Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3233312e302f32342d3234203d3e20323633393935.roa
File:                     3133382e3235352e3233312e302f32342d3234203d3e20323633393935.roa (raw, json)
Hash identifier:          1ECBtNGvquFYlGj36k0Gu4lbRSj5WisOVyJpowQEmBw=
Subject key identifier:   77:C6:08:17:66:6C:61:7E:9E:05:3E:02:8B:F8:F0:B0:44:A7:42:DC
Certificate issuer:       /CN=B7047B095A7C54A0D935E35C988F1A341D363E06
Certificate serial:       2640BDE0B97C30EFB3F0A29E16111A0199AB1FB9
Authority key identifier: B7:04:7B:09:5A:7C:54:A0:D9:35:E3:5C:98:8F:1A:34:1D:36:3E:06
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7047B095A7C54A0D935E35C988F1A341D363E06.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3233312e302f32342d3234203d3e20323633393935.roa
Signing time:             Thu 02 Jul 2026 15:54:25 +0000
ROA not before:           Thu 02 Jul 2026 15:49:25 +0000
ROA not after:            Thu 01 Jul 2027 15:54:25 +0000
asID:                     263995
IP address blocks:        138.255.231.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/B7047B095A7C54A0D935E35C988F1A341D363E06.crl
                          rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/B7047B095A7C54A0D935E35C988F1A341D363E06.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7047B095A7C54A0D935E35C988F1A341D363E06.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 02:52:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:40:bd:e0:b9:7c:30:ef:b3:f0:a2:9e:16:11:1a:01:99:ab:1f:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B7047B095A7C54A0D935E35C988F1A341D363E06
        Validity
            Not Before: Jul  2 15:49:25 2026 GMT
            Not After : Jul  1 15:54:25 2027 GMT
        Subject: CN=77C60817666C617E9E053E028BF8F0B044A742DC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:e0:36:a5:32:05:32:e8:9c:34:aa:6e:ae:66:
                    dd:8d:33:5b:8b:64:ac:e1:a9:a7:17:30:8a:8d:3b:
                    90:0b:21:7f:33:2f:47:10:45:da:4f:a7:47:4e:16:
                    f9:24:49:75:a6:dd:7e:d3:6d:f4:9a:c1:26:d5:8a:
                    ab:e7:30:24:56:96:83:45:2b:73:2a:e4:ff:ab:c3:
                    f8:c9:00:4d:ec:84:91:50:bf:d4:68:5b:9b:3e:02:
                    25:d8:33:d8:40:f9:c3:db:2a:4c:4d:52:19:1b:d0:
                    bc:8e:ec:99:1e:27:8d:fe:4b:78:49:c7:81:50:93:
                    69:8f:7b:85:a7:69:3a:0a:fb:38:5f:bf:8e:45:dc:
                    54:dd:08:c9:7b:30:90:55:d6:73:38:fa:88:d5:40:
                    77:32:22:0a:db:97:9a:c8:0c:f3:7d:ee:18:78:de:
                    f2:71:8f:bf:ab:3f:d1:fd:6a:e2:94:c4:fc:9a:56:
                    1d:19:05:35:39:e9:e1:32:62:52:78:a9:d2:25:db:
                    c4:80:d8:4f:0d:0f:4b:da:3d:94:7b:4d:4b:a1:ea:
                    52:f1:21:e4:20:38:2d:69:0e:c8:cc:74:50:2b:12:
                    a9:9c:6a:a5:aa:6d:23:e3:ed:8d:fb:a6:3e:5d:3d:
                    aa:e7:0e:55:87:50:b3:a3:d0:4b:a1:5c:60:d5:88:
                    3d:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:C6:08:17:66:6C:61:7E:9E:05:3E:02:8B:F8:F0:B0:44:A7:42:DC
            X509v3 Authority Key Identifier:
                keyid:B7:04:7B:09:5A:7C:54:A0:D9:35:E3:5C:98:8F:1A:34:1D:36:3E:06

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/B7047B095A7C54A0D935E35C988F1A341D363E06.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B7047B095A7C54A0D935E35C988F1A341D363E06.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/AFhTpGBpoWALdpFyJVqtSMoukEA9tq9HYiWwHPEjCUHS/0/3133382e3235352e3233312e302f32342d3234203d3e20323633393935.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.255.231.0/24

    Signature Algorithm: sha256WithRSAEncryption
         04:bf:7a:c5:7c:66:8d:7d:a0:0c:88:14:03:6b:2a:5f:40:af:
         0a:b0:61:c0:63:37:05:5c:32:3b:51:bc:b6:82:b7:dc:4e:77:
         c5:0e:2c:d2:67:88:4c:3f:2a:f1:f9:7d:7d:b3:9e:87:24:db:
         bc:41:2b:a5:3a:6c:47:94:22:79:26:b7:76:c1:6d:40:9e:72:
         6d:76:0f:39:ac:f3:f0:e1:2a:c5:21:02:ec:f2:1a:a3:3f:92:
         69:78:ec:dc:6c:99:a3:33:81:eb:e1:af:d1:85:35:8e:e2:43:
         f4:4f:73:00:f2:86:5b:e6:32:47:de:3c:97:85:53:a4:5f:0c:
         fa:5a:0c:8c:c2:68:7b:0d:33:9a:4e:4c:f1:b0:4e:96:35:81:
         23:50:18:84:41:91:fd:69:c8:88:66:74:4a:c0:1d:1f:05:0d:
         65:30:71:2d:a9:8c:ca:45:d8:4d:88:72:f4:6e:d8:90:ea:3e:
         ee:63:1e:77:42:38:b3:5b:80:51:2b:2b:b1:d3:f7:38:83:d8:
         12:9b:1c:4b:8c:29:c6:75:81:5a:d1:80:74:f9:d7:42:e4:9f:
         76:fa:83:55:aa:47:5f:38:76:57:4e:51:d7:89:8c:1f:9f:a2:
         84:40:6c:70:92:8a:d4:83:ba:67:b9:78:47:43:36:b0:48:7f:
         59:f8:6b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 19:02:00 2026 by rpki-client