Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131322e302f32302d3230203d3e20323632383132.roa
File:                     3230302e36362e3131322e302f32302d3230203d3e20323632383132.roa (raw, json)
Hash identifier:          6dG51+Hk7J508JaYXqBytuVxxb2VwGKl8tucHzoUWTs=
Subject key identifier:   D5:7F:5B:BE:5A:32:0C:44:0C:88:A0:20:77:6E:67:3D:61:C6:CE:19
Certificate issuer:       /CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
Certificate serial:       42B3496CBF557A9140D809D9F942D30A92036B51
Authority key identifier: A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131322e302f32302d3230203d3e20323632383132.roa
Signing time:             Mon 15 Jun 2026 16:26:41 +0000
ROA not before:           Mon 15 Jun 2026 16:21:41 +0000
ROA not after:            Mon 14 Jun 2027 16:26:41 +0000
asID:                     262812
IP address blocks:        200.66.112.0/20 maxlen: 20
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl
                          rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 17:37:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            42:b3:49:6c:bf:55:7a:91:40:d8:09:d9:f9:42:d3:0a:92:03:6b:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
        Validity
            Not Before: Jun 15 16:21:41 2026 GMT
            Not After : Jun 14 16:26:41 2027 GMT
        Subject: CN=D57F5BBE5A320C440C88A020776E673D61C6CE19
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:d3:93:69:c9:6b:94:77:b6:34:34:fc:18:97:
                    66:22:c5:15:67:03:23:f5:f0:31:72:76:64:55:ea:
                    fd:68:41:93:bd:18:4c:38:5e:e0:ba:e1:92:ea:9f:
                    65:14:e8:9f:87:e3:db:3a:a0:b6:a4:26:76:79:4e:
                    0d:55:ec:6d:e7:0f:77:55:87:fd:b6:36:bc:3f:d0:
                    f0:72:ae:12:6b:be:d3:64:a2:7b:bf:cb:20:b9:a8:
                    eb:0d:03:68:00:95:85:ac:6a:b2:d6:f9:c9:0a:55:
                    42:25:53:97:55:62:3b:32:a8:7d:f4:9d:f2:aa:5f:
                    37:25:1e:d0:e1:8e:75:00:84:e0:95:76:4b:2b:32:
                    ca:f6:ba:2e:ae:89:8c:8f:64:5d:0f:e3:ec:ef:0f:
                    7e:6b:d1:9c:26:e1:3a:79:d2:0e:a8:fe:3f:15:43:
                    12:7f:7d:67:4d:56:65:74:07:07:2c:da:4a:8c:0c:
                    8d:55:5b:e9:ab:cf:9c:b5:cf:2f:7b:9c:ca:89:f5:
                    2c:d2:50:e6:31:bd:3e:bf:f0:f1:de:a8:25:ab:62:
                    b4:04:70:73:3f:fa:c7:5c:87:44:bf:a5:48:3e:89:
                    c1:75:66:3a:89:d6:5e:48:6a:8d:e4:c6:55:14:b2:
                    0e:b9:1a:a1:d2:e6:ab:95:de:2f:75:e9:65:bc:3b:
                    68:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:7F:5B:BE:5A:32:0C:44:0C:88:A0:20:77:6E:67:3D:61:C6:CE:19
            X509v3 Authority Key Identifier:
                keyid:A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131322e302f32302d3230203d3e20323632383132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.66.112.0/20

    Signature Algorithm: sha256WithRSAEncryption
         72:0c:41:0d:c2:72:2d:62:7c:6a:bc:cb:25:71:09:c8:3d:82:
         c6:2a:d7:e5:94:76:c2:d4:a4:de:35:99:9e:ff:f8:2e:52:f3:
         20:5f:ba:17:7a:e1:ef:f1:4b:3a:e9:7e:b9:30:95:2e:06:44:
         cd:f7:ee:8d:03:65:4a:d8:45:1d:b3:5a:17:e4:e8:8b:66:00:
         07:24:28:31:34:ce:9c:b4:d1:dd:94:c4:62:4e:3d:2d:87:a9:
         2e:8e:34:c4:f8:e4:e6:13:7d:42:f7:57:b0:77:ad:af:a2:9e:
         64:e8:f6:61:31:28:02:8d:27:c8:a8:c9:35:97:4f:ac:31:72:
         53:63:b1:80:9b:d5:8c:ff:cb:ce:b3:88:a1:68:52:2d:22:f0:
         9d:d8:b7:5b:dd:c3:2f:0c:03:90:8b:8e:8a:18:08:8e:f3:8a:
         13:09:11:7c:fd:0e:19:a5:47:1a:c2:72:9e:35:ab:b1:09:2b:
         46:bd:83:c0:ff:b7:30:d0:22:9d:f9:56:27:73:40:ed:21:d7:
         c4:cb:90:71:cd:10:e4:f6:3e:82:91:61:91:04:20:c6:4e:4e:
         a7:0b:43:fa:77:fd:5d:81:92:50:a9:5b:ac:6d:6d:b6:74:d5:
         8f:2a:19:02:86:a9:ba:a5:2b:b9:0e:55:66:4c:91:9b:70:42:
         1f:91:02:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 19:16:44 2026 by rpki-client