Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/3137302e3233392e3131302e302f32332d3233203d3e20323636333438.roa
File:                     3137302e3233392e3131302e302f32332d3233203d3e20323636333438.roa (raw, json)
Hash identifier:          ouJ3ZIs0Bj5p4O4+pooyjRzAR+CI2SKZ7w42mGELhBs=
Subject key identifier:   2B:8F:27:D2:54:B2:55:1C:02:4E:80:4C:12:AF:EF:B4:B0:46:F0:0D
Certificate issuer:       /CN=273782B997878A9415F132214E8D09CFA971572F
Certificate serial:       51D54C0E5E148F3D2CE5EA5886CDD5F7D6AF613F
Authority key identifier: 27:37:82:B9:97:87:8A:94:15:F1:32:21:4E:8D:09:CF:A9:71:57:2F
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/273782B997878A9415F132214E8D09CFA971572F.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/3137302e3233392e3131302e302f32332d3233203d3e20323636333438.roa
Signing time:             Wed 03 Apr 2024 18:31:55 +0000
ROA not before:           Wed 03 Apr 2024 18:26:55 +0000
ROA not after:            Wed 02 Apr 2025 18:31:55 +0000
asID:                     266348
IP address blocks:        170.239.110.0/23 maxlen: 23

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/273782B997878A9415F132214E8D09CFA971572F.crl
                          rsync://rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/273782B997878A9415F132214E8D09CFA971572F.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/273782B997878A9415F132214E8D09CFA971572F.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 10:18:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            51:d5:4c:0e:5e:14:8f:3d:2c:e5:ea:58:86:cd:d5:f7:d6:af:61:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=273782B997878A9415F132214E8D09CFA971572F
        Validity
            Not Before: Apr  3 18:26:55 2024 GMT
            Not After : Apr  2 18:31:55 2025 GMT
        Subject: CN=2B8F27D254B2551C024E804C12AFEFB4B046F00D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:86:c1:3b:c7:4b:d1:7b:41:0e:fb:06:4b:9a:
                    40:a9:e9:42:28:d7:be:5d:f0:de:6d:ed:bf:35:e1:
                    26:39:88:6c:e9:9e:8f:06:25:91:2a:75:4d:f7:cc:
                    74:28:e4:54:60:14:6e:1e:bb:c8:40:e6:ad:94:78:
                    fc:54:0f:1f:37:2a:0f:ff:c4:e6:a6:68:36:6a:0e:
                    df:83:9d:35:b4:d5:bb:51:33:36:e5:0a:71:b7:72:
                    03:18:bb:85:fc:00:40:be:ed:2e:b2:8f:75:95:9a:
                    de:73:98:fc:2c:8a:dc:cf:42:1f:a5:31:ea:46:5d:
                    7e:3b:f3:9b:d1:82:90:c3:48:48:49:97:be:da:a8:
                    5f:27:16:5a:7e:14:93:4d:2b:a3:4b:20:dc:93:5b:
                    64:b9:29:36:c6:95:17:d0:21:87:09:fb:7c:9a:e1:
                    b0:45:b7:f6:70:aa:c9:56:ad:d4:6d:8c:92:93:7b:
                    01:d6:79:f7:d7:cb:b0:ae:21:2e:71:dd:dd:4a:0d:
                    3e:20:21:34:66:85:dc:ec:0c:0e:be:36:3f:87:c6:
                    be:d9:79:58:a3:ca:72:1a:9c:9e:bf:19:e7:94:db:
                    fc:11:c4:58:a9:f6:15:8d:5f:14:10:46:47:2b:71:
                    a6:df:88:dd:95:4a:2f:6d:49:d9:a1:09:15:b6:6b:
                    62:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:8F:27:D2:54:B2:55:1C:02:4E:80:4C:12:AF:EF:B4:B0:46:F0:0D
            X509v3 Authority Key Identifier:
