Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
File: 34352e3233382e342e302f32332d3233203d3e20323638333038.roa (raw, json)
Hash identifier: 5Ve8oQzJ7p35sMiaN/+Zw41+yfa1uiJsKEA46pR+kTI=
Subject key identifier: 52:27:D3:CF:A3:0F:5D:EB:C9:98:CD:08:F9:96:6A:66:1D:C3:CA:F7
Certificate issuer: /CN=832B06F1B7DDB99E413147B2D786DA7B38425995
Certificate serial: 67718AAB3DB5C522C03D9DB21BA36F6CD7419F3A
Authority key identifier: 83:2B:06:F1:B7:DD:B9:9E:41:31:47:B2:D7:86:DA:7B:38:42:59:95
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/832B06F1B7DDB99E413147B2D786DA7B38425995.cer
Subject info access: rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
Signing time: Tue 22 Apr 2025 14:28:09 +0000
ROA not before: Tue 22 Apr 2025 14:23:09 +0000
ROA not after: Tue 21 Apr 2026 14:28:09 +0000
asID: 268308
IP address blocks: 45.238.4.0/23 maxlen: 23
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:71:8a:ab:3d:b5:c5:22:c0:3d:9d:b2:1b:a3:6f:6c:d7:41:9f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832B06F1B7DDB99E413147B2D786DA7B38425995
Validity
Not Before: Apr 22 14:23:09 2025 GMT
Not After : Apr 21 14:28:09 2026 GMT
Subject: CN=5227D3CFA30F5DEBC998CD08F9966A661DC3CAF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3f:d2:b8:95:3a:c3:2f:bf:b3:14:aa:18:12:
2d:80:36:87:c6:16:65:53:98:cd:a0:e0:94:0b:b7:
b2:72:bc:80:3a:2b:9d:4e:2a:5b:1c:9c:74:cc:a4:
71:2a:e5:dc:c6:90:0f:36:58:d5:5a:e2:2c:5b:2a:
9d:4b:6c:32:fd:f9:49:76:c9:72:5b:59:0d:4a:47:
78:b9:e7:54:17:e0:a7:3a:7b:84:1c:4c:3f:8c:bb:
b6:7e:60:6b:69:bc:4e:d1:59:62:66:20:4e:9b:91:
44:5b:22:b3:15:e3:2e:ee:b0:c3:f3:85:bf:f5:76:
41:20:cc:35:68:2c:4a:0c:d3:42:ff:87:80:44:5a:
ba:3b:38:e2:46:b3:12:4b:bd:01:b7:42:08:2b:92:
68:78:93:a9:a2:a8:bd:b2:97:5c:12:49:69:f2:fd:
b3:8c:26:30:b0:1b:44:0f:cd:5a:83:76:61:36:cc:
e8:8a:33:31:fd:44:76:32:f8:a4:45:dd:81:3c:f9:
c6:ab:72:3c:af:b7:20:ef:d3:93:12:0f:44:58:37:
78:82:b8:2b:79:04:87:10:d7:1f:dd:16:73:b4:d5:
17:e4:1c:9e:c2:a6:bb:fa:9a:8a:e4:c7:ea:ed:8f:
92:54:54:04:09:25:73:2f:3f:9e:00:3a:00:04:0e:
a5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:27:D3:CF:A3:0F:5D:EB:C9:98:CD:08:F9:96:6A:66:1D:C3:CA:F7
X509v3 Authority Key Identifier:
keyid:83:2B:06:F1:B7:DD:B9:9E:41:31:47:B2:D7:86:DA:7B:38:42:59:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/832B06F1B7DDB99E413147B2D786DA7B38425995.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/832B06F1B7DDB99E413147B2D786DA7B38425995.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/725DE8VuC1LEty5HDPBofeiERCTC9K38u8UP6Sbh5w9m/0/34352e3233382e342e302f32332d3233203d3e20323638333038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.238.4.0/23
Signature Algorithm: sha256WithRSAEncryption
23:08:07:a6:9d:77:34:e9:b4:ff:c7:aa:94:ce:86:8b:81:b3:
6c:ac:b6:59:57:1e:f2:dc:8e:6e:57:f5:23:a3:a5:c0:3e:5e:
d1:a6:fa:ac:d4:d4:34:cf:43:2e:e5:b0:d6:c1:6b:32:d1:2d:
d1:40:eb:92:a3:bf:e8:77:e9:0c:87:91:27:5e:42:04:69:e0:
63:eb:27:7d:68:a0:f4:8b:26:a4:be:8b:e7:35:4f:b4:09:cc:
8d:42:25:9c:12:3c:a6:f6:2d:eb:70:d6:45:05:3f:a3:72:5c:
2e:dd:89:88:a4:5e:89:f4:3f:7e:60:1b:9d:88:21:02:8f:a3:
bc:ff:c5:a3:fd:9f:48:df:48:71:13:81:ed:af:b5:dc:63:69:
ea:b9:3c:86:db:b7:7c:0c:fb:e4:be:54:b3:f3:e2:5f:9a:5f:
8d:a2:87:91:7b:6c:47:bf:8a:b7:3c:aa:8f:ce:5f:6a:14:5c:
ec:3e:5f:61:bb:e3:4a:e9:da:c9:2b:2f:bb:c3:65:47:4e:ae:
43:ab:f2:28:55:d8:20:76:70:d9:ff:9b:57:c3:5d:e8:20:e0:
29:9b:be:51:ff:f7:28:1d:03:23:56:cd:72:76:f6:e8:d7:71:
23:9a:c3:d4:61:17:88:a2:0c:f0:ab:1e:17:7b:52:60:bd:b0:
3e:48:aa:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 06:25:03 2025 by rpki-client on console.sobornost.net