Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/3136342e3136332e3230342e302f32322d3234203d3e20323635393733.roa
File:                     3136342e3136332e3230342e302f32322d3234203d3e20323635393733.roa (raw, json)
Hash identifier:          XiL+lPydVMTemg8uMNHGLbbXBrod0A1OD8ahj/fjh5g=
Subject key identifier:   C9:A7:24:56:E1:01:0C:35:AB:33:B9:E7:B7:04:28:58:2C:A4:3E:81
Certificate issuer:       /CN=57DB3581E707C22BBA17B8AD12B81942965761D7
Certificate serial:       667CA734F9963ECB2E555B16B43D8EFE072818BC
Authority key identifier: 57:DB:35:81:E7:07:C2:2B:BA:17:B8:AD:12:B8:19:42:96:57:61:D7
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/3136342e3136332e3230342e302f32322d3234203d3e20323635393733.roa
Signing time:             Wed 01 Jul 2026 14:04:38 +0000
ROA not before:           Wed 01 Jul 2026 13:59:38 +0000
ROA not after:            Wed 30 Jun 2027 14:04:38 +0000
asID:                     265973
IP address blocks:        164.163.204.0/22 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.crl
                          rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 08:57:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            66:7c:a7:34:f9:96:3e:cb:2e:55:5b:16:b4:3d:8e:fe:07:28:18:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57DB3581E707C22BBA17B8AD12B81942965761D7
        Validity
            Not Before: Jul  1 13:59:38 2026 GMT
            Not After : Jun 30 14:04:38 2027 GMT
        Subject: CN=C9A72456E1010C35AB33B9E7B70428582CA43E81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:30:81:e0:bf:74:af:e9:17:4a:96:0b:68:e3:
                    53:1a:c0:ad:13:96:14:d3:7e:e7:96:f9:0e:e1:e4:
                    8b:d2:96:b1:88:17:09:58:92:b9:e0:55:04:65:c4:
                    af:18:fd:a9:d6:71:d4:25:38:27:2a:da:d4:00:f2:
                    9a:1d:e9:68:f7:00:1e:d7:a9:8a:23:e8:e9:12:33:
                    51:99:47:c9:0d:75:01:3c:c2:d8:b2:98:dd:ec:29:
                    f6:f2:ed:40:1c:8d:5e:b3:c8:46:f8:33:a3:ad:64:
                    11:e3:fb:83:47:cc:69:5f:77:82:a1:af:20:1b:b6:
                    30:5a:1e:8b:0c:b1:4e:f5:65:d0:db:24:54:d2:25:
                    41:3d:e0:da:02:8d:36:27:40:a0:6b:19:07:72:63:
                    9b:cd:7a:f3:f4:4e:7e:98:16:98:38:94:69:74:3d:
                    d5:37:a7:7c:8c:98:3c:06:dd:94:74:03:dc:83:fb:
                    d4:48:35:0d:10:47:24:ac:e5:35:51:de:c6:96:b1:
                    9e:6f:82:ab:5c:12:2f:90:39:11:4a:f0:ab:20:dd:
                    4e:9c:aa:b7:ec:c0:24:0b:5e:32:d5:33:06:33:56:
                    b0:ae:65:a7:e0:4e:1b:75:c5:7d:9e:61:50:a5:26:
                    45:20:03:dc:90:b9:76:5c:a2:93:e7:c2:29:49:be:
                    64:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:A7:24:56:E1:01:0C:35:AB:33:B9:E7:B7:04:28:58:2C:A4:3E:81
            X509v3 Authority Key Identifier:
                keyid:57:DB:35:81:E7:07:C2:2B:BA:17:B8:AD:12:B8:19:42:96:57:61:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/3136342e3136332e3230342e302f32322d3234203d3e20323635393733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  164.163.204.0/22

    Signature Algorithm: sha256WithRSAEncryption
         7b:c5:8a:26:bc:83:86:79:59:e3:aa:c6:0f:89:6d:8f:1e:af:
         bf:82:d4:26:0d:1f:df:89:da:86:34:e9:ef:2d:39:ff:2a:76:
         1a:f6:94:88:43:e7:ff:89:e8:ae:6e:4c:0c:b9:3e:d4:45:a7:
         78:45:df:c8:84:4b:ff:5f:76:88:51:63:5c:b0:b5:2a:57:7f:
         9f:98:17:94:ca:9c:b8:4f:22:4e:c6:25:cc:5c:b3:76:70:5e:
         49:d0:86:51:fd:b9:66:dc:f9:eb:d3:4e:c7:86:8b:28:a6:c3:
         cc:5f:99:3e:6b:e6:64:dc:1d:c5:6a:db:bb:fd:9d:e5:9a:a4:
         ad:06:5c:80:38:06:35:b7:74:94:8a:bd:f6:7f:54:e4:06:23:
         0c:57:25:6b:05:11:27:4a:10:a5:a4:94:c9:fc:5f:31:86:8f:
         ea:2f:f4:8b:27:66:e8:af:bd:79:a4:91:fa:42:57:84:44:98:
         2d:42:2b:7d:c1:3c:01:c1:a3:9e:f6:5c:79:fe:ab:f0:93:1b:
         96:f5:fa:a8:62:61:4a:17:55:e9:f5:8b:94:84:8a:97:16:10:
         65:fb:c6:52:48:ef:b7:e0:b6:68:bc:c9:1f:16:5b:74:c6:a5:
         80:ca:87:70:b3:50:8d:e2:ec:23:cc:82:3f:7d:29:91:dc:10:
         14:30:a9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 16:11:11 2026 by rpki-client