                keyid:27:37:82:B9:97:87:8A:94:15:F1:32:21:4E:8D:09:CF:A9:71:57:2F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/273782B997878A9415F132214E8D09CFA971572F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/273782B997878A9415F132214E8D09CFA971572F.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/41zokyXVfAchhiMGucCz98MXiq6N991QjYbV8oGzaiZE/1/3137302e3233392e3131302e302f32332d3233203d3e20323636333438.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.239.110.0/23

    Signature Algorithm: sha256WithRSAEncryption
         64:be:4e:e9:f9:af:e6:61:bc:3b:e2:32:27:cc:d5:14:e8:13:
         d0:49:03:59:f0:d0:39:21:c9:19:d4:fe:e9:68:08:c7:71:75:
         d1:8c:e9:5b:36:f4:8d:02:c0:db:69:4a:33:4d:71:ca:29:0b:
         3a:25:87:31:c3:28:b9:9f:a3:7e:76:46:00:ac:97:fb:a1:e3:
         44:ac:3f:56:7f:7a:91:92:8d:7d:fa:e9:3c:8c:62:a8:2f:2e:
         bf:ec:2a:3d:94:09:5b:d3:55:46:61:27:d8:cb:ab:9e:94:fd:
         5d:2f:2e:e6:d4:bb:0b:58:cf:b2:d6:a7:f8:72:86:fc:71:72:
         1b:9f:30:67:1f:d1:76:e5:6e:2e:78:88:86:c5:a2:36:61:45:
         29:10:3b:a2:e4:73:b6:f8:bd:07:4f:4c:42:fe:10:cb:8b:2e:
         6f:d2:45:e8:ae:19:c1:9d:ba:a6:7d:69:5d:f9:d5:79:0e:4e:
         14:c8:8b:43:42:80:94:ce:80:24:cb:3d:02:bb:ca:6b:8f:a2:
         fa:f2:f3:5e:7e:b8:50:52:8e:58:50:b6:48:75:8c:e6:70:e0:
         3e:63:2f:68:55:54:c2:26:7f:4c:23:71:1a:ba:bf:dc:dd:46:
         5f:c3:97:ca:f4:c9:7e:d3:c3:5c:28:16:4f:e8:f4:f3:ae:27:
         1a:c5:54:c6
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUUdVMDl4Ujz0s5epYhs3V99avYT8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjczNzgyQjk5Nzg3OEE5NDE1RjEzMjIxNEU4RDA5Q0ZB
OTcxNTcyRjAeFw0yNDA0MDMxODI2NTVaFw0yNTA0MDIxODMxNTVaMDMxMTAvBgNV
BAMTKDJCOEYyN0QyNTRCMjU1MUMwMjRFODA0QzEyQUZFRkI0QjA0NkYwMEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZhsE7x0vRe0EO+wZLmkCp6UIo
175d8N5t7b814SY5iGzpno8GJZEqdU33zHQo5FRgFG4eu8hA5q2UePxUDx83Kg//
xOamaDZqDt+DnTW01btRMzblCnG3cgMYu4X8AEC+7S6yj3WVmt5zmPwsitzPQh+l
MepGXX4785vRgpDDSEhJl77aqF8nFlp+FJNNK6NLINyTW2S5KTbGlRfQIYcJ+3ya
4bBFt/ZwqslWrdRtjJKTewHWeffXy7CuIS5x3d1KDT4gITRmhdzsDA6+Nj+Hxr7Z
eVijynIanJ6/GeeU2/wRxFip9hWNXxQQRkcrcabfiN2VSi9tSdmhCRW2a2I7AgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUK48n0lSyVRwCToBMEq/vtLBG8A0wHwYDVR0j
BBgwFoAUJzeCuZeHipQV8TIhTo0Jz6lxVy8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNDF6b2t5WFZmQWNoaGlNR3VjQ3o5OE1YaXE2Tjk5MVFqWWJWOG9HemFp
WkUvMS8yNzM3ODJCOTk3ODc4QTk0MTVGMTMyMjE0RThEMDlDRkE5NzE1NzJGLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzI3Mzc4MkI5OTc4NzhBOTQx
NUYxMzIyMTRFOEQwOUNGQTk3MTU3MkYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzQxem9reVhWZkFjaGhpTUd1Y0N6OThNWGlxNk45OTFRalliVjhvR3phaVpFLzEv
MzEzNzMwMmUzMjMzMzkyZTMxMzEzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy
MzYzNjMzMzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAarvbjANBgkqhkiG9w0BAQsFAAOCAQEAZL5O
6fmv5mG8O+IyJ8zVFOgT0EkDWfDQOSHJGdT+6WgIx3F10YzpWzb0jQLA22lKM01x
yikLOiWHMcMouZ+jfnZGAKyX+6HjRKw/Vn96kZKNffrpPIxiqC8uv+wqPZQJW9NV
RmEn2MurnpT9XS8u5tS7C1jPstan+HKG/HFyG58wZx/RduVuLniIhsWiNmFFKRA7
ouRztvi9B09MQv4Qy4sub9JF6K4ZwZ26pn1pXfnVeQ5OFMiLQ0KAlM6AJMs9ArvK
a4+i+vLzXn64UFKOWFC2SHWM5nDgPmMvaFVUwiZ/TCNxGrq/3N1GX8OXyvTJftPD
XCgWT+j0864nGsVUxg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:30:06 2024 by rpki-client on console-fra.rpki-client.org