Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e3130382e302f32342d3234203d3e203533313533.roa
File: 3138372e36312e3130382e302f32342d3234203d3e203533313533.roa (raw, json)
Hash identifier: 5dnY8BgNACdoc5+VfkgAhJ2CApZcssVWug9RoiHWLIs=
Subject key identifier: 67:98:65:9D:95:EE:D2:D1:DC:F4:34:20:13:FF:9B:F6:9A:42:5A:52
Certificate issuer: /CN=088529FD326477A5FEB0A67AFC1C93F8F83A8707
Certificate serial: 342AFE3B70746A63AF6B6CA9BFFEF5F7C13830D5
Authority key identifier: 08:85:29:FD:32:64:77:A5:FE:B0:A6:7A:FC:1C:93:F8:F8:3A:87:07
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/088529FD326477A5FEB0A67AFC1C93F8F83A8707.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e3130382e302f32342d3234203d3e203533313533.roa
Signing time: Wed 28 Jan 2026 11:34:28 +0000
ROA not before: Wed 28 Jan 2026 11:29:28 +0000
ROA not after: Wed 27 Jan 2027 11:34:28 +0000
asID: 53153
IP address blocks: 187.61.108.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:2a:fe:3b:70:74:6a:63:af:6b:6c:a9:bf:fe:f5:f7:c1:38:30:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088529FD326477A5FEB0A67AFC1C93F8F83A8707
Validity
Not Before: Jan 28 11:29:28 2026 GMT
Not After : Jan 27 11:34:28 2027 GMT
Subject: CN=6798659D95EED2D1DCF4342013FF9BF69A425A52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7b:6e:b2:39:0c:a9:72:00:8c:b8:2f:7f:3e:
69:d6:22:98:fd:b2:8a:c2:7a:23:53:60:aa:3b:45:
e7:51:1a:f6:61:f9:2e:b1:35:4c:ac:b3:b1:42:25:
fe:83:06:d8:15:38:3e:c0:2e:6f:46:3e:47:e7:e4:
f0:f5:14:3b:47:ec:26:d0:38:b4:74:ed:f4:cc:fd:
bd:36:80:e4:0c:d5:be:40:f2:6f:af:c2:37:97:09:
5d:a7:82:d5:bf:2e:a8:57:04:a1:92:48:59:86:05:
c9:bc:a9:06:20:2b:99:06:90:44:6b:45:ba:81:c5:
0c:36:77:b7:d4:bf:92:cc:6e:be:b7:8f:60:e3:d5:
42:f4:28:9f:59:cd:f7:82:82:9d:08:6a:bf:66:7d:
24:42:c1:f6:49:80:80:dd:36:20:18:06:25:c7:4c:
93:d1:43:24:60:de:ce:68:7f:f3:81:6f:45:d7:4e:
aa:74:01:f1:23:4e:83:8b:11:01:81:cd:f3:1a:35:
5e:27:63:c1:d0:a2:36:0f:63:d0:a5:60:94:f2:95:
dc:a9:d0:9f:52:0d:a9:d8:19:74:6a:40:0c:19:7f:
b4:6a:af:5b:80:ad:fa:7c:fd:23:04:ec:cc:e9:e1:
bf:d7:ec:35:07:e1:ab:c2:c1:29:13:7b:de:12:4f:
8a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:98:65:9D:95:EE:D2:D1:DC:F4:34:20:13:FF:9B:F6:9A:42:5A:52
X509v3 Authority Key Identifier:
keyid:08:85:29:FD:32:64:77:A5:FE:B0:A6:7A:FC:1C:93:F8:F8:3A:87:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/088529FD326477A5FEB0A67AFC1C93F8F83A8707.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/088529FD326477A5FEB0A67AFC1C93F8F83A8707.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e3130382e302f32342d3234203d3e203533313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.61.108.0/24
Signature Algorithm: sha256WithRSAEncryption
10:f3:fc:8c:48:da:31:42:7f:d8:4a:75:73:4c:99:a0:60:03:
b4:5a:2c:fd:9c:d4:ae:60:c8:89:d6:8f:96:39:38:76:f8:33:
b6:3e:15:14:43:6f:c6:85:2b:8c:cb:64:1e:6a:c1:c6:4a:ec:
6e:29:f8:c8:b5:c7:40:3f:fb:a4:0a:58:22:02:92:31:97:f2:
4c:68:a7:94:ed:2a:63:14:57:20:be:4a:6b:e5:e2:c4:14:cd:
4c:25:52:2a:70:63:6e:7f:00:7c:df:94:69:36:08:fc:0f:24:
59:0d:0b:b9:3d:4c:60:46:30:b9:c0:8c:8f:3d:2e:5f:69:e6:
d8:b4:a8:68:af:dd:89:38:81:92:0e:8d:e1:a4:dc:5b:75:49:
b3:63:79:94:52:67:79:03:2d:50:4a:e2:b5:ff:0e:e7:cb:3a:
f7:47:0e:95:61:53:a8:16:0d:bf:be:90:74:7b:43:f1:60:a8:
6f:fb:62:90:ac:05:d3:86:61:d9:30:62:fb:b5:80:73:7b:b9:
24:a3:67:55:a1:67:a7:0f:c6:93:86:4b:b4:d0:ba:9d:6b:65:
fc:17:77:f3:f7:d3:0a:f0:85:f1:99:d9:2e:49:75:69:a1:84:
0b:92:68:8a:12:f8:06:c6:54:ad:c3:f8:ef:18:7a:77:24:cb:
d0:35:9b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:57:16 2026 by rpki-client