Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131382e302f32332d3233203d3e20323632383132.roa
File:                     3230302e36362e3131382e302f32332d3233203d3e20323632383132.roa (raw, json)
Hash identifier:          3JK5Rq0QZ6f9tvWplPMwa4us1e+6vX6VNW+H3quFhc4=
Subject key identifier:   12:C0:A2:78:93:55:52:52:DC:5E:C7:CD:B7:DC:E4:FA:F4:A2:8B:0A
Certificate issuer:       /CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
Certificate serial:       545D5AF1056193E5ED8D195D7A4ED37D25F1F7B2
Authority key identifier: A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131382e302f32332d3233203d3e20323632383132.roa
Signing time:             Mon 15 Jun 2026 16:26:45 +0000
ROA not before:           Mon 15 Jun 2026 16:21:45 +0000
ROA not after:            Mon 14 Jun 2027 16:26:45 +0000
asID:                     262812
IP address blocks:        200.66.118.0/23 maxlen: 23
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl
                          rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 17:37:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:5d:5a:f1:05:61:93:e5:ed:8d:19:5d:7a:4e:d3:7d:25:f1:f7:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
        Validity
            Not Before: Jun 15 16:21:45 2026 GMT
            Not After : Jun 14 16:26:45 2027 GMT
        Subject: CN=12C0A27893555252DC5EC7CDB7DCE4FAF4A28B0A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:93:79:b0:a4:07:2b:40:8b:65:ca:af:e1:c1:
                    95:17:ba:8e:e4:d5:6d:9a:27:7a:7d:97:b4:c4:d0:
                    2a:85:39:38:a3:bb:d1:63:dc:cc:d2:43:90:b1:38:
                    7b:6c:20:b9:a2:39:08:eb:4a:d6:12:af:59:b4:6d:
                    61:c5:0a:86:7c:00:e4:1b:b5:50:b4:05:f8:21:c9:
                    c4:3a:cc:bf:e6:e4:8f:3f:c6:94:db:c9:26:75:40:
                    82:1f:5f:13:19:cb:35:4f:63:cc:46:75:1a:46:1e:
                    7d:9d:a3:57:f5:a0:56:94:22:e8:e9:24:5d:5c:4d:
                    9e:fa:30:d4:d8:b8:25:14:1f:57:c6:e5:7b:b2:2b:
                    a6:6a:60:82:9a:93:e7:ec:73:4a:ec:65:3b:4f:4d:
                    5a:76:45:04:51:be:3f:1c:14:18:e0:ca:16:88:f9:
                    2a:12:9a:c5:ec:63:98:27:89:b7:44:89:e8:4f:18:
                    13:46:c1:40:be:e3:cb:95:db:25:ae:53:84:9b:54:
                    d7:d6:2f:a5:ee:30:68:04:01:62:1c:00:52:bf:f0:
                    be:3d:2e:23:68:1f:e7:5e:c3:f8:d7:94:ee:92:7e:
                    66:6c:9e:35:39:46:24:79:36:01:b1:26:d4:10:89:
                    58:cd:5d:fe:b7:97:19:3f:06:59:e3:97:98:a8:88:
                    eb:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:C0:A2:78:93:55:52:52:DC:5E:C7:CD:B7:DC:E4:FA:F4:A2:8B:0A
            X509v3 Authority Key Identifier:
                keyid:A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3131382e302f32332d3233203d3e20323632383132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.66.118.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7b:66:e3:08:d9:5b:5f:60:07:7b:25:f8:eb:5f:07:89:60:72:
         5e:f5:ee:f7:64:34:e4:9f:17:30:a2:af:7a:00:b3:d7:62:41:
         c0:a9:02:57:84:70:10:ef:0e:95:0b:97:38:46:df:0b:fc:92:
         6b:7c:bc:15:68:8f:8f:c3:b0:c0:2d:c4:02:7b:e3:33:b2:a7:
         bb:18:95:95:93:3f:e8:37:12:3b:5b:7a:61:81:5f:90:95:dd:
         b7:c2:cf:5b:2c:7c:d6:8d:13:2f:a5:a8:e7:54:47:3b:de:ea:
         3c:b7:0c:5f:f3:be:87:46:08:30:65:71:69:da:c9:69:4c:fb:
         2d:10:92:24:62:32:ee:45:18:58:07:88:c5:c6:ff:19:82:ff:
         d3:13:36:76:65:67:bd:37:f6:29:56:ce:a6:4a:f1:52:32:45:
         a7:d8:ae:b8:93:65:da:df:0c:a2:4d:f7:98:a4:10:fc:22:ab:
         b6:cb:5d:73:79:a4:82:e8:84:76:8f:25:60:2b:45:86:9f:fb:
         ae:db:b7:59:89:6a:7d:20:eb:f1:bf:6f:37:fb:7f:e9:d0:89:
         30:f9:62:9d:b2:00:1c:9e:35:1d:26:c6:6a:3b:d0:86:40:90:
         c6:3d:da:97:d2:60:66:2d:81:b4:5b:f7:80:b5:22:20:89:be:
         53:69:8f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 19:16:42 2026 by rpki-client