Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa
File: 323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa (raw, json)
Hash identifier: jbtbTVUEOi4D1QudVkpEpKo8kA9wiZwxm6sIZEttwOg=
Subject key identifier: 3E:9B:B2:E0:C3:85:E6:03:92:B7:BB:6C:C9:CB:FB:40:8A:E9:4E:2C
Certificate issuer: /CN=09B7AECB18318973134EAE9276452AE4B68453CF
Certificate serial: 3AFFAEFFE11E319501AE3EA358E08DE728EAE7B7
Authority key identifier: 09:B7:AE:CB:18:31:89:73:13:4E:AE:92:76:45:2A:E4:B6:84:53:CF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09B7AECB18318973134EAE9276452AE4B68453CF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa
Signing time: Mon 26 May 2025 16:07:25 +0000
ROA not before: Mon 26 May 2025 16:02:25 +0000
ROA not after: Mon 25 May 2026 16:07:25 +0000
asID: 267961
IP address blocks: 2804:55dc:a000::/35 maxlen: 35
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ff:ae:ff:e1:1e:31:95:01:ae:3e:a3:58:e0:8d:e7:28:ea:e7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09B7AECB18318973134EAE9276452AE4B68453CF
Validity
Not Before: May 26 16:02:25 2025 GMT
Not After : May 25 16:07:25 2026 GMT
Subject: CN=3E9BB2E0C385E60392B7BB6CC9CBFB408AE94E2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:60:20:3b:e3:f7:14:83:80:49:56:09:d3:31:
c3:1b:96:80:04:99:61:80:2a:03:9c:5b:97:63:a2:
c4:f4:5b:a0:a1:76:5c:27:b1:ff:dd:70:c7:58:43:
17:d2:47:a5:82:57:57:2c:6d:59:11:db:5d:0c:ac:
d3:f6:6a:fc:4f:43:dd:34:23:75:2f:35:50:6d:84:
0c:3c:8a:1b:41:42:43:3c:21:52:b3:76:50:52:ba:
35:b4:05:08:d6:c5:4c:b7:4e:3d:47:83:04:73:8d:
64:a7:84:7c:86:ad:b4:24:db:0a:10:e7:29:a3:13:
30:ae:00:20:1a:cb:91:74:27:45:bd:d5:72:45:2d:
e3:7e:20:20:0b:ad:ed:4a:39:01:f7:4e:93:82:5c:
10:10:9e:b5:4d:a9:f1:16:84:6b:6c:4d:ae:05:1e:
35:75:e4:f1:f0:75:6c:8f:47:f2:2c:e8:0a:8e:9b:
f4:ee:11:f7:62:40:9a:e5:87:7c:af:df:73:14:de:
54:5f:72:67:8d:e6:2e:94:4b:5e:dd:c9:f0:35:7f:
bb:72:3c:52:52:0e:71:a1:a6:cd:09:a0:7c:65:61:
45:1f:ed:a9:f1:66:58:8b:68:c8:18:4d:42:4a:72:
b5:57:fe:60:c4:68:1b:d9:42:ae:76:72:f5:f6:9f:
f6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9B:B2:E0:C3:85:E6:03:92:B7:BB:6C:C9:CB:FB:40:8A:E9:4E:2C
X509v3 Authority Key Identifier:
keyid:09:B7:AE:CB:18:31:89:73:13:4E:AE:92:76:45:2A:E4:B6:84:53:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/09B7AECB18318973134EAE9276452AE4B68453CF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09B7AECB18318973134EAE9276452AE4B68453CF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/323830343a353564633a613030303a3a2f33352d3335203d3e20323637393631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:55dc:a000::/35
Signature Algorithm: sha256WithRSAEncryption
11:75:6c:13:0a:87:a7:fe:b3:1a:b0:cc:2a:73:51:b2:b3:ed:
07:b4:05:7c:1c:5c:f8:9b:9d:fa:40:5f:55:b8:31:17:c2:f3:
af:4f:2e:4b:a8:45:06:e6:88:d8:45:64:f1:5e:b5:25:80:c3:
73:25:0b:d7:f5:9d:00:9b:43:f9:80:8a:00:14:51:7d:be:3c:
32:f3:81:d9:d4:a9:a6:85:7a:51:7a:b2:b2:93:31:32:6f:5e:
6b:ab:2d:29:af:89:41:32:0b:86:51:c6:59:67:7e:0f:ab:07:
86:d2:f5:37:af:9d:32:51:23:65:6e:db:ea:38:99:40:17:95:
52:5c:0e:68:14:b0:db:a7:19:25:4f:76:d4:b6:9d:37:3c:07:
dc:ac:53:af:0e:ef:18:24:27:28:b2:f2:a8:da:22:47:a1:d1:
1e:af:f8:54:16:11:61:3c:68:12:a1:08:e7:38:a2:57:fa:63:
7e:d6:14:81:cd:a3:4c:ce:24:cc:2e:a7:1b:e5:cf:2d:35:0f:
a9:0e:b3:e9:5f:a6:16:b2:ae:09:4e:9c:ed:2c:3d:94:8e:d0:
b5:4e:ad:44:a9:5f:82:3f:50:a8:43:52:33:82:00:d1:d9:68:
7e:9b:3d:78:3e:a8:5f:72:7a:f5:a5:95:67:27:dd:ca:24:eb:
79:65:1e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:49:59 2025 by rpki-client