Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/3230302e35322e3233322e302f32342d3234203d3e20323731303139.roa
File:                     3230302e35322e3233322e302f32342d3234203d3e20323731303139.roa (raw, json)
Hash identifier:          G9thCU4QMC5TYFTXYPBaP4LUDveyQxqfMwFQRoVsJHc=
Subject key identifier:   7F:E3:CC:BE:97:1E:F2:85:2A:54:B0:FE:A6:5B:0E:C3:9A:2E:F7:78
Certificate issuer:       /CN=6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5
Certificate serial:       2C59E45CCE97781C37DEF14CFA13866C55C1DE90
Authority key identifier: 6E:0E:6A:39:72:47:D4:96:E3:9C:0A:78:DF:B1:E5:1A:71:DB:AA:B5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/3230302e35322e3233322e302f32342d3234203d3e20323731303139.roa
Signing time:             Tue 23 Apr 2024 19:24:46 +0000
ROA not before:           Tue 23 Apr 2024 19:19:46 +0000
ROA not after:            Tue 22 Apr 2025 19:24:46 +0000
asID:                     271019
IP address blocks:        200.52.232.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.crl
                          rsync://rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 16 Jun 2024 19:20:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:59:e4:5c:ce:97:78:1c:37:de:f1:4c:fa:13:86:6c:55:c1:de:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5
        Validity
            Not Before: Apr 23 19:19:46 2024 GMT
            Not After : Apr 22 19:24:46 2025 GMT
        Subject: CN=7FE3CCBE971EF2852A54B0FEA65B0EC39A2EF778
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:e4:a8:a3:53:c3:1e:b1:f4:46:eb:4b:82:7b:
                    7c:15:a9:24:98:d7:36:15:f9:f6:e8:c2:a6:98:4b:
                    1b:ca:5e:b8:3c:46:b5:10:a0:1e:60:d7:6c:99:f8:
                    24:84:5e:52:a2:34:1f:81:b6:de:93:6a:4c:79:76:
                    f6:40:a9:10:21:32:06:5a:81:1b:b8:76:f2:ed:09:
                    ca:0b:54:3b:88:a2:5c:30:7b:9e:27:66:d3:6f:23:
                    dd:22:62:2a:22:81:ab:82:81:36:df:c2:75:50:77:
                    e1:b1:ea:54:93:8f:f0:fb:a2:76:4a:08:ff:b3:aa:
                    ed:95:dd:76:62:9c:38:6d:5a:98:a0:56:24:50:67:
                    1c:4a:e1:31:f0:b1:fa:3f:98:3a:29:3a:d2:66:f8:
                    32:b8:6a:5e:5f:fc:fe:86:99:17:8a:52:b9:42:e6:
                    ee:7c:a6:43:63:b2:f9:b3:4a:5b:43:a3:c8:41:08:
                    c5:61:49:3d:cd:0e:af:90:79:dc:09:74:3e:78:f2:
                    5e:8a:42:d9:07:2b:ca:f1:bc:f5:29:00:8d:55:b1:
                    e7:90:7e:db:46:26:00:1b:37:28:fb:ac:4d:01:fb:
                    bd:e4:3a:41:fa:91:ec:1f:93:aa:ca:6a:eb:22:6f:
                    24:f8:21:a5:1c:d6:5f:7d:c9:de:0f:61:f3:dc:64:
                    f4:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:E3:CC:BE:97:1E:F2:85:2A:54:B0:FE:A6:5B:0E:C3:9A:2E:F7:78
            X509v3 Authority Key Identifier:
                keyid:6E:0E:6A:39:72:47:D4:96:E3:9C:0A:78:DF:B1:E5:1A:71:DB:AA:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/6E0E6A397247D496E39C0A78DFB1E51A71DBAAB5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/CTEta9MAcLMQYJCTRbb382LwQqUn57ioCtoTpyqwGbZ5/0/3230302e35322e3233322e302f32342d3234203d3e20323731303139.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.52.232.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b1:5d:3f:69:36:51:65:41:10:f6:f5:97:1b:60:30:ff:46:36:
         de:8d:c5:43:f9:25:23:ed:f9:0a:04:cf:a9:d9:26:b8:bc:b1:
         71:27:31:b0:fb:0e:7e:63:bf:56:7d:0c:8b:3a:b2:2e:f7:29:
         5a:b1:38:d3:b0:49:ec:4e:38:a4:0f:2c:b6:6f:f8:54:22:a2:
         52:ca:a0:f5:1c:44:31:1f:30:d5:55:36:a8:30:31:66:54:2e:
         f3:07:97:77:d2:45:1f:c0:65:24:b9:e5:25:bb:15:30:cb:00:
         17:1a:25:0d:0c:37:ea:53:51:6c:10:09:e7:ad:4e:26:ef:6e:
         98:de:c8:52:97:3e:f1:ae:4b:d8:ce:1d:66:9b:74:4e:21:37:
         dd:a5:c9:b7:4c:1c:fe:cd:37:f4:22:3e:d6:9f:e3:0d:d4:52:
         2d:68:e8:e8:be:fe:0d:de:be:39:29:88:8f:41:fa:b1:12:40:
         84:c9:48:da:df:f7:85:78:f3:ae:a7:71:b5:64:73:ca:f2:2c:
         71:ab:da:a4:b3:45:00:48:97:b4:0e:ac:bf:5f:62:6e:69:74:
         c2:e0:5d:24:49:c5:51:cb:3d:46:29:fa:9e:db:01:61:74:66:
         9b:e7:2a:93:84:e0:b7:7a:33:6e:49:b8:19:98:d9:26:de:d5:
         18:f0:70:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 07:43:51 2024 by rpki-client on console-ams.rpki-client.org