Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/323830343a3164633a3a2f33322d3438203d3e203533323032.roa
File:                     323830343a3164633a3a2f33322d3438203d3e203533323032.roa (raw, json)
Hash identifier:          x5fCayhx91hAKTyywYtITVDZN3Lox7aK4A9JypOrhyQ=
Subject key identifier:   4E:0D:7C:1D:62:16:04:82:F2:0D:0A:3E:EC:F0:7F:0D:6B:FD:79:04
Certificate issuer:       /CN=FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA
Certificate serial:       569388DC38B19212460A7A27EB81017F049EAC99
Authority key identifier: FB:48:35:D4:1A:7B:3A:7F:4D:75:86:CB:20:38:F3:C8:2A:77:56:CA
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/323830343a3164633a3a2f33322d3438203d3e203533323032.roa
Signing time:             Thu 04 Apr 2024 09:53:56 +0000
ROA not before:           Thu 04 Apr 2024 09:48:56 +0000
ROA not after:            Thu 03 Apr 2025 09:53:56 +0000
asID:                     53202
IP address blocks:        2804:1dc::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.crl
                          rsync://rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 14:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            56:93:88:dc:38:b1:92:12:46:0a:7a:27:eb:81:01:7f:04:9e:ac:99
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA
        Validity
            Not Before: Apr  4 09:48:56 2024 GMT
            Not After : Apr  3 09:53:56 2025 GMT
        Subject: CN=4E0D7C1D62160482F20D0A3EECF07F0D6BFD7904
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:84:8d:3c:f7:e1:cd:10:d5:d7:3f:79:6f:0d:
                    0b:be:b8:59:02:6f:04:bf:00:76:d1:e9:4f:c8:80:
                    05:42:8b:33:81:b3:ca:eb:2d:46:92:8e:a5:df:f3:
                    2c:ca:34:2a:3d:f3:59:01:e8:bc:3a:97:e2:fc:ca:
                    70:ba:42:ba:36:71:b0:c1:54:d8:75:59:22:99:38:
                    34:f5:08:c2:bf:9b:55:07:05:4c:16:64:b8:6b:8b:
                    cd:18:b9:7e:9d:d2:0b:3e:fc:57:82:f1:f2:75:90:
                    e6:45:a5:fc:b7:36:b6:9a:c5:0c:ef:f8:8e:d6:33:
                    37:61:bd:59:70:0e:e5:47:1f:a0:63:9f:1c:a8:d0:
                    1e:f0:35:c2:52:f0:89:a0:81:5e:51:15:a3:98:3f:
                    42:88:c0:e2:b5:94:6c:10:4f:74:5c:e3:05:9d:60:
                    e0:4f:da:ca:7a:b7:a5:ed:d4:55:70:60:79:c0:6a:
                    57:78:b1:74:26:8f:da:f8:53:c6:df:c4:bb:92:aa:
                    cf:59:cd:69:00:77:73:56:da:1c:75:18:17:71:26:
                    16:ca:88:4b:cc:5f:98:6b:e9:9d:c0:ce:7c:34:03:
                    f7:b7:85:47:59:bb:e0:10:2f:8a:a6:77:9c:37:dc:
                    83:1e:3e:a8:bc:50:8c:1f:fe:63:76:d4:a7:08:dc:
                    cf:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:0D:7C:1D:62:16:04:82:F2:0D:0A:3E:EC:F0:7F:0D:6B:FD:79:04
            X509v3 Authority Key Identifier:
                keyid:FB:48:35:D4:1A:7B:3A:7F:4D:75:86:CB:20:38:F3:C8:2A:77:56:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FB4835D41A7B3A7F4D7586CB2038F3C82A7756CA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/4cqcJWksQCUwumB7M3N3VD8G5WEn6wCDWBuKZZakY4Hv/1/323830343a3164633a3a2f33322d3438203d3e203533323032.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:1dc::/32

    Signature Algorithm: sha256WithRSAEncryption
         7f:1f:25:78:87:df:44:0d:4b:95:08:28:66:75:2e:ba:18:95:
         a0:54:57:a7:0b:34:1d:55:51:2e:41:ea:6e:5c:11:ee:98:0b:
         c1:3c:ef:10:e8:a7:77:54:29:86:b2:ac:71:4e:da:d6:c3:b4:
         26:44:4b:58:c8:05:ac:49:57:fe:18:3f:01:a1:d2:f4:61:d2:
         4d:c0:88:ac:12:c8:78:1b:15:27:7e:d1:6c:28:a7:cf:a4:39:
         d9:2b:e8:9f:75:ec:56:33:db:01:37:35:41:83:4b:ae:ad:1d:
         9f:90:a5:8a:76:63:90:45:c0:60:20:14:cd:47:75:d5:14:ce:
         5c:98:0d:10:15:a9:7b:07:1e:a0:63:4e:86:52:19:75:cd:3f:
         ba:00:c4:eb:a4:b6:85:0d:ab:71:57:f1:7d:5d:80:99:9c:b7:
         e5:2b:90:ef:0a:6c:c3:57:9b:bd:d6:5d:32:74:c0:05:19:05:
         20:75:e1:dd:de:6b:52:8a:34:66:4b:b1:d4:06:7c:41:66:cd:
         e4:16:52:8f:c1:e0:f4:73:3a:d2:f6:59:cc:d9:4e:08:81:ce:
         bb:1e:7d:dd:9e:5f:b4:fa:9f:2f:53:a0:1a:f8:51:2b:08:95:
         0a:a7:9e:96:9d:a6:09:86:6e:4d:74:05:91:72:1e:51:0b:10:
         be:93:70:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:31:50 2024 by rpki-client on console-fra.rpki-client.org