Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa
File:                     323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa (raw, json)
Hash identifier:          /xb43dphbZmaZq+GBWxAKpjkx5BYBOMnBczunPn/Wj8=
Subject key identifier:   0D:24:AB:12:84:52:FD:CF:8C:11:24:48:F3:7C:8E:C0:8F:51:6D:1E
Certificate issuer:       /CN=47820B403DF38273DD737A919A52D4BF6FBD96E3
Certificate serial:       06DBE33005336206706C52506C80064C82D20A96
Authority key identifier: 47:82:0B:40:3D:F3:82:73:DD:73:7A:91:9A:52:D4:BF:6F:BD:96:E3
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/47820B403DF38273DD737A919A52D4BF6FBD96E3.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa
Signing time:             Thu 15 May 2025 13:36:09 +0000
ROA not before:           Thu 15 May 2025 13:31:09 +0000
ROA not after:            Thu 14 May 2026 13:36:09 +0000
asID:                     273713
IP address blocks:        2804:8b20:8000::/33 maxlen: 33
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/47820B403DF38273DD737A919A52D4BF6FBD96E3.crl
                          rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/47820B403DF38273DD737A919A52D4BF6FBD96E3.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/47820B403DF38273DD737A919A52D4BF6FBD96E3.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 11 Jun 2025 10:44:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:db:e3:30:05:33:62:06:70:6c:52:50:6c:80:06:4c:82:d2:0a:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=47820B403DF38273DD737A919A52D4BF6FBD96E3
        Validity
            Not Before: May 15 13:31:09 2025 GMT
            Not After : May 14 13:36:09 2026 GMT
        Subject: CN=0D24AB128452FDCF8C112448F37C8EC08F516D1E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:6e:ca:1c:68:bc:1d:81:36:52:ca:07:c1:1d:
                    ff:01:26:d9:95:85:23:3f:02:6f:00:1d:e8:29:48:
                    d3:e2:8e:d6:a2:ba:d5:89:b0:c4:d4:f8:49:b7:3c:
                    b6:01:a5:c2:a9:c3:00:98:16:4a:5e:09:f0:b4:cd:
                    02:96:71:81:06:78:22:8d:80:74:5c:54:38:2a:40:
                    42:81:6d:72:59:6c:22:9e:de:70:d3:83:f2:50:a7:
                    bf:0f:af:d9:2e:f2:e8:68:87:5d:5c:42:77:96:54:
                    43:1d:ef:50:9d:25:24:b0:f7:6a:dd:25:47:b3:58:
                    5d:80:bb:2b:b0:26:80:b2:56:7c:df:ad:fa:ff:18:
                    2a:38:11:c8:22:bf:1b:9c:b5:33:80:bb:cb:01:f2:
                    2b:15:38:8f:1a:07:60:9f:30:3e:72:da:c2:bd:26:
                    24:e0:6f:ba:3c:d8:a8:57:63:5c:4d:28:e8:2c:f4:
                    ee:23:4d:2c:5a:d2:9e:6a:fa:ca:32:59:e5:8d:2f:
                    fe:be:8d:56:f6:4a:35:db:e2:9c:ea:bd:36:0a:cd:
                    1b:f8:34:27:f7:3a:9b:23:d9:5f:0b:ba:3d:cd:66:
                    77:8e:bd:92:7c:95:77:5f:d1:2a:ca:c1:f3:48:ec:
                    53:81:88:13:91:1e:3c:14:74:77:7d:3f:b8:3f:09:
                    da:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:24:AB:12:84:52:FD:CF:8C:11:24:48:F3:7C:8E:C0:8F:51:6D:1E
            X509v3 Authority Key Identifier:
                keyid:47:82:0B:40:3D:F3:82:73:DD:73:7A:91:9A:52:D4:BF:6F:BD:96:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/47820B403DF38273DD737A919A52D4BF6FBD96E3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/47820B403DF38273DD737A919A52D4BF6FBD96E3.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a383030303a3a2f33332d3333203d3e20323733373133.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:8b20:8000::/33

    Signature Algorithm: sha256WithRSAEncryption
         50:fd:95:8a:9d:db:ee:d8:d2:43:60:f6:ea:06:bd:08:b1:a3:
         35:97:56:af:6c:13:ed:ad:07:85:a3:7b:ba:ca:13:ff:ef:ef:
         07:00:d9:3d:9f:76:99:26:73:25:17:ad:37:fc:08:86:9f:fa:
         02:db:48:c1:b2:58:08:d7:3e:4f:33:2a:37:94:3e:34:51:72:
         61:12:9b:24:fa:1e:22:31:ad:99:b7:aa:04:ac:0a:0a:5f:aa:
         fa:6e:bb:d4:5b:9d:58:a7:b0:e0:da:c7:13:6a:52:18:a0:ae:
         34:91:9c:1a:ce:87:2e:79:08:2c:50:c0:d1:73:0e:af:26:ef:
         76:35:c7:4d:9e:2e:07:30:2b:9b:33:d5:e6:43:c4:e1:60:7b:
         30:20:c1:bb:03:29:80:9a:ea:10:2c:e9:11:68:5f:dc:d9:dd:
         00:54:b1:ce:a3:d5:96:19:39:92:d0:37:a0:f0:25:73:e8:10:
         7f:f8:9c:30:48:9d:97:e0:af:28:bf:34:a6:a5:ee:49:0e:07:
         ae:05:8d:d8:36:33:ec:e5:88:4d:96:32:4f:40:62:e9:9e:1a:
         34:d5:ae:af:81:25:14:24:bd:5f:8e:12:1b:e4:c0:4f:20:84:
         58:d1:35:66:e6:7f:3b:9f:91:ac:71:ff:d9:95:5d:4f:0d:bf:
         e2:f6:b3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:12:34 2025 by rpki-client