Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa
File:                     323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa (raw, json)
Hash identifier:          isotnszuQ2/kYIpfeH/mvlYSuDaMDGVW3f+aaUI3lEQ=
Subject key identifier:   DB:DD:9D:75:0B:4C:C6:17:BE:1A:BD:8F:ED:E3:C0:87:92:83:FE:F6
Certificate issuer:       /CN=18440E47EE1A9F2521181FB35A2394A0DE92CC7C
Certificate serial:       6B457AE73B52A7CC6AF4DED7385993693710A512
Authority key identifier: 18:44:0E:47:EE:1A:9F:25:21:18:1F:B3:5A:23:94:A0:DE:92:CC:7C
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa
Signing time:             Tue 03 Jun 2025 16:01:50 +0000
ROA not before:           Tue 03 Jun 2025 15:56:50 +0000
ROA not after:            Tue 02 Jun 2026 16:01:50 +0000
asID:                     267991
IP address blocks:        2804:5654:e000::/36 maxlen: 36
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.crl
                          rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 10 Jun 2025 21:06:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:45:7a:e7:3b:52:a7:cc:6a:f4:de:d7:38:59:93:69:37:10:a5:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18440E47EE1A9F2521181FB35A2394A0DE92CC7C
        Validity
            Not Before: Jun  3 15:56:50 2025 GMT
            Not After : Jun  2 16:01:50 2026 GMT
        Subject: CN=DBDD9D750B4CC617BE1ABD8FEDE3C0879283FEF6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:40:04:2d:a2:57:7c:89:fe:51:74:5d:1a:7c:
                    39:96:15:f6:7b:e3:c6:cd:56:bc:53:e3:d7:a3:fb:
                    50:ff:f2:9d:8e:2a:5a:07:84:71:89:b4:3d:0e:0f:
                    9d:3d:69:a0:dc:4c:77:7a:b5:20:cd:41:b7:e2:8a:
                    3c:53:8f:12:61:f7:06:f5:84:ea:8b:24:6c:a8:c6:
                    6c:2b:dd:ce:c8:e0:9f:bb:2d:3b:5e:42:df:85:b7:
                    2b:25:b5:46:a7:79:2c:e0:8c:d9:d8:87:b1:09:c2:
                    d8:65:49:9d:71:64:51:aa:40:96:5f:13:22:cd:63:
                    55:39:47:37:49:f6:51:3c:1c:94:dd:02:6d:0d:49:
                    5a:54:16:74:59:d7:9b:cb:2c:61:d9:cc:4f:40:fc:
                    f9:fd:41:9a:a3:f5:97:a5:2c:53:1b:86:6d:06:5e:
                    03:e2:16:ed:0f:10:dc:36:32:0c:e9:8e:7c:cf:22:
                    7d:25:29:13:1b:f6:08:98:9e:ea:29:8c:30:2a:3a:
                    d5:8b:53:3c:f6:33:ec:a4:f8:df:9b:2f:87:79:91:
                    36:8a:58:70:26:c9:84:72:71:aa:9e:1a:61:26:1a:
                    79:01:ca:be:34:b9:a0:60:a7:9b:2e:c3:85:ae:59:
                    a2:d4:31:ce:45:1e:80:42:40:3a:ea:a4:1f:88:fe:
                    c2:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:DD:9D:75:0B:4C:C6:17:BE:1A:BD:8F:ED:E3:C0:87:92:83:FE:F6
            X509v3 Authority Key Identifier:
                keyid:18:44:0E:47:EE:1A:9F:25:21:18:1F:B3:5A:23:94:A0:DE:92:CC:7C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/18440E47EE1A9F2521181FB35A2394A0DE92CC7C.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/D8TUSc2LTpHgLtaBao19YTQR7KE3fkH4aDYTC2i11y2N/0/323830343a353635343a653030303a3a2f33362d3336203d3e20323637393931.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:5654:e000::/36

    Signature Algorithm: sha256WithRSAEncryption
         3c:0b:97:32:5e:b7:16:16:32:1f:55:b7:97:5f:4a:51:de:61:
         de:c6:57:c5:bd:f9:8e:60:1a:39:a1:f0:16:9e:9c:3e:8b:4d:
         61:e7:c8:e3:fa:6c:09:5d:d0:8b:1e:19:ba:02:7d:29:bc:b6:
         64:10:98:5a:a1:01:4b:78:64:0c:c4:d2:41:4b:25:61:27:41:
         45:88:99:ac:00:1a:08:52:b7:e6:54:f4:b4:66:c5:5a:13:8a:
         2f:25:f2:5a:ae:8b:8e:59:d2:8c:7f:e9:24:de:e6:ea:c0:7b:
         dd:90:ba:02:a9:55:44:0e:ea:dd:cc:b0:bf:c9:e6:c0:6a:d3:
         49:52:20:fa:8f:c4:3e:a3:97:8e:41:e5:b7:28:1b:7e:4f:e2:
         02:29:69:78:eb:03:dd:0a:ab:fe:7e:96:69:8d:5d:93:93:39:
         bb:73:68:0a:6f:e4:26:63:2c:df:11:91:20:4f:af:a0:a7:9c:
         99:90:0f:c2:da:70:42:aa:df:c6:89:48:20:d5:3f:8c:24:0b:
         e9:16:96:64:0b:ef:19:b6:18:07:00:b6:a6:34:c7:f3:86:3e:
         e6:5c:90:c2:73:21:96:b7:85:a4:ee:53:f1:7f:a0:50:08:82:
         4e:fb:f6:1f:8c:ee:87:27:b1:7c:a2:54:f5:3a:f9:bb:2b:8b:
         e1:72:26:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:22:40 2025 by rpki-client