Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/4o414r8kJZihQDCtpLjHERmPjcyjpxPUywaRh9ehcPJX/0/3133382e39372e33322e302f32332d3233203d3e203631393030.roa
File: 3133382e39372e33322e302f32332d3233203d3e203631393030.roa (raw, json)
Hash identifier: sDcieY2v+RrNRagkb3e82fcZxYbhjncRBjam2EM9lgs=
Subject key identifier: 02:01:0A:88:7C:85:5C:F2:41:51:EA:76:1F:68:15:EC:B3:E1:0D:18
Certificate issuer: /CN=717D62DB604520975DE382D0D3273E1BDB591D67
Certificate serial: 21067E2276B77A6E12FF70D9B72E3803CE88A499
Authority key identifier: 71:7D:62:DB:60:45:20:97:5D:E3:82:D0:D3:27:3E:1B:DB:59:1D:67
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/717D62DB604520975DE382D0D3273E1BDB591D67.cer
Subject info access: rsync://rpki-repo.registro.br/repo/4o414r8kJZihQDCtpLjHERmPjcyjpxPUywaRh9ehcPJX/0/3133382e39372e33322e302f32332d3233203d3e203631393030.roa
Signing time: Wed 16 Apr 2025 14:07:43 +0000
ROA not before: Wed 16 Apr 2025 14:02:43 +0000
ROA not after: Wed 15 Apr 2026 14:07:43 +0000
asID: 61900
IP address blocks: 138.97.32.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 16 Apr 2025 18:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:06:7e:22:76:b7:7a:6e:12:ff:70:d9:b7:2e:38:03:ce:88:a4:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=717D62DB604520975DE382D0D3273E1BDB591D67
Validity
Not Before: Apr 16 14:02:43 2025 GMT
Not After : Apr 15 14:07:43 2026 GMT
Subject: CN=02010A887C855CF24151EA761F6815ECB3E10D18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:74:6b:33:d2:e6:f4:69:22:eb:4b:4e:46:bf:
62:89:e0:3c:8b:a6:89:9b:8f:d5:69:8f:8a:78:7d:
46:38:77:3e:04:2e:e7:36:f7:6e:21:62:d2:0d:e2:
e9:80:c8:62:58:e1:c0:8e:60:7c:d6:67:67:c3:ca:
60:fc:a9:12:35:c4:21:27:3a:37:c5:67:07:1f:f8:
28:51:00:cd:50:af:9b:39:3c:b2:1c:a0:a8:ea:38:
ad:63:8e:b3:8e:e9:14:30:5a:fa:04:19:76:28:00:
bd:d2:85:de:ca:67:96:2e:0c:b3:d2:dc:3a:59:e6:
4d:72:f8:7d:88:39:1d:6e:4f:b7:8f:88:1c:f3:cd:
6a:e9:49:98:ca:d4:5f:3e:9a:23:84:d8:69:32:e2:
1d:2a:37:f4:fa:07:21:c9:63:af:c6:0d:85:69:56:
26:73:39:a2:03:b5:7e:7d:3a:1c:2a:20:ba:af:e3:
65:67:ef:79:7d:38:5f:9b:c0:2a:44:50:c4:f3:c9:
ce:2a:82:c8:07:80:99:fc:15:fd:c8:e0:3d:39:4d:
d5:75:1c:c3:43:20:7a:ab:da:65:22:54:a8:da:74:
bd:31:4a:46:d5:d1:bf:c4:39:02:47:7f:bc:3d:e0:
e0:7e:83:2e:1c:e6:6f:a4:3c:c1:0e:03:3a:eb:1b:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:01:0A:88:7C:85:5C:F2:41:51:EA:76:1F:68:15:EC:B3:E1:0D:18
X509v3 Authority Key Identifier:
keyid:71:7D:62:DB:60:45:20:97:5D:E3:82:D0:D3:27:3E:1B:DB:59:1D:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/4o414r8kJZihQDCtpLjHERmPjcyjpxPUywaRh9ehcPJX/0/717D62DB604520975DE382D0D3273E1BDB591D67.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/717D62DB604520975DE382D0D3273E1BDB591D67.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/4o414r8kJZihQDCtpLjHERmPjcyjpxPUywaRh9ehcPJX/0/3133382e39372e33322e302f32332d3233203d3e203631393030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.97.32.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:c7:d2:c4:35:ff:30:41:a5:55:f1:49:a4:de:5e:95:e6:a1:
c2:00:c3:91:2b:78:b1:4d:b1:cb:4f:af:03:0f:fb:34:74:2a:
88:1e:cc:56:52:dc:3b:27:26:c3:07:b5:c4:ef:64:dc:36:60:
4a:06:53:81:cf:07:b2:83:94:0c:bb:d8:75:70:69:3a:73:b5:
2c:f7:c1:c2:ba:7e:ca:54:df:f6:c8:be:c8:02:74:72:47:40:
28:70:da:4f:b5:e5:59:4c:8e:bb:31:20:1f:7f:2b:a1:07:1e:
10:71:31:69:65:77:41:02:04:3d:c5:57:18:27:ca:ac:ef:99:
f5:93:f6:a0:61:d5:4a:d9:d3:da:62:a3:f9:fa:68:b2:63:ed:
7f:17:bf:e4:fa:d6:4b:4c:8c:00:ae:b0:11:57:b2:ae:41:0f:
f8:2c:70:7f:82:fe:38:af:36:46:72:35:db:27:7a:94:e8:a7:
72:24:e6:83:f9:39:26:e5:51:e4:eb:e9:12:e0:62:70:03:c7:
5b:f9:23:28:bd:ed:ae:8e:cb:39:57:45:7e:c5:df:3b:d7:21:
d0:61:fa:94:d4:47:7c:1e:c2:db:1e:21:e3:55:8a:e6:7a:a3:
68:12:ab:38:37:17:f3:73:d0:26:f5:50:1d:c2:e7:f8:6e:7c:
57:6c:a8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:42:22 2025 by rpki-client on console.sobornost.net