Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/323830343a3230303a3a2f33322d3438203d3e203238313837.roa
File:                     323830343a3230303a3a2f33322d3438203d3e203238313837.roa (raw, json)
Hash identifier:          JBjfLkeeo6Bg+CgJH8/2TcHDq29AZEE3Vuv7Y3+xAvo=
Subject key identifier:   7B:7F:6E:21:3B:1D:12:AC:C5:82:DB:EA:C9:5C:7D:3D:CA:71:83:24
Certificate issuer:       /CN=640539F45452C2299C340AFF511D40CB7EEAA212
Certificate serial:       7F51B8C6AE474EB9F07A11864A3E3394D9ABBD80
Authority key identifier: 64:05:39:F4:54:52:C2:29:9C:34:0A:FF:51:1D:40:CB:7E:EA:A2:12
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/640539F45452C2299C340AFF511D40CB7EEAA212.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/323830343a3230303a3a2f33322d3438203d3e203238313837.roa
Signing time:             Fri 19 Jun 2026 19:31:10 +0000
ROA not before:           Fri 19 Jun 2026 19:26:10 +0000
ROA not after:            Fri 18 Jun 2027 19:31:10 +0000
asID:                     28187
IP address blocks:        2804:200::/32 maxlen: 48
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/640539F45452C2299C340AFF511D40CB7EEAA212.crl
                          rsync://rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/640539F45452C2299C340AFF511D40CB7EEAA212.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/640539F45452C2299C340AFF511D40CB7EEAA212.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 00:35:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:51:b8:c6:ae:47:4e:b9:f0:7a:11:86:4a:3e:33:94:d9:ab:bd:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=640539F45452C2299C340AFF511D40CB7EEAA212
        Validity
            Not Before: Jun 19 19:26:10 2026 GMT
            Not After : Jun 18 19:31:10 2027 GMT
        Subject: CN=7B7F6E213B1D12ACC582DBEAC95C7D3DCA718324
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:2c:d4:69:12:48:46:e4:af:81:d5:e7:f2:93:
                    f8:c1:21:bc:11:d1:12:8c:7d:70:b1:2c:b3:3c:00:
                    31:63:5c:87:68:56:ee:72:ce:d1:cb:57:6b:0f:70:
                    04:33:65:7e:d8:52:f9:21:bb:1a:79:cf:22:93:18:
                    b8:1e:3f:59:85:73:5e:a4:a5:c9:50:59:aa:8a:2e:
                    9c:9d:a6:a4:ac:9a:2c:d7:9b:b5:35:3a:99:57:ef:
                    fd:19:00:4b:9a:c6:e2:73:0b:2a:ee:15:ee:e8:a9:
                    fe:17:09:f0:e9:5e:8f:35:d6:dc:75:04:ec:d2:d2:
                    a2:70:09:32:fd:bd:33:7f:56:47:fe:bc:8f:a4:5f:
                    d3:92:e7:bc:ad:cc:56:82:34:0f:a2:3f:18:3d:60:
                    ca:00:2d:f4:f3:43:ff:ce:86:a2:cd:3d:cc:ef:74:
                    87:10:11:08:1f:11:70:74:49:ae:f6:f7:41:f0:f8:
                    f7:63:59:e3:23:b8:f4:4a:49:d2:9d:a3:b9:7c:6e:
                    34:b9:df:ae:80:6a:63:8c:08:c3:87:12:52:50:34:
                    0b:f0:51:1e:db:c0:48:4e:67:c6:e2:4d:c3:f1:b1:
                    29:e9:d2:37:a2:25:cf:35:ee:f4:bd:54:ca:25:f0:
                    be:7a:5b:58:eb:60:92:7d:da:b5:25:ad:af:21:71:
                    c6:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:7F:6E:21:3B:1D:12:AC:C5:82:DB:EA:C9:5C:7D:3D:CA:71:83:24
            X509v3 Authority Key Identifier:
                keyid:64:05:39:F4:54:52:C2:29:9C:34:0A:FF:51:1D:40:CB:7E:EA:A2:12

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/640539F45452C2299C340AFF511D40CB7EEAA212.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/640539F45452C2299C340AFF511D40CB7EEAA212.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/DCNvej1a8r2RQ3kZ5pWWCsob2Rn4MqYuBHKd7AP98bD6/0/323830343a3230303a3a2f33322d3438203d3e203238313837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:200::/32

    Signature Algorithm: sha256WithRSAEncryption
         48:91:52:f3:df:d0:62:2b:ab:ef:59:5b:ef:a4:92:d4:01:b0:
         96:7f:6c:6d:8c:d6:1c:89:65:76:71:9f:63:da:a3:c3:55:60:
         a1:05:d3:cb:1b:5c:a1:fb:92:28:87:3e:8e:a3:e6:cb:b7:53:
         23:77:51:e8:f5:0a:dd:a3:15:a5:d3:c2:9d:5a:98:98:a6:4e:
         2b:31:ea:3b:30:60:bd:96:0e:88:ce:55:6a:5e:67:d0:6c:44:
         9c:2d:75:de:bb:25:2f:3d:f6:87:c8:f9:cf:96:e7:02:63:50:
         2c:2b:e2:70:e0:50:b3:d4:dd:83:1d:e1:b0:da:2d:eb:41:e3:
         ac:54:ed:32:2e:cf:36:ad:8a:1f:86:48:ee:98:84:34:c3:f8:
         ce:e3:a3:b8:5e:15:50:a7:bd:a4:df:7d:10:51:25:f9:59:4f:
         dc:a8:b4:57:af:db:52:c0:3a:6a:5e:61:22:de:b2:5b:3a:60:
         5c:f4:73:11:a7:7c:fb:41:33:46:71:13:ee:b5:3f:1f:8b:73:
         8f:eb:e1:e0:e3:fc:70:53:38:ca:8a:49:4b:ae:15:47:0c:14:
         e1:6d:e0:fc:08:bb:54:f8:97:9a:dd:83:8f:c6:03:d1:5d:e2:
         89:0d:b2:cb:65:a7:4a:0f:20:79:10:aa:8d:32:62:5c:56:34:
         c3:07:5e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 16:12:27 2026 by rpki-client