Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230362e302f32332d3233203d3e20323636353434.roa
File:                     34352e36352e3230362e302f32332d3233203d3e20323636353434.roa (raw, json)
Hash identifier:          dKH5+TtXiJzbmXC6uhYfTEatb/QA4MfJHTTM1xkrfTo=
Subject key identifier:   F1:4C:5E:3A:00:3B:9F:1B:67:E8:0F:9C:36:2F:D1:AF:C6:63:DC:F5
Certificate issuer:       /CN=3806DB121C9269AE400CDA71100F88AF76F0469C
Certificate serial:       6E8F92C4B0E74FEB0B033069C1B509A9A9FA869D
Authority key identifier: 38:06:DB:12:1C:92:69:AE:40:0C:DA:71:10:0F:88:AF:76:F0:46:9C
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3806DB121C9269AE400CDA71100F88AF76F0469C.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230362e302f32332d3233203d3e20323636353434.roa
Signing time:             Thu 08 May 2025 19:04:25 +0000
ROA not before:           Thu 08 May 2025 18:59:25 +0000
ROA not after:            Thu 07 May 2026 19:04:25 +0000
asID:                     266544
IP address blocks:        45.65.206.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/3806DB121C9269AE400CDA71100F88AF76F0469C.crl
                          rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/3806DB121C9269AE400CDA71100F88AF76F0469C.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3806DB121C9269AE400CDA71100F88AF76F0469C.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 12 Jun 2025 00:39:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6e:8f:92:c4:b0:e7:4f:eb:0b:03:30:69:c1:b5:09:a9:a9:fa:86:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3806DB121C9269AE400CDA71100F88AF76F0469C
        Validity
            Not Before: May  8 18:59:25 2025 GMT
            Not After : May  7 19:04:25 2026 GMT
        Subject: CN=F14C5E3A003B9F1B67E80F9C362FD1AFC663DCF5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:bd:2f:a6:7b:b4:5d:d5:2b:ec:01:0b:db:e2:
                    7f:4f:be:43:1e:95:e3:40:39:d6:dc:75:fd:a0:62:
                    f9:f6:2a:7e:d3:57:7f:02:69:45:92:7b:dd:3e:98:
                    f8:4d:66:a9:65:43:60:68:1e:46:9d:ab:b8:86:28:
                    7f:e7:a7:a0:74:c2:69:2a:a0:7b:d8:7a:5e:dc:66:
                    86:62:44:b4:7f:c7:a2:ea:45:28:89:06:6c:62:16:
                    cd:13:9f:da:85:f4:2f:54:ba:27:00:58:63:7c:39:
                    4f:05:c2:bb:e1:50:0e:e4:e0:71:92:d2:64:6a:5e:
                    99:d2:4b:2f:4a:be:de:47:ba:72:a3:da:f4:e1:69:
                    fb:18:2e:81:ec:d1:ab:f4:d6:36:22:34:94:a5:02:
                    85:fe:75:a2:f7:1a:90:48:e9:0a:d7:02:77:92:6b:
                    75:7b:51:57:dc:d2:d7:47:b0:77:47:46:b3:f8:6c:
                    6b:76:ca:4c:c4:17:9c:a9:39:4a:fe:08:20:48:a0:
                    5d:6f:b8:22:ef:90:1b:6d:9d:6d:c0:1e:6d:b7:cb:
                    ff:a9:97:da:25:07:90:7e:9d:3e:81:81:7f:ea:52:
                    c3:03:45:ce:e0:55:1f:a1:37:d4:a3:95:33:43:3c:
                    17:26:6a:b5:9e:92:1c:b6:e9:a2:59:19:0d:36:f5:
                    0e:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:4C:5E:3A:00:3B:9F:1B:67:E8:0F:9C:36:2F:D1:AF:C6:63:DC:F5
            X509v3 Authority Key Identifier:
