Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133392e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3133392e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: WIxKVCnMoWa59PbxBlQPL482Kv22PvIWGjxZpStkj6M=
Subject key identifier: 64:11:85:E5:F0:2E:28:12:6D:D9:EE:83:5A:AA:3F:DC:53:88:A3:1B
Certificate issuer: /CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Certificate serial: 099C4461576B57C9B874E0CCBE53674E2B2D81E6
Authority key identifier: 0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133392e302f32342d3234203d3e20323633353834.roa
Signing time: Fri 13 Jun 2025 03:14:09 +0000
ROA not before: Fri 13 Jun 2025 03:09:09 +0000
ROA not after: Fri 12 Jun 2026 03:14:09 +0000
asID: 263584
IP address blocks: 177.129.139.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:9c:44:61:57:6b:57:c9:b8:74:e0:cc:be:53:67:4e:2b:2d:81:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Validity
Not Before: Jun 13 03:09:09 2025 GMT
Not After : Jun 12 03:14:09 2026 GMT
Subject: CN=641185E5F02E28126DD9EE835AAA3FDC5388A31B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:a8:35:3a:29:21:2d:36:be:19:28:d9:2d:
68:1e:8b:e2:2b:c8:b2:8a:d2:47:9f:27:d2:d9:b2:
54:7c:e6:87:c4:8c:af:be:79:f2:16:06:1a:be:cf:
91:82:aa:3d:84:c1:e5:18:fa:07:8a:3a:1a:d9:80:
8d:b9:e2:11:23:30:8a:b0:1e:bf:ca:73:d7:27:ef:
fc:92:8b:17:a6:04:2f:b6:c4:70:87:75:93:75:15:
85:ca:5f:2c:03:94:c7:61:24:82:0d:18:c7:55:7a:
ea:38:08:5e:dc:98:f5:09:94:66:8c:cc:13:18:18:
a7:2b:2c:2b:99:88:56:3f:54:36:c7:88:00:5f:06:
da:f1:01:cb:09:17:80:ab:96:2e:eb:ae:fc:85:a8:
65:01:eb:6c:86:f8:19:c2:e8:c6:d6:4c:1d:e2:73:
6f:0b:2c:9d:b4:af:66:ab:c2:1e:31:8c:64:68:69:
3f:17:c0:f4:3b:7c:b1:d0:3d:f9:1f:ed:84:25:92:
c9:66:03:de:0c:10:2d:71:de:d3:87:f7:b5:8e:cb:
4b:c5:af:e1:76:6c:c7:5b:c2:e9:8a:27:8e:72:77:
b8:d9:31:44:18:c2:e6:e4:d2:9b:92:75:5b:b9:bf:
65:21:1a:ba:85:96:a2:4e:86:da:25:44:68:7f:eb:
c3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:11:85:E5:F0:2E:28:12:6D:D9:EE:83:5A:AA:3F:DC:53:88:A3:1B
X509v3 Authority Key Identifier:
keyid:0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/0CA968287B9271A9974F582D45CD23848B33CFFD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3133392e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.139.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ab:0e:c4:80:05:84:fa:69:9a:ba:b5:af:e4:5b:d1:e5:6a:
96:e9:aa:04:b7:74:03:05:d2:6f:77:e0:21:12:a6:a8:27:44:
25:99:26:69:e4:83:a1:f0:4a:9d:02:50:40:34:85:51:0b:95:
94:91:0e:24:00:49:a2:12:bb:39:dc:2e:8a:e5:1f:cc:be:e6:
c7:0d:b8:b9:d5:30:d7:aa:1b:63:d2:24:6a:69:48:ff:97:9f:
e4:57:4a:08:4f:17:7a:38:e1:22:6f:58:06:4f:b5:fa:f0:19:
e8:f5:0f:9f:e8:1f:45:fd:7c:ab:51:aa:27:05:52:e1:4c:f4:
48:88:6a:ec:ef:44:f1:5f:e9:b9:e3:5a:c8:38:de:5a:eb:d0:
d8:7c:2d:b2:1e:f9:6b:29:fb:37:d0:18:ed:bc:b4:cf:11:56:
27:9a:3b:98:98:d4:50:cf:0e:1a:a4:b5:58:3d:b9:48:d1:58:
1d:04:9f:e2:e4:bb:5b:ea:e8:9b:b9:04:d3:b9:e3:de:c3:68:
23:f5:f2:cf:03:c1:1c:64:cb:67:37:f2:cc:89:91:98:09:1e:
50:d5:d9:9c:a1:88:f0:81:47:35:5a:7a:0b:ad:d2:76:d0:90:
8e:66:09:1f:fd:6b:81:f9:c6:67:71:2e:9d:0f:61:00:29:c9:
44:29:65:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 02:04:51 2025 by rpki-client