Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/323830343a343061383a3a2f33322d3438203d3e20323635393733.roa
File:                     323830343a343061383a3a2f33322d3438203d3e20323635393733.roa (raw, json)
Hash identifier:          q0Te1eNa66BcAyBf//Abmto9n/TSGs22aSngmpz3nOg=
Subject key identifier:   FB:82:C0:85:23:DE:6C:44:98:A2:4A:A2:26:66:E5:E4:55:81:75:12
Certificate issuer:       /CN=57DB3581E707C22BBA17B8AD12B81942965761D7
Certificate serial:       30BD8060069FA5543997302E0D3F2283B0331832
Authority key identifier: 57:DB:35:81:E7:07:C2:2B:BA:17:B8:AD:12:B8:19:42:96:57:61:D7
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/323830343a343061383a3a2f33322d3438203d3e20323635393733.roa
Signing time:             Wed 01 Jul 2026 14:04:40 +0000
ROA not before:           Wed 01 Jul 2026 13:59:40 +0000
ROA not after:            Wed 30 Jun 2027 14:04:40 +0000
asID:                     265973
IP address blocks:        2804:40a8::/32 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.crl
                          rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 08:57:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            30:bd:80:60:06:9f:a5:54:39:97:30:2e:0d:3f:22:83:b0:33:18:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57DB3581E707C22BBA17B8AD12B81942965761D7
        Validity
            Not Before: Jul  1 13:59:40 2026 GMT
            Not After : Jun 30 14:04:40 2027 GMT
        Subject: CN=FB82C08523DE6C4498A24AA22666E5E455817512
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:38:8d:16:03:5d:ee:8b:7e:83:99:4d:ab:73:
                    c0:f7:da:12:4f:07:ad:00:67:e4:97:33:4f:ae:17:
                    ba:f1:9d:4a:66:86:09:79:6e:14:d4:03:a4:f8:7f:
                    85:b5:b0:17:17:2e:63:aa:8e:a4:ee:e5:17:f2:8f:
                    32:19:b5:58:69:11:a9:f6:b2:4d:db:55:ed:1e:a0:
                    1d:c5:fb:ff:0d:c8:d0:5e:28:3b:61:b4:fd:01:e6:
                    5a:89:bd:e7:3c:d6:24:03:4c:08:85:b5:7b:3e:ef:
                    c4:cb:0a:5e:be:ec:b3:e8:d6:f4:f4:36:65:9c:c0:
                    91:35:a6:50:07:4d:4d:98:20:ea:2c:52:8a:d1:97:
                    19:1d:ec:c9:e1:51:9e:cb:5a:81:de:df:f5:d7:fa:
                    1c:13:96:51:92:61:74:b0:48:0b:ea:fc:40:86:b3:
                    ea:72:51:07:24:ea:27:3a:42:76:a7:1e:d7:72:2b:
                    30:44:fd:6a:b7:51:d4:e7:54:78:22:0b:2f:6c:dc:
                    2a:f8:8c:b6:aa:9e:ea:36:b2:74:73:ac:77:91:01:
                    ca:e2:c6:2c:7e:a0:8a:67:70:4d:0e:f8:32:b2:ec:
                    84:74:f9:c4:58:f0:ea:23:54:78:87:48:34:fb:4d:
                    9d:13:f6:04:e2:5a:69:00:24:e6:4a:7d:ab:31:4c:
                    06:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:82:C0:85:23:DE:6C:44:98:A2:4A:A2:26:66:E5:E4:55:81:75:12
            X509v3 Authority Key Identifier:
                keyid:57:DB:35:81:E7:07:C2:2B:BA:17:B8:AD:12:B8:19:42:96:57:61:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/57DB3581E707C22BBA17B8AD12B81942965761D7.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/57DB3581E707C22BBA17B8AD12B81942965761D7.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/AWUGxceWiyXbSwBbgnv5vDnS7pm4HhCnGJwf3b2eKze1/0/323830343a343061383a3a2f33322d3438203d3e20323635393733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:40a8::/32

    Signature Algorithm: sha256WithRSAEncryption
         4b:38:9b:f9:5a:8a:f4:a6:6a:59:95:f2:72:0f:2d:01:95:ef:
         3e:9f:67:a7:0a:e9:1c:b0:31:f6:7d:98:bc:d6:9b:84:3b:79:
         28:94:a0:90:78:23:55:f4:2c:24:9e:04:29:1e:bb:fe:30:45:
         2d:a3:3f:7a:70:e0:ec:58:7a:13:62:11:b9:0c:fb:df:8d:a7:
         47:c9:b8:9f:2b:c2:78:b9:19:a1:8f:c9:84:30:22:57:36:28:
         23:b6:b8:b9:46:a7:69:5a:9f:a1:f8:e3:c1:f9:17:78:28:d3:
         c4:cc:c0:9c:2f:80:35:4b:32:1a:c6:53:06:b0:a4:b7:b0:a2:
         aa:1f:c2:c9:79:7b:75:28:ff:f7:40:12:83:d6:5f:f3:ea:ec:
         f7:32:a3:cf:f8:08:05:1d:d4:cf:bf:88:bd:cf:a2:b2:4f:77:
         42:2a:0e:55:0d:5a:17:2d:0d:e4:7f:39:a5:c8:70:36:82:a3:
         57:11:ab:25:b4:f3:47:b1:86:68:6c:2c:c5:c8:54:07:f9:80:
         6e:f1:01:1b:f9:65:5c:73:c2:a4:28:61:70:bf:19:1e:5b:75:
         0a:bb:74:5b:f8:a4:da:17:5f:d6:52:bd:25:a6:3c:31:23:ec:
         d9:65:db:d2:ff:d4:75:9c:9b:b9:0e:84:0c:70:94:4b:50:26:
         71:ec:6e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 16:10:59 2026 by rpki-client