Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: 7LfVD4pyw7rLNrpgExgDYUomnDg8DdU3Pa/CPW1I6XA=
Subject key identifier: 1D:B7:0C:D1:B1:F1:53:0E:0A:B0:40:9D:20:65:BB:8D:0C:1A:EB:C3
Certificate issuer: /CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Certificate serial: 760D7B1FB85E67D1F58A4DEE680A1F7AD59499D2
Authority key identifier: 0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa
Signing time: Fri 13 Jun 2025 03:14:13 +0000
ROA not before: Fri 13 Jun 2025 03:09:13 +0000
ROA not after: Fri 12 Jun 2026 03:14:13 +0000
asID: 263584
IP address blocks: 177.129.140.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:0d:7b:1f:b8:5e:67:d1:f5:8a:4d:ee:68:0a:1f:7a:d5:94:99:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Validity
Not Before: Jun 13 03:09:13 2025 GMT
Not After : Jun 12 03:14:13 2026 GMT
Subject: CN=1DB70CD1B1F1530E0AB0409D2065BB8D0C1AEBC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:45:ea:a2:63:1c:a7:70:d1:e8:23:2c:b1:de:
82:97:d7:3c:ea:31:f3:86:84:2a:06:cd:7c:d8:a5:
d5:32:a2:4f:59:5e:4a:93:73:3d:2e:75:2f:be:dd:
6b:92:e4:0f:fe:4e:43:f1:ba:91:d7:17:b8:ec:43:
49:10:a3:0c:03:5e:20:0f:a2:cc:5d:4c:c3:40:56:
99:f9:0d:b1:44:46:31:02:65:24:9f:aa:71:f4:91:
54:13:3d:7b:1a:98:23:e8:89:13:5a:9e:83:0b:39:
80:38:18:e8:54:4e:12:fb:2f:57:9e:96:52:8c:4c:
af:ad:11:2c:a7:55:90:c4:cc:d9:fa:3e:a8:8a:f1:
39:dc:cd:69:7d:3a:47:fe:03:e7:68:45:c6:08:0e:
c1:36:d6:26:66:2a:ff:9c:48:fa:94:b3:29:01:47:
09:9a:74:ad:65:b8:9d:fb:49:0c:24:9c:6d:2f:36:
40:da:f0:5d:71:3b:98:3d:de:cd:1d:8e:6b:ad:64:
79:4e:ea:e8:18:09:9f:d9:c5:98:aa:e2:ba:08:9b:
a9:8f:4f:1d:94:ee:c5:65:21:38:0e:92:b2:cd:89:
db:37:34:6a:ae:8a:33:6b:39:2a:a7:bf:83:98:d0:
3a:10:a6:d5:1f:fa:3b:1b:c9:a6:0c:b3:a2:4b:a4:
62:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B7:0C:D1:B1:F1:53:0E:0A:B0:40:9D:20:65:BB:8D:0C:1A:EB:C3
X509v3 Authority Key Identifier:
keyid:0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/0CA968287B9271A9974F582D45CD23848B33CFFD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134302e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.140.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:29:22:5b:94:06:67:89:cf:6d:e5:19:29:b8:5b:40:75:d7:
1f:33:24:41:8d:8b:94:d6:44:e1:2e:6d:a7:0a:ed:e3:59:f2:
60:9c:97:9e:86:ee:42:88:c1:b9:a6:7e:67:f8:f8:a6:33:a0:
7f:c6:6d:91:c6:22:5b:5c:31:63:70:1e:85:59:da:94:f2:c6:
