Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/3139312e33372e3135322e302f32312d3234203d3e20323633333632.roa
File:                     3139312e33372e3135322e302f32312d3234203d3e20323633333632.roa (raw, json)
Hash identifier:          1U9KVHWQX+M9641jfiV2LoYJ+OemosoC45Z/+bWf6fg=
Subject key identifier:   53:C5:8D:84:E9:5B:C4:1E:75:FB:AE:0E:AE:0D:31:87:E7:AF:D1:8C
Certificate issuer:       /CN=D04A2BA80F368597BB2029B3E31276E45382A900
Certificate serial:       5123D16DB131FCA080986F73E8F3993F9FF817AA
Authority key identifier: D0:4A:2B:A8:0F:36:85:97:BB:20:29:B3:E3:12:76:E4:53:82:A9:00
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D04A2BA80F368597BB2029B3E31276E45382A900.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/3139312e33372e3135322e302f32312d3234203d3e20323633333632.roa
Signing time:             Mon 13 May 2024 22:18:33 +0000
ROA not before:           Mon 13 May 2024 22:13:33 +0000
ROA not after:            Mon 12 May 2025 22:18:33 +0000
asID:                     263362
IP address blocks:        191.37.152.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/D04A2BA80F368597BB2029B3E31276E45382A900.crl
                          rsync://rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/D04A2BA80F368597BB2029B3E31276E45382A900.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D04A2BA80F368597BB2029B3E31276E45382A900.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 18 Jun 2024 06:13:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            51:23:d1:6d:b1:31:fc:a0:80:98:6f:73:e8:f3:99:3f:9f:f8:17:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D04A2BA80F368597BB2029B3E31276E45382A900
        Validity
            Not Before: May 13 22:13:33 2024 GMT
            Not After : May 12 22:18:33 2025 GMT
        Subject: CN=53C58D84E95BC41E75FBAE0EAE0D3187E7AFD18C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:47:49:ba:85:07:5a:d6:88:8d:c8:7e:25:8e:
                    db:d6:90:61:05:62:91:b5:4b:b2:e4:c9:44:c4:7d:
                    70:55:bb:4d:d9:53:27:4a:c4:ad:aa:55:d8:92:94:
                    f8:d0:87:27:e7:c7:14:09:a3:af:46:1c:aa:6f:6e:
                    11:ab:ab:b0:41:83:21:ad:bc:98:f4:78:bf:6c:ce:
                    1b:d8:e7:40:47:5c:3c:b6:01:67:0e:e8:5d:d8:f2:
                    ac:36:f9:17:e7:af:7d:4a:1e:37:ed:c5:25:95:d0:
                    70:3d:97:c4:2c:6e:f1:38:c9:cb:af:25:88:b0:e1:
                    59:5b:f3:fe:d2:b1:cf:33:53:e9:ae:0c:d9:d7:29:
                    da:ec:1a:59:d5:a7:f3:d3:05:2b:96:56:19:a9:8a:
                    73:d4:32:7e:8a:c6:c1:05:ac:91:16:6f:5a:7c:f5:
                    8d:47:47:27:9b:5b:82:3e:92:03:6c:fd:bb:03:74:
                    71:83:c3:c4:92:ae:34:0c:33:17:58:d0:51:79:28:
                    44:8e:54:d1:f2:c3:2b:4f:5d:64:21:0b:13:05:74:
                    bd:c9:51:38:3e:46:b3:53:87:51:f4:94:1c:6c:dc:
                    28:31:e2:09:25:c2:c9:d2:38:51:88:31:67:76:8d:
                    a3:cb:fe:4d:b3:26:8f:da:b2:cb:b5:b8:17:e3:59:
                    80:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:C5:8D:84:E9:5B:C4:1E:75:FB:AE:0E:AE:0D:31:87:E7:AF:D1:8C
            X509v3 Authority Key Identifier:
                keyid:D0:4A:2B:A8:0F:36:85:97:BB:20:29:B3:E3:12:76:E4:53:82:A9:00

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/D04A2BA80F368597BB2029B3E31276E45382A900.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D04A2BA80F368597BB2029B3E31276E45382A900.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/AK7m7J3nYu4HoFtyrRFsQ8QG7GsEqo9ssQqc3NdtRQA4/0/3139312e33372e3135322e302f32312d3234203d3e20323633333632.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  191.37.152.0/21

    Signature Algorithm: sha256WithRSAEncryption
         b4:dc:61:08:3d:a2:00:fa:de:2a:10:83:3a:25:9d:47:27:19:
         db:40:b1:4e:d9:a2:a9:6e:53:a7:ff:d1:ff:40:aa:35:ac:fe:
         28:98:b4:4f:38:5d:26:a7:a9:59:08:30:67:ab:e1:29:80:05:
         33:5d:b9:6f:ee:82:dd:30:1c:76:de:87:95:b8:63:de:45:26:
         a8:ce:81:a6:d4:72:e8:c1:43:bc:56:2e:7e:25:68:3f:6e:e3:
         76:43:ef:ce:b0:f1:14:12:8f:21:9f:0f:82:8d:00:e7:61:da:
         3d:76:16:a7:9a:9f:18:85:77:fc:9e:4f:f6:5a:b3:e3:b2:fe:
         fc:e3:dc:2c:b5:7f:d9:f8:fc:65:f7:9c:bc:4b:b0:60:43:06:
         c1:93:99:29:15:d3:54:d3:32:39:26:9b:62:f3:24:ad:16:0a:
         68:92:64:f2:35:4a:6f:13:5b:59:00:7f:3a:b1:98:47:72:28:
         1f:a9:88:e4:60:81:98:bc:6e:83:43:50:77:6b:c3:27:cc:97:
         7e:ab:21:6c:4c:49:17:08:bb:b9:20:15:72:13:38:59:86:c0:
         5d:1c:7e:b6:66:2f:8b:96:b0:78:3b:79:39:f3:5b:f6:0c:fc:
         ed:44:ec:d4:18:8d:df:25:00:66:1a:d4:ee:67:af:36:c4:7e:
         d8:56:fd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 05:36:25 2024 by rpki-client on console-fra.rpki-client.org