                keyid:38:06:DB:12:1C:92:69:AE:40:0C:DA:71:10:0F:88:AF:76:F0:46:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/3806DB121C9269AE400CDA71100F88AF76F0469C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3806DB121C9269AE400CDA71100F88AF76F0469C.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/5X5L7VeHcHtN19pEZrWuL6Gif3DvMRo3AQSJ9gLY6xLn/0/34352e36352e3230362e302f32332d3233203d3e20323636353434.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.65.206.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7e:8e:54:11:ca:4e:38:ff:83:ea:37:f0:bd:5d:1f:c0:96:0c:
         b5:a9:9b:07:4e:85:53:b1:c6:9b:36:86:57:f5:ad:57:c2:1d:
         03:f1:16:4e:d9:eb:d8:b0:74:37:36:4c:a4:84:c9:7a:10:55:
         11:25:59:17:4a:1f:f6:dc:01:77:22:e0:5b:30:ae:9d:f3:bb:
         e1:d6:8f:83:ef:2d:61:37:9f:b7:50:a9:7c:2d:67:4a:eb:42:
         20:61:b5:88:65:62:2d:f9:05:7b:89:df:67:1b:7a:25:86:5f:
         1f:84:0f:13:ad:eb:41:a8:b1:92:3a:e8:01:44:a9:aa:78:1c:
         2e:1a:ea:04:84:71:61:66:3f:4d:02:cd:20:2c:40:fc:72:55:
         b6:a2:fa:79:e0:35:68:c7:d1:8c:ec:31:9f:f5:bf:96:81:a3:
         ea:88:dd:76:fa:e0:06:98:23:74:b1:f1:37:85:ee:28:fc:86:
         0a:11:40:99:02:d8:d0:95:42:d7:85:17:85:09:7f:65:00:c4:
         2d:b9:9d:8c:52:05:b1:02:84:f5:d9:d1:99:95:16:d5:56:1b:
         e3:1a:8b:b2:c9:7b:42:2f:eb:ce:32:59:c9:78:4a:90:af:e1:
         ba:e4:07:f9:5a:90:4e:f5:f7:fa:51:63:14:dd:59:e9:6a:8b:
         73:73:f7:27
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIUbo+SxLDnT+sLAzBpwbUJqan6hp0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzgwNkRCMTIxQzkyNjlBRTQwMENEQTcxMTAwRjg4QUY3
NkYwNDY5QzAeFw0yNTA1MDgxODU5MjVaFw0yNjA1MDcxOTA0MjVaMDMxMTAvBgNV
BAMTKEYxNEM1RTNBMDAzQjlGMUI2N0U4MEY5QzM2MkZEMUFGQzY2M0RDRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnvS+me7Rd1SvsAQvb4n9PvkMe
leNAOdbcdf2gYvn2Kn7TV38CaUWSe90+mPhNZqllQ2BoHkadq7iGKH/np6B0wmkq
oHvYel7cZoZiRLR/x6LqRSiJBmxiFs0Tn9qF9C9UuicAWGN8OU8FwrvhUA7k4HGS
0mRqXpnSSy9Kvt5HunKj2vThafsYLoHs0av01jYiNJSlAoX+daL3GpBI6QrXAneS
a3V7UVfc0tdHsHdHRrP4bGt2ykzEF5ypOUr+CCBIoF1vuCLvkBttnW3AHm23y/+p
l9olB5B+nT6BgX/qUsMDRc7gVR+hN9SjlTNDPBcmarWekhy26aJZGQ029Q5tAgMB
AAGjggJPMIICSzAdBgNVHQ4EFgQU8UxeOgA7nxtn6A+cNi/Rr8Zj3PUwHwYDVR0j
BBgwFoAUOAbbEhySaa5ADNpxEA+Ir3bwRpwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vNVg1TDdWZUhjSHROMTlwRVpyV3VMNkdpZjNEdk1SbzNBUVNKOWdMWTZ4
TG4vMC8zODA2REIxMjFDOTI2OUFFNDAwQ0RBNzExMDBGODhBRjc2RjA0NjlDLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzM4MDZEQjEyMUM5MjY5QUU0
MDBDREE3MTEwMEY4OEFGNzZGMDQ2OUMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB
mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzVYNUw3VmVIY0h0TjE5cEVacld1TDZHaWYzRHZNUm8zQVFTSjlnTFk2eExuLzAv
MzQzNTJlMzYzNTJlMzIzMDM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzNjM2
MzUzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH
AQH/BBAwDjAMBAIAATAGAwQBLUHOMA0GCSqGSIb3DQEBCwUAA4IBAQB+jlQRyk44
/4PqN/C9XR/Algy1qZsHToVTscabNoZX9a1Xwh0D8RZO2evYsHQ3NkykhMl6EFUR
JVkXSh/23AF3IuBbMK6d87vh1o+D7y1hN5+3UKl8LWdK60IgYbWIZWIt+QV7id9n
G3olhl8fhA8TretBqLGSOugBRKmqeBwuGuoEhHFhZj9NAs0gLED8clW2ovp54DVo
x9GM7DGf9b+WgaPqiN12+uAGmCN0sfE3he4o/IYKEUCZAtjQlULXhReFCX9lAMQt
uZ2MUgWxAoT12dGZlRbVVhvjGouyyXtCL+vOMlnJeEqQr+G65Af5WpBO9ff6UWMU
3Vnpaotzc/cn
-----END CERTIFICATE-----
Generated at Wed Jun 11 07:36:42 2025 by rpki-client