77:f1:30:cc:d4:2c:8b:b7:cd:47:19:a8:b1:e2:ae:3f:55:2f:
62:93:cd:dd:46:7a:11:12:bb:8c:c4:af:1a:be:53:91:38:3f:
73:48:a7:1d:75:cf:9f:6e:eb:c2:91:c8:63:57:dc:20:c0:db:
98:59:6d:25:ad:7e:35:b6:7a:78:e3:ee:e6:0e:76:25:70:40:
2c:bc:d6:a6:1f:3d:de:23:a3:b4:0e:80:25:85:fd:a7:8b:bc:
fa:c5:63:23:bc:71:8e:be:1f:1c:5f:5f:83:5b:9a:8b:b5:a7:
f5:0f:01:0a:cb:c3:ea:72:dc:3b:64:9f:d5:95:f3:17:1b:df:
81:44:e3:5c:31:47:21:6e:67:55:a0:5b:5c:57:a2:10:f8:eb:
a3:a9:9f:f3:5d:f1:74:76:7d:3a:5f:95:24:72:4e:59:e5:53:
30:35:a5:03:f7:38:79:d8:5c:ae:0c:0f:40:74:4c:2d:5a:4a:
f6:f6:97:52
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUdg17H7heZ9H1ik3uaAofetWUmdIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMENBOTY4Mjg3QjkyNzFBOTk3NEY1ODJENDVDRDIzODQ4
QjMzQ0ZGRDAeFw0yNTA2MTMwMzA5MTNaFw0yNjA2MTIwMzE0MTNaMDMxMTAvBgNV
BAMTKDFEQjcwQ0QxQjFGMTUzMEUwQUIwNDA5RDIwNjVCQjhEMEMxQUVCQzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ReqiYxyncNHoIyyx3oKX1zzq
MfOGhCoGzXzYpdUyok9ZXkqTcz0udS++3WuS5A/+TkPxupHXF7jsQ0kQowwDXiAP
osxdTMNAVpn5DbFERjECZSSfqnH0kVQTPXsamCPoiRNanoMLOYA4GOhUThL7L1ee
llKMTK+tESynVZDEzNn6PqiK8TnczWl9Okf+A+doRcYIDsE21iZmKv+cSPqUsykB
RwmadK1luJ37SQwknG0vNkDa8F1xO5g93s0djmutZHlO6ugYCZ/ZxZiq4roIm6mP
Tx2U7sVlITgOkrLNids3NGquijNrOSqnv4OY0DoQptUf+jsbyaYMs6JLpGIrAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUHbcM0bHxUw4KsECdIGW7jQwa68MwHwYDVR0j
BBgwFoAUDKloKHuScamXT1gtRc0jhIszz/0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR0tpMnpZUHZWQ3ZVcGFLOFRSSFZhODhZa2RLUWk3d0J6S2d3am15TDRS
Q3EvMC8wQ0E5NjgyODdCOTI3MUE5OTc0RjU4MkQ0NUNEMjM4NDhCMzNDRkZELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzBDQTk2ODI4N0I5MjcxQTk5
NzRGNTgyRDQ1Q0QyMzg0OEIzM0NGRkQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dLaTJ6WVB2VkN2VXBhSzhUUkhWYTg4WWtkS1FpN3dCektnd2pteUw0UkNxLzAv
MzEzNzM3MmUzMTMyMzkyZTMxMzQzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzMzM1MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEALGBjDANBgkqhkiG9w0BAQsFAAOCAQEAWiki
W5QGZ4nPbeUZKbhbQHXXHzMkQY2LlNZE4S5tpwrt41nyYJyXnobuQojBuaZ+Z/j4
pjOgf8ZtkcYiW1wxY3AehVnalPLGd/EwzNQsi7fNRxmoseKuP1UvYpPN3UZ6ERK7
jMSvGr5TkTg/c0inHXXPn27rwpHIY1fcIMDbmFltJa1+NbZ6eOPu5g52JXBALLzW
ph893iOjtA6AJYX9p4u8+sVjI7xxjr4fHF9fg1uai7Wn9Q8BCsvD6nLcO2Sf1ZXz
FxvfgUTjXDFHIW5nVaBbXFeiEPjro6mf813xdHZ9Ol+VJHJOWeVTMDWlA/c4edhc
rgwPQHRMLVpK9vaXUg==
-----END CERTIFICATE-----
Generated at Wed Jul 2 07:27:55 2025 by rpki-client