7c:ef:
8e:37:aa:9d:2c:68:f3:3c:33:ca:6b:d8:98:d8:e2:d8:fb:b9:
4e:0a:f5:7a:0c:ab:71:33:37:94:39:29:46:61:ee:3f:6c:d8:
ca:e1:8b:5c:6c:5e:aa:9f:3d:c2:4e:64:ba:77:2e:82:10:0c:
3d:fb:be:a0:fc:b4:71:5b:c4:24:14:c0:92:1e:a3:6d:77:be:
39:bf:8e:aa:e9:1a:c0:bb:42:a2:78:dc:31:52:95:56:a3:61:
f9:53:54:28:8a:b0:e3:43:9b:68:7c:d6:ac:d6:36:84:a5:a6:
dd:bf:76:cb:4f:ac:c6:0e:03:37:17:5a:ab:40:8b:29:e4:ca:
5d:6a:41:f2:31:99:24:31:fc:fd:2a:82:fb:a9:6c:cf:bb:43:
d0:59:5d:f7:56:03:08:3e:e3:e9:ba:d7:d3:2c:1e:63:c9:c1:
f8:18:c2:a5:a8:fc:7e:45:6f:d7:79:f7:5c:8a:9c:69:64:0e:
ee:46:2a:d0:81:dd:3b:c1:1e:14:5c:8d:98:c9:7f:f2:b5:e4:
0d:03:54:e6:7a:84:7a:c8:97:fa:ab:85:e1:22:1c:d8:b8:e5:
40:99:f2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:06:13 2026 by rpki-client