Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/34352e3136352e3136312e302f32342d3234203d3e20323637393631.roa
File: 34352e3136352e3136312e302f32342d3234203d3e20323637393631.roa (raw, json)
Hash identifier: 5X0saniBp6Yw0aGQnmxpsYIGb2VxIYMDq9MSH5FMOks=
Subject key identifier: 3B:E5:CF:5C:01:0B:B8:C1:25:BD:E1:4C:5D:54:2E:7E:A9:51:B4:8B
Certificate issuer: /CN=09B7AECB18318973134EAE9276452AE4B68453CF
Certificate serial: 2C59F8D004FCBDD43A31791C2A2ECE9E403F2399
Authority key identifier: 09:B7:AE:CB:18:31:89:73:13:4E:AE:92:76:45:2A:E4:B6:84:53:CF
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09B7AECB18318973134EAE9276452AE4B68453CF.cer
Subject info access: rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/34352e3136352e3136312e302f32342d3234203d3e20323637393631.roa
Signing time: Mon 26 May 2025 16:07:23 +0000
ROA not before: Mon 26 May 2025 16:02:23 +0000
ROA not after: Mon 25 May 2026 16:07:23 +0000
asID: 267961
IP address blocks: 45.165.161.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:59:f8:d0:04:fc:bd:d4:3a:31:79:1c:2a:2e:ce:9e:40:3f:23:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09B7AECB18318973134EAE9276452AE4B68453CF
Validity
Not Before: May 26 16:02:23 2025 GMT
Not After : May 25 16:07:23 2026 GMT
Subject: CN=3BE5CF5C010BB8C125BDE14C5D542E7EA951B48B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f6:a4:50:94:1a:5b:21:de:f9:df:52:64:f9:
a3:c5:35:96:30:33:cb:96:d2:e7:35:24:46:c9:3c:
b2:a4:77:10:3b:90:0f:00:2d:4f:80:d0:55:2e:d8:
65:24:69:4d:d1:bb:a7:32:5b:65:6d:bc:44:4c:1d:
dd:77:c9:d7:39:61:a2:46:45:e7:5d:9b:78:d3:2b:
61:e3:27:c7:58:65:c3:0b:fa:64:9f:29:37:9f:5f:
fe:d4:e4:3b:37:49:d8:85:24:1e:38:8b:6c:86:ae:
7c:53:40:33:d0:41:88:af:be:8e:52:03:46:0b:27:
7e:49:6f:ff:b2:12:0e:2b:f6:51:bd:6f:2e:ec:fd:
50:9e:a8:3d:d0:96:ee:5a:af:88:43:3c:fc:57:58:
b6:3e:67:27:9b:0b:cd:19:64:60:07:9c:0d:2a:44:
b4:0c:a3:a5:61:e8:44:bb:70:a0:2a:f5:1e:85:72:
c6:d0:b7:95:0d:0b:c6:0d:86:19:05:c0:15:c2:70:
95:2d:46:cb:40:7f:3e:b2:ee:c9:b4:32:0a:1e:8d:
45:aa:11:68:e6:a8:7b:c6:2a:8d:a5:92:2a:11:58:
fe:1c:a0:9b:d5:cb:d1:51:e4:48:83:aa:7e:34:97:
b7:e4:1e:5c:49:de:67:54:9f:8a:99:20:11:34:93:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E5:CF:5C:01:0B:B8:C1:25:BD:E1:4C:5D:54:2E:7E:A9:51:B4:8B
X509v3 Authority Key Identifier:
keyid:09:B7:AE:CB:18:31:89:73:13:4E:AE:92:76:45:2A:E4:B6:84:53:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/09B7AECB18318973134EAE9276452AE4B68453CF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/09B7AECB18318973134EAE9276452AE4B68453CF.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/GeuFtHQL3Q31cBcnobFVdpCvYGiA6b14gBxzWXJXdzhV/0/34352e3136352e3136312e302f32342d3234203d3e20323637393631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.165.161.0/24
Signature Algorithm: sha256WithRSAEncryption
40:07:c6:dc:59:82:d5:a8:4b:ca:de:0c:0b:9e:85:bc:40:63:
2c:85:73:e7:90:d4:b4:1a:6b:67:fb:83:c0:7c:fd:71:0c:e4:
38:a3:c6:89:21:ff:bc:c6:6e:ec:f8:de:38:dd:c3:f0:82:cb:
60:fd:b9:96:d6:80:be:12:d5:56:05:4b:0f:7d:66:e3:8e:ee:
33:e2:b3:a7:17:1c:ca:60:85:cd:de:66:0f:f7:dd:a7:0c:a9:
57:cc:7c:82:06:d0:0f:ac:8a:bf:03:da:46:29:1f:b4:9e:a7:
f0:cd:b8:cf:06:57:77:ec:9e:da:0b:64:32:c2:07:d8:ef:11:
95:47:cb:f8:88:ab:da:d6:70:57:ce:36:0f:66:2d:20:c1:bf:
80:e1:4b:4e:7d:93:6c:52:87:8c:60:4c:25:f4:82:25:aa:b9:
c2:14:10:d6:61:b7:27:fe:14:2a:c6:ec:08:3c:d3:3a:ab:82:
70:3e:a4:fc:c9:9a:07:05:0f:7f:32:81:9e:a1:88:87:ef:50:
b6:81:eb:53:0e:64:f5:a6:5a:c5:9c:b9:0f:04:54:1e:e5:9e:
98:9c:2c:03:1d:e8:c4:29:f5:10:49:4e:2a:cc:13:84:da:58:
74:e8:7f:a1:8e:90:30:87:83:b6:d6:60:9c:f0:74:d8:5f:46:
05:61:01:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 00:08:03 2025 by rpki-client