Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
File: 3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa (raw, json)
Hash identifier: KN+1exuV68kee37uXAVi+CtAjodej2VypVoHlmKCKHY=
Subject key identifier: 6D:5E:B1:2D:1A:4F:0A:E6:78:C8:1C:71:28:3A:EC:B3:10:88:20:83
Certificate issuer: /CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Certificate serial: 747E2EF2599C1D9B31737E85E912582FCD971565
Authority key identifier: 0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
Signing time: Fri 13 Jun 2025 03:14:23 +0000
ROA not before: Fri 13 Jun 2025 03:09:23 +0000
ROA not after: Fri 12 Jun 2026 03:14:23 +0000
asID: 263584
IP address blocks: 177.129.142.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:7e:2e:f2:59:9c:1d:9b:31:73:7e:85:e9:12:58:2f:cd:97:15:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CA968287B9271A9974F582D45CD23848B33CFFD
Validity
Not Before: Jun 13 03:09:23 2025 GMT
Not After : Jun 12 03:14:23 2026 GMT
Subject: CN=6D5EB12D1A4F0AE678C81C71283AECB310882083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:eb:cb:31:4f:03:69:bc:5f:3f:f0:54:ea:27:
18:32:74:1a:e6:cf:d3:b7:e4:42:0a:b6:1e:ae:3d:
1c:98:b5:af:75:07:ed:14:04:31:e6:e9:ab:5d:85:
b8:a7:f4:4a:1a:e6:5b:cb:8a:47:89:94:41:f1:17:
46:3a:34:7c:2a:15:4c:00:11:2d:93:2e:cd:91:65:
82:95:0d:e2:35:ae:c9:82:68:fa:d7:fa:ce:06:60:
2c:3b:f4:d4:97:a4:24:50:36:ee:9a:01:35:56:d4:
60:12:95:c0:0a:24:27:ab:34:0b:df:98:fe:31:8c:
83:24:98:e8:4c:18:b5:60:c7:68:c9:d2:59:68:23:
e8:d0:b8:04:62:ed:72:4b:9f:33:78:4a:e8:e1:7c:
ec:e7:4f:6d:73:4a:1a:23:61:89:1a:31:db:1a:28:
b1:2e:22:16:9b:0b:f8:cd:0f:04:78:19:92:0b:ec:
cf:0c:7c:af:6d:1b:42:67:68:89:9a:d3:17:a9:eb:
04:88:98:4f:39:33:cd:0f:39:fe:1f:de:60:95:04:
c0:e1:fe:ba:b4:2b:53:0a:eb:8c:21:45:04:ff:04:
27:c3:6c:a1:e6:77:50:6d:e4:dc:f7:df:3b:cb:45:
b0:bb:18:a7:c4:a7:15:82:c5:8f:2f:bc:66:f3:7b:
c8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:5E:B1:2D:1A:4F:0A:E6:78:C8:1C:71:28:3A:EC:B3:10:88:20:83
X509v3 Authority Key Identifier:
keyid:0C:A9:68:28:7B:92:71:A9:97:4F:58:2D:45:CD:23:84:8B:33:CF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/0CA968287B9271A9974F582D45CD23848B33CFFD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/0CA968287B9271A9974F582D45CD23848B33CFFD.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GKi2zYPvVCvUpaK8TRHVa88YkdKQi7wBzKgwjmyL4RCq/0/3137372e3132392e3134322e302f32342d3234203d3e20323633353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
177.129.142.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:dc:fd:c8:50:a3:08:50:b7:75:49:8e:26:41:f2:eb:3f:02:
