Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3132372e302f32342d3234203d3e20323632383132.roa
File:                     3230302e36362e3132372e302f32342d3234203d3e20323632383132.roa (raw, json)
Hash identifier:          RIFB+RrFUrFszsVwdV1XzKS3D6aEOdCBTEalYn3arNE=
Subject key identifier:   8D:C4:36:24:EE:93:2E:EA:E8:9E:89:8B:A7:AD:3E:60:DA:DE:2A:B3
Certificate issuer:       /CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
Certificate serial:       6C797F0921A46540641887F75BF3613EB9EEF452
Authority key identifier: A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3132372e302f32342d3234203d3e20323632383132.roa
Signing time:             Mon 15 Jun 2026 16:26:41 +0000
ROA not before:           Mon 15 Jun 2026 16:21:41 +0000
ROA not after:            Mon 14 Jun 2027 16:26:41 +0000
asID:                     262812
IP address blocks:        200.66.127.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl
                          rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 17:37:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:79:7f:09:21:a4:65:40:64:18:87:f7:5b:f3:61:3e:b9:ee:f4:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A8C40D851EE06F7454DE9587BD8710CA3EAB8536
        Validity
            Not Before: Jun 15 16:21:41 2026 GMT
            Not After : Jun 14 16:26:41 2027 GMT
        Subject: CN=8DC43624EE932EEAE89E898BA7AD3E60DADE2AB3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:3f:01:2e:8e:ff:16:78:61:70:69:50:b0:f8:
                    b4:1f:b4:bd:fb:61:16:a2:70:7c:a3:a3:66:fa:0f:
                    86:51:60:b2:dc:5f:03:be:95:5d:45:73:a7:57:2d:
                    26:34:64:a0:7e:e7:94:aa:d4:36:22:41:a4:52:6f:
                    bb:1e:ac:d1:0a:de:e0:5b:86:ea:84:7b:bf:0a:90:
                    4a:cc:16:14:07:e1:7a:63:33:52:9b:be:54:e4:dd:
                    c0:0a:ba:af:0c:37:a9:75:d9:b7:f3:fa:5d:1e:72:
                    a4:2b:4a:e0:86:92:7d:05:94:14:44:69:6a:97:d4:
                    1b:3d:28:e1:5e:b8:9b:a3:95:70:18:39:1f:a8:03:
                    38:e3:6d:6b:3f:28:8a:84:a1:49:17:fe:4e:ca:9d:
                    85:ef:09:4a:c1:8e:64:dd:cf:2e:ca:02:91:bc:45:
                    22:37:88:f0:94:10:ea:d3:80:7a:53:ff:5e:3f:52:
                    66:81:22:85:bb:2d:f6:07:cc:0e:1d:86:c8:18:a5:
                    50:d5:08:78:a2:43:4d:79:87:e0:82:86:96:48:07:
                    e6:71:eb:7b:00:dc:96:c5:30:c1:50:da:5b:dc:8e:
                    41:7b:ed:6c:25:0d:5e:1c:67:4e:a9:47:b3:6f:df:
                    3e:ba:e0:87:9a:49:1a:ea:b1:18:f1:6e:f6:38:26:
                    74:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:C4:36:24:EE:93:2E:EA:E8:9E:89:8B:A7:AD:3E:60:DA:DE:2A:B3
            X509v3 Authority Key Identifier:
                keyid:A8:C4:0D:85:1E:E0:6F:74:54:DE:95:87:BD:87:10:CA:3E:AB:85:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A8C40D851EE06F7454DE9587BD8710CA3EAB8536.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/CrpdCF5TjQUgtB5vby4dLiMSnEEF1kWB38rr63w6Lwfw/0/3230302e36362e3132372e302f32342d3234203d3e20323632383132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.66.127.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a5:ca:0d:19:e6:4c:1a:08:a8:dd:4f:a2:a2:45:95:b9:01:53:
         22:30:ec:4b:50:84:39:9e:5c:d4:8e:d3:f5:86:c3:41:bf:e6:
         18:32:c4:d4:67:b8:7f:49:c1:9e:ad:26:07:cf:b4:24:d7:8b:
         cd:ff:2c:af:ec:6d:c5:a6:d6:b4:f3:57:dd:b4:e3:7e:02:06:
         9a:c1:3e:22:fd:a6:74:26:bd:6d:b9:82:ca:95:45:e6:03:b6:
         79:13:e8:ef:bf:da:47:e8:08:04:4f:e0:d6:55:dc:a1:ff:68:
         fa:de:d3:c2:c4:4b:3b:93:4a:52:05:c8:0e:ec:0a:de:80:8c:
         2f:82:4a:88:a3:40:f1:e2:af:81:a1:c1:b4:6e:1f:80:bb:f4:
         78:99:b8:38:c4:72:0a:06:5e:bc:39:44:3f:13:f8:c9:04:6b:
         a3:e2:dc:51:34:13:ae:f2:0e:17:87:ff:34:b3:8c:c8:66:5f:
         46:f5:34:b8:fc:7d:97:ba:1c:e3:86:0d:88:1e:83:33:9f:82:
         6f:76:48:f5:55:9d:47:48:69:84:a4:cc:2e:7e:40:89:fa:42:
         2f:f1:7a:27:6f:eb:61:8f:7a:7a:99:5d:dd:d4:a8:39:e5:7f:
         75:4a:74:cf:aa:ba:1d:0c:b6:22:df:c1:ee:41:1d:3e:eb:f2:
         7c:f3:a9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:22:55 2026 by rpki-client