Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33322d3332203d3e20323635303830.roa
File: 323830343a333237383a3a2f33322d3332203d3e20323635303830.roa (raw, json)
Hash identifier: 5B/+vfFGdF3IJoTrS9TeBsQvxm7kgyg44LTsGmD5N98=
Subject key identifier: 31:A0:73:12:C0:7D:BA:C0:9D:79:93:88:90:FF:48:57:8B:85:D3:67
Certificate issuer: /CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E
Certificate serial: 57CDF74DABE01CDABFCA963BBA03B1A1B4FCC6CB
Authority key identifier: BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33322d3332203d3e20323635303830.roa
Signing time: Tue 04 Nov 2025 12:21:22 +0000
ROA not before: Tue 04 Nov 2025 12:16:22 +0000
ROA not after: Tue 03 Nov 2026 12:21:22 +0000
asID: 265080
IP address blocks: 2804:3278::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:cd:f7:4d:ab:e0:1c:da:bf:ca:96:3b:ba:03:b1:a1:b4:fc:c6:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E
Validity
Not Before: Nov 4 12:16:22 2025 GMT
Not After : Nov 3 12:21:22 2026 GMT
Subject: CN=31A07312C07DBAC09D79938890FF48578B85D367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2f:88:a0:f5:ee:76:f3:71:57:74:c5:7e:f0:
a2:40:91:09:f5:49:4a:72:c2:c5:00:20:58:03:a9:
0a:e9:29:74:35:3b:7d:b2:ca:03:b0:21:42:54:08:
10:7f:5e:25:d7:43:3b:1d:81:1f:c8:ed:61:86:96:
e7:b5:35:cb:18:30:de:ce:fe:f8:51:17:ec:84:9b:
a5:8f:f5:67:ab:84:9c:aa:cb:9d:7b:d1:10:1c:19:
9f:d5:74:9f:31:a5:ee:97:07:b1:44:d2:2f:3b:95:
77:8e:9b:11:d1:8b:98:f1:9f:a2:b1:20:24:8b:35:
7c:c6:18:1d:44:fc:2b:79:34:08:cd:09:73:4c:bb:
24:12:9d:82:28:bd:d6:c9:39:7c:0c:43:71:89:76:
9c:ed:f2:25:b7:fd:21:8b:4b:8b:fa:b9:ff:02:0f:
78:67:48:11:94:90:54:23:ff:73:dc:b4:4c:f8:d4:
40:11:2b:6e:60:0f:d9:6e:30:b0:b0:60:9d:f3:42:
6e:2b:77:94:6f:f6:5a:eb:96:68:65:48:77:35:b0:
be:07:89:cb:05:26:b8:f9:fe:22:e0:70:bc:6a:54:
42:5b:87:b9:59:a2:77:ab:18:d7:b1:48:bb:b0:3d:
10:ce:d7:77:89:0a:a5:64:b5:d7:7b:b5:32:fc:47:
68:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:A0:73:12:C0:7D:BA:C0:9D:79:93:88:90:FF:48:57:8B:85:D3:67
X509v3 Authority Key Identifier:
keyid:BD:3A:86:10:EB:89:85:A3:AA:9F:38:7E:DE:09:73:0A:AE:F0:6F:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/BD3A8610EB8985A3AA9F387EDE09730AAEF06F4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/323830343a333237383a3a2f33322d3332203d3e20323635303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2804:3278::/32
Signature Algorithm: sha256WithRSAEncryption
1e:5e:f1:ee:f7:d1:fe:4b:91:22:d5:4e:b3:91:67:2b:67:bf:
fb:86:c1:43:05:17:ea:0c:e1:6b:76:e3:3d:fb:ef:79:a8:13:
c8:2f:ac:29:e8:a6:76:6e:64:fe:83:b5:d4:56:50:6f:a3:ff:
20:cc:32:bd:57:45:c8:02:75:89:ce:f2:bc:15:ff:5c:c2:a2:
b2:07:99:9f:d7:08:93:bc:53:a5:53:a7:41:71:13:5b:5b:73:
96:66:a7:63:4e:9e:25:b2:29:34:31:d6:cc:8f:b6:bc:02:bf:
ad:4d:ff:4b:41:8d:f7:7a:70:df:84:96:97:c5:eb:ca:11:cc:
b2:f1:5e:b0:bc:a0:e7:06:c2:9e:d3:39:60:e8:aa:2d:37:69:
c4:2a:f4:24:ca:55:f2:4b:6c:71:1a:9d:a0:d9:11:2f:d3:2f:
91:78:ca:d7:2e:1e:90:0e:06:ee:72:84:a6:2d:1d:29:f3:f5:
d7:b3:f6:ee:fa:ce:33:d2:05:1d:61:e5:e2:f1:e9:55:ae:18:
2f:fb:f6:2b:62:22:0d:20:b4:20:ad:bb:46:80:db:f1:3e:82:
0b:a7:3e:54:6b:8b:fc:15:81:e5:bc:94:49:1c:a8:3c:e8:10:
87:57:9a:73:8f:f3:04:d9:60:03:44:99:64:bb:01:19:cb:ef:
45:c7:4f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:33:56 2025 by rpki-client