20:99:ff:71:6e:c5:34:4d:c8:82:70:a4:23:b0:0a:6e:a3:96:
a8:9e:a1:d5:c8:4b:6f:f6:be:88:46:30:84:85:b6:10:ed:9e:
42:a4:fd:92:c5:df:6a:d3:23:fd:d2:22:2b:b4:d9:0c:f8:ef:
70:f1:7a:60:51:cf:61:1a:85:c7:3f:cc:cb:ae:d4:62:32:0b:
8e:71:b6:cd:bb:87:89:96:98:bd:d0:4b:55:d6:69:f6:4b:86:
77:98:da:2c:ee:f6:fa:a7:47:3d:9a:6f:13:2c:a0:4c:74:a8:
f5:5c:34:97:61:bb:b3:9a:86:f1:eb:19:34:74:9b:8d:53:0c:
99:29:82:90:2c:92:63:c2:ca:b4:37:1b:ee:8f:c8:98:ce:03:
16:08:94:f7:3a:d4:c2:f9:7e:60:1b:1b:cc:a5:14:ab:f1:76:
16:22:cc:b3:71:af:95:43:ce:4e:d7:27:16:95:b1:77:4c:dc:
26:f4:3a:59:5e:0b:50:e2:14:52:77:5b:13:48:dc:8d:84:b2:
00:bd:87:a4:81:35:7e:c8:a2:f5:b4:f5:29:d1:56:35:1a:27:
e3:d0:ce:38:cc:87:ad:85:17:de:0b:f3:ac:8a:e8:29:16:84:
4c:55:3c:fc
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUdH4u8lmcHZsxc36F6RJYL82XFWUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMENBOTY4Mjg3QjkyNzFBOTk3NEY1ODJENDVDRDIzODQ4
QjMzQ0ZGRDAeFw0yNTA2MTMwMzA5MjNaFw0yNjA2MTIwMzE0MjNaMDMxMTAvBgNV
BAMTKDZENUVCMTJEMUE0RjBBRTY3OEM4MUM3MTI4M0FFQ0IzMTA4ODIwODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE68sxTwNpvF8/8FTqJxgydBrm
z9O35EIKth6uPRyYta91B+0UBDHm6atdhbin9Eoa5lvLikeJlEHxF0Y6NHwqFUwA
ES2TLs2RZYKVDeI1rsmCaPrX+s4GYCw79NSXpCRQNu6aATVW1GASlcAKJCerNAvf
mP4xjIMkmOhMGLVgx2jJ0lloI+jQuARi7XJLnzN4SujhfOznT21zShojYYkaMdsa
KLEuIhabC/jNDwR4GZIL7M8MfK9tG0JnaIma0xep6wSImE85M80POf4f3mCVBMDh
/rq0K1MK64whRQT/BCfDbKHmd1Bt5Nz33zvLRbC7GKfEpxWCxY8vvGbze8gnAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUbV6xLRpPCuZ4yBxxKDrssxCIIIMwHwYDVR0j
BBgwFoAUDKloKHuScamXT1gtRc0jhIszz/0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vR0tpMnpZUHZWQ3ZVcGFLOFRSSFZhODhZa2RLUWk3d0J6S2d3am15TDRS
Q3EvMC8wQ0E5NjgyODdCOTI3MUE5OTc0RjU4MkQ0NUNEMjM4NDhCMzNDRkZELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzBDQTk2ODI4N0I5MjcxQTk5
NzRGNTgyRDQ1Q0QyMzg0OEIzM0NGRkQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0dLaTJ6WVB2VkN2VXBhSzhUUkhWYTg4WWtkS1FpN3dCektnd2pteUw0UkNxLzAv
MzEzNzM3MmUzMTMyMzkyZTMxMzQzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy
MzYzMzM1MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEALGBjjANBgkqhkiG9w0BAQsFAAOCAQEAnNz9
yFCjCFC3dUmOJkHy6z8CIJn/cW7FNE3IgnCkI7AKbqOWqJ6h1chLb/a+iEYwhIW2
EO2eQqT9ksXfatMj/dIiK7TZDPjvcPF6YFHPYRqFxz/My67UYjILjnG2zbuHiZaY
vdBLVdZp9kuGd5jaLO72+qdHPZpvEyygTHSo9Vw0l2G7s5qG8esZNHSbjVMMmSmC
kCySY8LKtDcb7o/ImM4DFgiU9zrUwvl+YBsbzKUUq/F2FiLMs3GvlUPOTtcnFpWx
d0zcJvQ6WV4LUOIUUndbE0jcjYSyAL2HpIE1fsii9bT1KdFWNRon49DOOMyHrYUX
3gvzrIroKRaETFU8/A==
-----END CERTIFICATE-----
Generated at Tue Jul 1 22:46:55 2025 by rpki-client