Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa
File:                     323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa (raw, json)
Hash identifier:          SzISRJ5mzh2IHeKcxt4YwgUjHMZ5Jehey22qPeYjkoo=
Subject key identifier:   FC:D2:B8:68:2B:EE:97:7A:53:03:E9:81:E9:63:BB:AD:FA:D5:A7:F2
Certificate issuer:       /CN=910C13ACE16F58034FB65130B4A6FFAA2E062704
Certificate serial:       65990C822758AA4E1F1578E2EAD33A698060EC37
Authority key identifier: 91:0C:13:AC:E1:6F:58:03:4F:B6:51:30:B4:A6:FF:AA:2E:06:27:04
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/910C13ACE16F58034FB65130B4A6FFAA2E062704.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa
Signing time:             Tue 01 Apr 2025 15:15:59 +0000
ROA not before:           Tue 01 Apr 2025 15:10:59 +0000
ROA not after:            Tue 31 Mar 2026 15:15:59 +0000
asID:                     262503
IP address blocks:        2804:2be0:7200::/40 maxlen: 40
Validation:               Failed, CRL has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            65:99:0c:82:27:58:aa:4e:1f:15:78:e2:ea:d3:3a:69:80:60:ec:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=910C13ACE16F58034FB65130B4A6FFAA2E062704
        Validity
            Not Before: Apr  1 15:10:59 2025 GMT
            Not After : Mar 31 15:15:59 2026 GMT
        Subject: CN=FCD2B8682BEE977A5303E981E963BBADFAD5A7F2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:9f:a8:3f:4f:7f:e7:f8:ca:65:a2:ef:ff:7b:
                    98:08:d3:d1:25:e6:7a:16:a0:65:0a:3e:68:5d:34:
                    45:b0:8f:7d:07:17:bc:a0:f4:94:83:9a:a1:aa:2e:
                    10:4f:34:3e:ab:ac:c0:36:65:10:e9:4a:e5:04:5b:
                    75:0a:39:e5:72:c9:81:8b:aa:d4:c6:ef:2e:59:49:
                    95:4a:52:a1:06:e9:a8:67:a2:28:24:e4:d9:a0:11:
                    6f:27:eb:3c:31:be:ef:42:a6:f6:fe:b4:79:06:18:
                    cd:88:07:74:be:60:b6:8d:50:06:42:d9:ce:b5:c8:
                    11:07:91:d3:22:97:a4:dd:9b:90:bf:7c:f3:a7:f2:
                    49:fd:6d:5d:00:fd:56:13:55:9a:fd:1f:0a:1b:b1:
                    77:1e:c2:4c:f7:1f:8d:7e:8f:ad:83:c5:37:72:13:
                    52:bc:2a:50:25:d6:8b:2c:57:01:ce:ac:f5:ab:74:
                    4b:54:e1:c0:fb:34:4c:b9:98:2d:8d:e4:2d:bc:d6:
                    67:5f:35:6b:ea:ea:fb:c5:df:3e:86:8c:7d:c6:9b:
                    b0:7c:0e:19:9d:ed:5a:59:2c:bd:23:6e:c7:b8:2e:
                    5a:93:b1:ff:1e:a7:b7:51:94:06:fa:5f:34:6e:7b:
                    66:33:c3:09:67:40:31:8f:be:f5:5a:b5:c7:2c:6b:
                    fe:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:D2:B8:68:2B:EE:97:7A:53:03:E9:81:E9:63:BB:AD:FA:D5:A7:F2
            X509v3 Authority Key Identifier:
                keyid:91:0C:13:AC:E1:6F:58:03:4F:B6:51:30:B4:A6:FF:AA:2E:06:27:04

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/910C13ACE16F58034FB65130B4A6FFAA2E062704.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/910C13ACE16F58034FB65130B4A6FFAA2E062704.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/8Eo5QMmqtdim4jwo5AtTuPJkQizPcmWSm9foRufYMFkF/0/323830343a326265303a373230303a3a2f34302d3430203d3e20323632353033.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:2be0:7200::/40

    Signature Algorithm: sha256WithRSAEncryption
         a3:52:d1:e2:71:a5:9a:71:ef:18:2f:22:a2:12:85:a9:53:4a:
         f1:ae:b6:14:97:9c:e6:9b:fe:d3:fc:39:d8:5d:ae:08:0b:57:
         79:45:4a:76:65:94:14:de:2c:1e:c4:5e:a5:ff:a2:0e:ee:c3:
         14:37:26:b7:55:99:e0:ce:7c:f1:3f:b5:89:0f:f8:92:d4:d2:
         f2:3c:1e:72:a1:01:85:bb:10:39:8c:8f:64:43:82:51:36:1f:
         1d:0e:7c:ba:e0:da:d8:51:fd:d5:18:1d:40:fc:d6:1a:96:20:
         6e:d5:56:ad:75:f4:f9:94:98:84:b8:f7:a5:b7:8b:f4:62:92:
         7a:21:67:10:67:d4:49:c5:d5:2f:1c:59:de:d0:3a:e7:d9:e0:
         8e:d6:06:e2:ca:12:14:90:f8:c5:80:ae:09:bc:5f:10:09:36:
         b2:e9:97:d9:f2:56:14:ed:69:8e:08:6c:74:fa:d5:d7:2c:bd:
         01:15:c6:6f:71:20:5e:d3:96:39:21:a6:4c:a8:14:b3:81:da:
         03:dd:cd:1d:82:bc:32:8a:16:28:1a:46:fa:91:28:28:f2:61:
         ff:70:17:ce:38:30:42:7b:18:91:e8:95:94:7f:a0:a5:8f:99:
         6f:6e:a5:87:1b:fd:60:1d:d9:54:d7:53:45:ec:4d:e4:78:b4:
         57:d2:61:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 16:43:00 2025 by rpki-client