Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/6tSMwGvMYudeQGttkP1cDt5DQGPrSgkBvhwYzfFwsvvD/0/323830343a316535383a3a2f33362d3336203d3e20323634343232.roa
File: 323830343a316535383a3a2f33362d3336203d3e20323634343232.roa (raw, json)
Hash identifier: SVbkn/X77VHz7HnYin56FGxwWTaNHZcExcIJBmP6axw=
Subject key identifier: 42:54:3F:E3:48:53:F5:3C:1D:21:96:C2:97:75:17:A6:43:C1:93:64
Certificate issuer: /CN=3ED997AE0EB7176CA8FB2F4D39FC6D5A97ABE41E
Certificate serial: 45BC2A67C8763C4D425AB0C17ECFDFBCA163F047
Authority key identifier: 3E:D9:97:AE:0E:B7:17:6C:A8:FB:2F:4D:39:FC:6D:5A:97:AB:E4:1E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3ED997AE0EB7176CA8FB2F4D39FC6D5A97ABE41E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/6tSMwGvMYudeQGttkP1cDt5DQGPrSgkBvhwYzfFwsvvD/0/323830343a316535383a3a2f33362d3336203d3e20323634343232.roa
Signing time: Tue 01 Jul 2025 22:46:22 +0000
ROA not before: Tue 01 Jul 2025 22:41:22 +0000
ROA not after: Tue 30 Jun 2026 22:46:22 +0000
asID: 264422
IP address blocks: 2804:1e58::/36 maxlen: 36
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:bc:2a:67:c8:76:3c:4d:42:5a:b0:c1:7e:cf:df:bc:a1:63:f0:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ED997AE0EB7176CA8FB2F4D39FC6D5A97ABE41E
Validity
Not Before: Jul 1 22:41:22 2025 GMT
Not After : Jun 30 22:46:22 2026 GMT
Subject: CN=42543FE34853F53C1D2196C2977517A643C19364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:65:50:3a:98:fa:22:66:40:da:e3:83:8a:d3:
a0:f8:71:59:2d:e6:4f:94:6d:79:ee:bd:d9:2c:04:
9d:41:03:50:1a:7a:e1:90:4c:97:d6:66:6d:e8:0c:
c8:aa:76:4e:11:6d:dc:40:97:37:b0:3e:6f:cc:bd:
4e:1e:1d:a1:96:30:96:17:95:c8:47:1b:f9:81:75:
81:ac:db:47:25:69:58:00:4c:f4:a2:0d:65:e6:e4:
1b:d6:34:de:61:4b:ee:d1:ef:7a:51:78:83:23:0a:
64:5a:24:b7:26:69:d8:e2:f8:1f:9c:72:68:89:0e:
c1:46:ff:2c:1c:8b:f7:5e:5c:5a:96:98:de:9c:d0:
8f:a5:3f:4a:8d:45:50:c4:dc:fc:87:b8:21:2d:c9:
c2:27:c7:cc:2e:25:b2:d0:3c:e0:1c:c1:a0:ea:82:
46:db:41:16:00:3a:aa:2d:78:8f:e4:e9:6e:7a:b6:
ac:79:4b:ee:e6:69:1c:8c:f6:cb:e4:4e:d5:89:db:
ab:0a:48:a6:64:5f:9d:ea:4e:0e:47:cd:d9:c1:7a:
8c:82:9c:6d:20:3a:8a:9b:37:fc:a2:76:d2:0c:6e:
fd:a7:3a:1e:2d:e5:cc:96:c4:bd:1a:de:3a:4b:c9:
d5:d8:92:d3:f6:a7:89:5e:f0:18:03:90:58:2f:3f:
4a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:54:3F:E3:48:53:F5:3C:1D:21:96:C2:97:75:17:A6:43:C1:93:64
X509v3 Authority Key Identifier:
keyid:3E:D9:97:AE:0E:B7:17:6C:A8:FB:2F:4D:39:FC:6D:5A:97:AB:E4:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/6tSMwGvMYudeQGttkP1cDt5DQGPrSgkBvhwYzfFwsvvD/0/3ED997AE0EB7176CA8FB2F4D39FC6D5A97ABE41E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3ED997AE0EB7176CA8FB2F4D39FC6D5A97ABE41E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/6tSMwGvMYudeQGttkP1cDt5DQGPrSgkBvhwYzfFwsvvD/0/323830343a316535383a3a2f33362d3336203d3e20323634343232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:1e58::/36
Signature Algorithm: sha256WithRSAEncryption
d0:5e:05:c7:d6:b8:5e:c2:17:84:a7:ad:f9:6d:83:90:ac:9a:
d3:54:ee:17:10:2f:43:04:a5:f9:68:1c:d2:32:41:20:56:b0:
d7:e9:74:12:70:ba:6b:9c:19:54:99:57:07:85:39:ce:93:12:
d7:4c:3b:3f:d6:8a:4d:46:f0:94:46:61:13:10:31:d1:a0:26:
ea:2b:a4:08:06:96:86:2f:5d:3d:76:3d:1f:cc:5a:74:87:e9:
68:bb:6a:24:b9:bd:c6:28:da:e3:5e:6a:e8:7b:a9:41:82:1c:
5b:5b:bd:92:06:1d:86:c7:fa:5e:58:08:e9:27:e2:70:2e:eb:
e8:be:aa:3b:49:a3:2b:25:52:89:93:c2:1e:1d:c8:64:18:3d:
82:53:50:69:60:24:fb:36:df:bd:a9:15:01:09:a7:d2:ca:a3:
dc:d5:dc:06:d3:c6:0c:13:e5:76:a8:e8:db:80:3c:c0:08:dd:
87:b4:fe:05:e8:6b:aa:b0:e0:f4:5a:12:0c:1b:0e:85:b7:27:
48:6e:e5:6f:2a:bd:8f:2a:b7:95:f7:1e:6c:4a:56:f3:b7:97:
b8:2e:4e:83:47:0f:ac:19:b6:0a:a4:b3:f3:fb:29:96:c2:db:
f5:d6:87:17:cf:12:b4:84:bb:f6:98:81:23:16:2d:d8:3f:f0:
d2:23:33:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:09:55 2025 by rpki-client