Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/3133382e3235352e31362e302f32322d3332203d3e20323634343034.roa
File:                     3133382e3235352e31362e302f32322d3332203d3e20323634343034.roa (raw, json)
Hash identifier:          7anQ0Gyg4GX4W+weaHG6L3LL1TLjZEJq4Th/MH45ScQ=
Subject key identifier:   10:CC:07:B2:B0:DD:60:60:8C:17:D2:5D:D5:AA:1D:3F:DA:2E:79:E8
Certificate issuer:       /CN=08B392C8173BC063ACE9F4F42C85E8F3BC297FA4
Certificate serial:       6A7DD6B1080A4AE8A71EDB52BEB78CA113771DD2
Authority key identifier: 08:B3:92:C8:17:3B:C0:63:AC:E9:F4:F4:2C:85:E8:F3:BC:29:7F:A4
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/3133382e3235352e31362e302f32322d3332203d3e20323634343034.roa
Signing time:             Wed 17 Jun 2026 15:53:50 +0000
ROA not before:           Wed 17 Jun 2026 15:48:50 +0000
ROA not after:            Wed 16 Jun 2027 15:53:50 +0000
asID:                     264404
IP address blocks:        138.255.16.0/22 maxlen: 32
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.crl
                          rsync://rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 08:32:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:7d:d6:b1:08:0a:4a:e8:a7:1e:db:52:be:b7:8c:a1:13:77:1d:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08B392C8173BC063ACE9F4F42C85E8F3BC297FA4
        Validity
            Not Before: Jun 17 15:48:50 2026 GMT
            Not After : Jun 16 15:53:50 2027 GMT
        Subject: CN=10CC07B2B0DD60608C17D25DD5AA1D3FDA2E79E8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:31:60:aa:eb:1e:8e:c4:ae:fb:32:08:e7:2e:
                    07:51:7a:aa:ef:0b:74:4d:03:ee:11:bb:36:b2:34:
                    92:c1:fe:0b:a4:74:29:0e:10:7e:b5:29:1d:02:19:
                    e0:b0:fb:f7:5a:c2:a8:81:91:fc:40:59:c1:ed:17:
                    72:87:19:a2:44:03:2d:c3:53:de:c2:2c:ee:80:e6:
                    1d:d4:c0:d3:b1:e3:95:d2:5f:f3:78:84:2f:6e:a3:
                    48:2a:87:e0:dc:77:00:21:36:f1:6f:50:06:b0:31:
                    05:fe:ec:64:76:16:5c:78:58:36:fd:f1:4e:ac:3f:
                    89:31:ce:e6:bf:78:47:62:0d:2a:36:2d:a8:0f:bb:
                    c1:e5:04:90:16:09:a4:36:1c:b3:db:cd:7e:03:1b:
                    da:5a:d6:3d:00:0e:1c:a6:23:6b:b3:66:47:6c:97:
                    b3:d0:0d:f1:ea:df:d5:1a:f6:2a:17:f5:54:ad:1b:
                    33:c3:5d:01:dc:4a:e5:15:4a:e4:1c:cf:3e:0d:1e:
                    7e:96:bc:21:27:c0:6f:b2:80:43:48:7e:fc:4a:a8:
                    01:cb:33:3b:b1:7f:55:ed:7e:bf:65:a1:61:9f:3e:
                    22:29:a5:dc:c7:e0:e0:2a:29:28:23:d6:b6:1c:24:
                    f0:75:59:8e:b0:8a:1a:9a:67:b6:b5:cd:82:d7:3c:
                    8c:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:CC:07:B2:B0:DD:60:60:8C:17:D2:5D:D5:AA:1D:3F:DA:2E:79:E8
            X509v3 Authority Key Identifier:
                keyid:08:B3:92:C8:17:3B:C0:63:AC:E9:F4:F4:2C:85:E8:F3:BC:29:7F:A4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/08B392C8173BC063ACE9F4F42C85E8F3BC297FA4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/Aa7hski1fSwkVpgDcjyZBPsA5NYgYGLn8W9skyC5w5iB/0/3133382e3235352e31362e302f32322d3332203d3e20323634343034.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.255.16.0/22

    Signature Algorithm: sha256WithRSAEncryption
         cd:0e:54:63:15:42:ae:9b:72:38:20:4c:a0:3c:7c:c9:e4:33:
         bc:f3:79:97:c4:fd:e7:c0:07:04:6e:fa:50:1d:cd:2c:0b:c0:
         a3:f5:41:eb:b9:e7:7e:4e:c8:f3:a0:a7:4e:4f:8b:c6:b5:26:
         cb:e0:ed:35:8b:87:97:49:2d:cc:0d:9b:5a:0f:76:5d:cb:6a:
         ee:17:a4:fd:c7:b5:c1:9b:75:65:03:88:06:7c:12:17:ea:e2:
         e2:92:44:49:01:b9:8a:d0:06:cc:fe:e5:b9:bd:61:31:e8:b4:
         91:c6:cc:28:d4:a0:13:94:31:4a:06:9d:fc:0d:6d:20:25:80:
         04:86:d2:1a:22:10:7e:7d:c2:99:93:c3:1b:5a:a2:f1:4a:70:
         61:2d:39:f5:5a:3b:b5:0f:2c:7d:d0:ce:bb:f1:9b:98:2b:ec:
         ef:71:b2:d0:95:4f:2f:13:46:e8:af:e2:94:db:f4:0a:2d:ae:
         d2:d8:64:62:25:42:66:d7:de:88:f8:e5:22:4c:c1:39:11:36:
         06:98:e8:98:d3:5f:80:7d:1a:4b:27:cd:d3:3e:ec:a8:5d:4f:
         32:20:6a:6f:ef:7b:f4:25:18:89:b1:b4:9f:9c:7d:54:d8:b3:
         eb:4d:97:b4:0c:7c:df:ed:6e:6d:84:e8:cd:51:eb:d8:48:ba:
         6e:d7:bd:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:15:44 2026 by rpki-client