Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/3137372e33362e3133342e302f32342d3234203d3e20323632343031.roa
File:                     3137372e33362e3133342e302f32342d3234203d3e20323632343031.roa (raw, json)
Hash identifier:          TGpoJkVQeOiRShNUPC0uFv3CCodbv7e4VGgAxPGEJoE=
Subject key identifier:   68:0C:6B:A0:3E:E7:2B:ED:80:CF:0F:8A:25:CE:9E:CB:E0:51:42:D8
Certificate issuer:       /CN=04C4B46503207481A5E29CE8E450E83C917B2F22
Certificate serial:       4E0C99C9AD45C01D128CAE35AA8DB0D41184FD60
Authority key identifier: 04:C4:B4:65:03:20:74:81:A5:E2:9C:E8:E4:50:E8:3C:91:7B:2F:22
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/04C4B46503207481A5E29CE8E450E83C917B2F22.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/3137372e33362e3133342e302f32342d3234203d3e20323632343031.roa
Signing time:             Thu 04 Apr 2024 10:47:49 +0000
ROA not before:           Thu 04 Apr 2024 10:42:49 +0000
ROA not after:            Thu 03 Apr 2025 10:47:49 +0000
asID:                     262401
IP address blocks:        177.36.134.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/04C4B46503207481A5E29CE8E450E83C917B2F22.crl
                          rsync://rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/04C4B46503207481A5E29CE8E450E83C917B2F22.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/04C4B46503207481A5E29CE8E450E83C917B2F22.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:26:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4e:0c:99:c9:ad:45:c0:1d:12:8c:ae:35:aa:8d:b0:d4:11:84:fd:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04C4B46503207481A5E29CE8E450E83C917B2F22
        Validity
            Not Before: Apr  4 10:42:49 2024 GMT
            Not After : Apr  3 10:47:49 2025 GMT
        Subject: CN=680C6BA03EE72BED80CF0F8A25CE9ECBE05142D8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:29:d0:a7:75:4b:9c:db:ce:59:f9:4a:ea:ba:
                    14:ae:db:96:c3:74:d7:f8:84:c8:05:fa:13:8a:a9:
                    01:f5:e5:cc:ff:0b:74:97:56:b0:b3:b4:3a:76:db:
                    a9:ce:36:b0:97:09:f8:5a:34:3e:75:98:74:e2:74:
                    03:46:cd:81:9d:8d:7f:70:c5:32:72:07:e9:0a:b6:
                    3e:71:12:25:3e:5b:f4:05:28:a6:d1:24:ed:16:71:
                    0c:95:00:f0:b0:37:d7:d9:5d:9c:41:d1:70:42:e1:
                    90:b7:62:a8:a3:ad:bb:0c:5c:96:6a:9a:86:f1:69:
                    3a:5b:ea:94:e1:6a:08:ad:89:03:24:10:25:f0:1a:
                    4e:bb:62:bc:ca:c0:b6:8e:47:4e:e3:70:40:03:6b:
                    2c:13:c9:e2:4f:8c:c1:d1:20:36:b9:d3:7b:3c:22:
                    c8:e6:f5:ed:d4:a1:b0:83:46:b6:49:43:a8:9c:7c:
                    69:d5:4c:f2:9c:8e:4f:cd:1c:57:bd:37:2e:37:b0:
                    48:8b:5f:ad:b6:b0:17:8f:54:60:5a:e1:ed:b2:11:
                    3a:bc:36:cb:34:7f:95:62:59:7a:63:2e:c1:71:0f:
                    2d:7c:91:9c:80:f9:e6:f7:39:2d:8f:4c:9e:2c:45:
                    fd:46:2b:54:21:23:fa:68:9c:3b:c4:40:dd:f2:b0:
                    70:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:0C:6B:A0:3E:E7:2B:ED:80:CF:0F:8A:25:CE:9E:CB:E0:51:42:D8
            X509v3 Authority Key Identifier:
                keyid:04:C4:B4:65:03:20:74:81:A5:E2:9C:E8:E4:50:E8:3C:91:7B:2F:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/04C4B46503207481A5E29CE8E450E83C917B2F22.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/04C4B46503207481A5E29CE8E450E83C917B2F22.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3CBkf4rHLX1rWqXcgt5sHj57NtN7NYzoc6CjY32YajXv/1/3137372e33362e3133342e302f32342d3234203d3e20323632343031.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.36.134.0/24

    Signature Algorithm: sha256WithRSAEncryption
         28:2f:12:b4:9b:3c:28:a1:ee:c1:7b:a6:af:22:b5:58:f0:c2:
         d5:62:ad:ab:16:c7:63:a2:36:4f:05:29:28:b4:71:05:dc:15:
         d0:d9:54:ac:01:cc:fe:69:f3:c5:85:77:b0:81:4d:50:38:4b:
         82:f0:98:e2:4d:70:15:ee:d0:55:71:0b:c6:0e:38:55:22:c3:
         d9:d0:64:ca:30:83:06:8a:b9:af:67:db:16:39:c0:ef:d7:b0:
         b8:2c:67:2f:64:7c:06:3a:67:a9:14:41:56:29:aa:93:42:21:
         eb:49:0e:e8:65:f0:a7:39:ad:76:88:e0:17:29:08:fa:10:24:
         91:c5:24:b5:81:9e:d5:ca:ed:13:e6:0f:b8:39:08:ae:fd:8b:
         13:3e:8e:57:df:c1:7d:a4:89:d2:9d:fe:c5:16:16:43:c5:b5:
         08:50:c2:e4:e8:21:21:8e:b9:b9:bc:9a:ce:25:6a:5d:27:50:
         39:12:ce:5e:4f:d6:fe:63:73:88:2c:36:97:a0:63:c5:12:f4:
         f2:c7:35:d9:ce:68:45:ac:72:2e:7a:69:2e:8a:32:56:37:38:
         e4:67:e0:60:65:79:fc:d6:b4:e4:26:9d:e6:d4:bd:86:be:03:
         83:48:de:01:91:a2:96:d1:4e:5e:db:e9:bb:ee:a0:19:51:e3:
         3a:31:3d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:21:05 2024 by rpki-client on console-fra.rpki-client.org