Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: x+J4OJo3G7gX36SOxQln0AJFsLkk/yt7mczoV40hBTk=
Subject key identifier: 4E:2D:A5:F9:E8:97:39:69:F5:93:65:66:A7:D4:43:B9:F4:BC:DE:1E
Certificate issuer: /CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Certificate serial: 0316566420C63551FDB81538A9BA8EA06B1C891D
Authority key identifier: 0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
Signing time: Fri 13 Jun 2025 03:13:56 +0000
ROA not before: Fri 13 Jun 2025 03:08:56 +0000
ROA not after: Fri 12 Jun 2026 03:13:56 +0000
asID: 263584
IP address blocks: 177.129.136.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:16:56:64:20:c6:35:51:fd:b8:15:38:a9:ba:8e:a0:6b:1c:89:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Validity
Not Before: Jun 13 03:08:56 2025 GMT
Not After : Jun 12 03:13:56 2026 GMT
Subject: CN=4E2DA5F9E8973969F5936566A7D443B9F4BCDE1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:35:52:c0:b2:a1:81:75:9b:9f:85:d0:32:1c:
01:d7:95:8b:42:c0:63:6f:7b:8b:73:5a:ef:5c:ff:
f1:66:62:a3:cf:fd:1e:93:0a:14:b5:06:70:a4:f0:
9e:1b:49:27:81:03:7e:78:0a:0d:7e:3d:75:af:c2:
4f:bd:70:63:72:b1:8b:0f:92:4b:07:5c:70:ff:db:
bf:02:f7:cc:75:64:8f:63:14:b8:b4:53:e0:9a:ee:
57:8c:20:6d:29:41:bc:aa:4e:61:3f:ac:16:f4:da:
64:01:a8:20:70:03:63:2e:df:d5:7d:28:83:66:64:
d6:ee:4e:3d:8c:a2:8a:77:51:c0:91:9b:7d:eb:bf:
d6:24:43:70:58:f3:0f:1b:b6:5f:c2:f9:ce:00:73:
14:ec:60:13:80:2f:db:fe:f1:08:11:5d:77:e9:96:
84:c8:ac:23:e5:85:02:3a:88:73:1e:e3:3a:a4:58:
60:b2:10:95:f1:fc:39:4e:15:69:4c:f9:a2:fa:5d:
ca:6c:7f:e5:7d:bf:57:48:e1:cc:39:d1:27:80:60:
ba:ec:aa:e2:8e:1a:d3:e6:28:14:f9:e9:9f:9c:9d:
8c:dc:52:0d:4b:06:72:15:a5:e0:04:38:70:f4:04:
54:de:8b:21:19:8a:a7:a2:f2:ca:a0:6d:8b:97:51:
34:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:A5:F9:E8:97:39:69:F5:93:65:66:A7:D4:43:B9:F4:BC:DE:1E
X509v3 Authority Key Identifier:
keyid:0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/0CA968287B9271A9974F582D45CD23848B33CFFD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133362e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.136.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ff:c1:5d:f3:4d:b6:c5:b3:d8:da:12:2d:d4:f5:b0:57:e5:
84:11:d4:84:33:a8:5b:ab:4e:d0:e8:bd:f7:3b:ee:f8:a6:4a:
21:8b:32:e5:ba:1c:cb:ea:85:e9:d3:e5:6b:c7:c1:16:ac:58:
34:95:79:a7:1b:ac:2d:67:9b:cb:c4:c6:27:c4:4d:19:c3:54:
f2:c4:cd:84:8e:63:60:d1:fe:23:ac:81:ca:ab:26:61:4f:0a:
a3:a3:62:01:56:ce:2e:21:cb:3d:3d:79:78:3d:35:69:f3:3d:
bb:3a:c6:4a:6c:a0:71:d2:a2:2a:4e:f2:c9:ab:86:91:b4:4b:
b0:4f:dd:31:97:96:9e:93:c1:36:4b:d4:92:b0:15:0f:43:a6:
ac:f8:1d:b8:27:d6:27:db:ac:83:18:03:c6:a6:2a:09:e3:ef:
24:c6:69:b6:a7:fd:29:e9:0f:98:88:58:4b:38:14:14:80:22:
0e:e7:17:d8:2e:50:76:c7:3e:5a:06:4e:a1:e2:58:2f:26:b4:
15:48:13:ef:23:a1:b6:73:f2:95:ca:1c:d6:84:ef:c8:95:66:
6e:1d:01:c4:02:0f:01:1e:98:95:4c:c3:db:14:10:a5:73:0f:
c9:2f:18:79:fb:ac:62:d8:95:bf:5e:8f:95:c0:fe:7f:0c:24:
a1:ac:23:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:26:51 2025 by rpki-client