Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa
File:                     323830343a386232303a3a2f33332d3333203d3e20323733373133.roa (raw, json)
Hash identifier:          3ljnvEs168PANDk6fuqVmn8qURhV4rHgMoJA9zlvVTc=
Subject key identifier:   A4:89:43:64:7E:27:A8:CF:0D:6B:24:4A:1A:28:A2:B8:C3:5C:53:F7
Certificate issuer:       /CN=14EAF97776E5931F0794C486B6DAF583EDD66681
Certificate serial:       159E399BFD8D58B6D772F84EF5F2AA14D19591C3
Authority key identifier: 14:EA:F9:77:76:E5:93:1F:07:94:C4:86:B6:DA:F5:83:ED:D6:66:81
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/14EAF97776E5931F0794C486B6DAF583EDD66681.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa
Signing time:             Wed 08 May 2024 15:42:25 +0000
ROA not before:           Wed 08 May 2024 15:37:25 +0000
ROA not after:            Wed 07 May 2025 15:42:25 +0000
asID:                     273713
IP address blocks:        2804:8b20::/33 maxlen: 33

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/14EAF97776E5931F0794C486B6DAF583EDD66681.crl
                          rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/14EAF97776E5931F0794C486B6DAF583EDD66681.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/14EAF97776E5931F0794C486B6DAF583EDD66681.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 16 Jun 2024 19:20:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:9e:39:9b:fd:8d:58:b6:d7:72:f8:4e:f5:f2:aa:14:d1:95:91:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14EAF97776E5931F0794C486B6DAF583EDD66681
        Validity
            Not Before: May  8 15:37:25 2024 GMT
            Not After : May  7 15:42:25 2025 GMT
        Subject: CN=A48943647E27A8CF0D6B244A1A28A2B8C35C53F7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:0f:c3:64:5e:6d:54:6b:bb:83:14:73:46:0f:
                    a2:cc:8e:5f:fc:a2:b3:75:1b:82:70:31:8b:4e:1a:
                    a1:21:27:d8:eb:80:05:4d:0e:8c:ba:df:14:a4:80:
                    d5:50:2a:a3:fe:1f:e2:b2:57:9e:7a:61:a6:9d:29:
                    fc:ff:da:c7:b7:4b:ee:1d:24:c1:4a:d5:38:54:85:
                    2e:c5:8c:f3:2e:90:98:52:fd:d3:61:80:02:34:94:
                    77:20:9b:c4:a0:6e:69:c6:18:fe:f7:d2:4a:1e:95:
                    b1:56:e4:6b:d8:9b:c7:71:af:0e:e5:71:47:5d:b3:
                    fa:4d:d5:1f:c9:1d:7c:49:c2:15:80:7c:f6:05:ed:
                    3d:d9:47:62:62:89:c0:27:50:8f:7f:3e:98:f2:4d:
                    3d:40:45:3c:59:ae:8b:33:f2:e8:18:01:fc:ef:75:
                    e8:1e:ec:34:f5:77:4e:8a:23:0d:5e:94:4c:62:f7:
                    9f:fd:7c:52:34:d3:40:95:52:be:99:6e:e4:ba:1e:
                    d4:e9:35:47:d0:bf:3d:da:ba:e0:02:22:0d:be:5b:
                    04:af:8b:51:61:a0:30:b0:2b:02:47:14:6e:b2:65:
                    e1:5c:b0:94:7f:ad:b4:fc:07:e8:e4:f1:1d:ca:36:
                    e6:a1:98:54:c8:9a:c9:f2:6e:c2:e3:fd:5d:44:fd:
                    ba:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:89:43:64:7E:27:A8:CF:0D:6B:24:4A:1A:28:A2:B8:C3:5C:53:F7
            X509v3 Authority Key Identifier:
                keyid:14:EA:F9:77:76:E5:93:1F:07:94:C4:86:B6:DA:F5:83:ED:D6:66:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/14EAF97776E5931F0794C486B6DAF583EDD66681.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/14EAF97776E5931F0794C486B6DAF583EDD66681.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cmTS1HcuYRBcdviJbx7YaDrDqDA8UAPFjwPK5FuUu6Z/0/323830343a386232303a3a2f33332d3333203d3e20323733373133.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:8b20::/33

    Signature Algorithm: sha256WithRSAEncryption
         0f:5c:4e:0c:a4:7d:f5:ed:c9:45:7c:7f:28:4a:c4:f7:99:4b:
         11:8f:28:1f:a0:98:3c:e1:96:ff:c8:a4:b8:89:27:47:36:2d:
         cb:ce:bc:d6:40:39:b2:92:5e:7f:57:30:98:de:aa:9e:fc:2f:
         f6:2f:5d:b5:fa:88:ed:60:f3:5f:03:6c:f5:c9:d3:89:da:a8:
         b9:62:6e:b2:10:f0:70:71:ed:54:f7:b7:c2:8d:cf:70:ca:49:
         3a:9f:be:37:10:06:92:af:79:c2:03:d1:6f:49:76:b8:37:8a:
         0f:5f:49:8e:8b:d8:9e:41:35:1c:ba:67:0b:4c:2e:7c:e9:f0:
         c9:fb:c7:ea:06:c8:6a:f4:89:a7:ab:4a:46:99:fb:7f:7e:f5:
         a6:ca:3c:9b:3d:00:01:e4:e7:24:71:26:06:0d:09:96:1a:5c:
         a9:10:9c:ca:2f:45:42:55:10:ee:a6:80:b1:65:ab:8d:2b:f7:
         99:c1:b8:ad:b1:ae:ec:52:9b:77:ae:43:d6:c3:64:12:95:45:
         7d:75:13:91:4c:d6:73:87:f1:79:34:4e:19:67:1b:19:2d:54:
         d7:fe:ed:34:7f:fe:61:eb:94:67:c9:e5:06:08:56:98:de:b1:
         3c:70:1f:08:8d:d1:56:49:9b:67:bc:8c:ea:f0:d9:35:94:17:
         8d:ab:3d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 07:43:49 2024 by rpki-client on console-ams.rpki-client.org