Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
File: 34352e3233312e32382e302f32322d3332203d3e20323637313838.roa (raw, json)
Hash identifier: z1ZOrBM79InvSD1qku9+It/72JAnnGj4yZiBph4YUnc=
Subject key identifier: 9D:F0:87:F5:EB:5C:95:6F:7E:FC:02:EC:79:2B:2B:A7:48:E3:CD:34
Certificate issuer: /CN=2F091BDECAE31B7B9E26B8A182F37081E1F1F4CA
Certificate serial: 517A9CCD49108977874DA15B058D174816863A2A
Authority key identifier: 2F:09:1B:DE:CA:E3:1B:7B:9E:26:B8:A1:82:F3:70:81:E1:F1:F4:CA
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2F091BDECAE31B7B9E26B8A182F37081E1F1F4CA.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
Signing time: Tue 22 Jul 2025 20:46:05 +0000
ROA not before: Tue 22 Jul 2025 20:41:05 +0000
ROA not after: Tue 21 Jul 2026 20:46:05 +0000
asID: 267188
IP address blocks: 45.231.28.0/22 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:7a:9c:cd:49:10:89:77:87:4d:a1:5b:05:8d:17:48:16:86:3a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F091BDECAE31B7B9E26B8A182F37081E1F1F4CA
Validity
Not Before: Jul 22 20:41:05 2025 GMT
Not After : Jul 21 20:46:05 2026 GMT
Subject: CN=9DF087F5EB5C956F7EFC02EC792B2BA748E3CD34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:81:8b:02:7d:9e:e6:0f:25:25:9c:d2:1b:3a:
ed:97:ee:f1:bd:9c:ae:77:5c:bf:da:39:e6:13:43:
66:cd:c4:a6:02:7f:08:a4:b8:bb:b5:85:7b:0d:21:
99:e6:37:3a:de:b0:08:38:74:eb:34:80:66:32:51:
9b:8c:88:97:e6:1d:0d:27:ae:55:54:29:32:74:47:
35:60:0b:38:f8:34:97:c0:12:46:aa:f2:0e:68:af:
09:7a:d3:97:0f:17:a8:bc:16:b5:7e:c4:f1:3f:44:
7a:d8:f8:21:b9:a8:71:4d:d0:7e:4f:07:ff:61:1f:
9e:55:15:99:9c:63:cd:bb:f7:5a:08:ba:1f:48:5a:
28:15:ed:7b:01:7c:16:1d:df:ff:ed:ce:b2:30:36:
79:47:16:5e:b9:9a:36:7b:85:d1:6e:ed:2e:fd:86:
36:d0:44:a6:b2:b1:7c:47:d4:cd:a6:d8:72:81:26:
c6:50:93:b8:62:f9:a9:8a:d5:3e:9c:11:a3:c9:99:
52:20:36:61:9c:9e:f1:98:99:46:2c:66:97:cf:5b:
d4:fd:f3:7b:1b:80:8b:ca:dd:c3:8b:c3:f7:53:f3:
23:32:a0:25:5c:e5:84:0e:6e:05:38:76:af:c5:fb:
03:46:53:d0:c9:1b:79:e5:8f:96:07:38:5a:3f:38:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F0:87:F5:EB:5C:95:6F:7E:FC:02:EC:79:2B:2B:A7:48:E3:CD:34
X509v3 Authority Key Identifier:
keyid:2F:09:1B:DE:CA:E3:1B:7B:9E:26:B8:A1:82:F3:70:81:E1:F1:F4:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/2F091BDECAE31B7B9E26B8A182F37081E1F1F4CA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2F091BDECAE31B7B9E26B8A182F37081E1F1F4CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6Ua5xWesRSiX4ui7G6jmoYgH6BarDj8zzuQ3JrgyPwTh/0/34352e3233312e32382e302f32322d3332203d3e20323637313838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.231.28.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:98:9c:1a:e6:1d:fb:79:fc:20:22:1b:0f:a3:47:79:ce:be:
3e:73:a9:35:0d:85:45:56:41:4c:ce:65:dd:64:ec:73:75:8f:
a7:17:3b:46:f5:c8:a6:99:cd:2e:4e:b7:db:1f:c4:1e:0a:e8:
e6:c4:68:f7:d3:d1:83:d8:56:61:11:9f:b0:35:f9:e6:fb:89:
f7:ea:b8:14:5f:c6:b0:fc:3b:38:13:db:78:6c:ea:f3:98:c5:
3e:d3:13:3d:5e:8e:30:f8:78:b4:5b:ac:f1:91:75:88:8e:71:
01:e3:04:2a:94:60:1e:66:fb:f5:38:d5:0f:72:ee:13:8e:c0:
d2:f7:cf:c2:a3:68:6c:fd:b0:2c:b1:56:97:6d:24:41:94:2a:
05:37:f9:35:b5:b2:00:35:49:7a:ee:c0:bb:9e:4d:23:04:26:
1a:2e:8f:7a:dc:7b:35:d2:56:66:3c:2a:c8:a7:04:b4:97:89:
76:49:12:11:f9:1d:a1:4b:9b:99:e1:3c:51:34:d9:74:bf:5a:
b1:21:4a:13:f1:1b:49:fa:a3:c7:57:56:67:4f:a6:13:39:ed:
a1:f5:df:f9:6b:67:0b:37:d2:1e:b5:ac:22:34:64:52:3a:88:
b2:70:5b:82:a3:6d:f5:0a:d0:1d:1a:ce:57:30:32:9c:aa:a9:
82:e1:dc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:03:20 2025 by rpki-client