Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/34352e3137382e37362e302f32322d3234203d3e20323639303930.roa
File:                     34352e3137382e37362e302f32322d3234203d3e20323639303930.roa (raw, json)
Hash identifier:          lm6txRUV16zzLJaeHjVvqhEx3Irj413zSz+dEenqLuE=
Subject key identifier:   C5:3B:6D:EF:43:4A:AA:D0:C9:36:1A:88:1A:0B:2C:D0:6B:CB:3C:35
Certificate issuer:       /CN=7AC53C66F274BB83DC4765EBA05AF434F9015EC4
Certificate serial:       64B28C955FC71612958B976B33371F0779104F71
Authority key identifier: 7A:C5:3C:66:F2:74:BB:83:DC:47:65:EB:A0:5A:F4:34:F9:01:5E:C4
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/34352e3137382e37362e302f32322d3234203d3e20323639303930.roa
Signing time:             Tue 30 Apr 2024 16:35:48 +0000
ROA not before:           Tue 30 Apr 2024 16:30:48 +0000
ROA not after:            Tue 29 Apr 2025 16:35:48 +0000
asID:                     269090
IP address blocks:        45.178.76.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.crl
                          rsync://rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 18 Jun 2024 23:06:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:b2:8c:95:5f:c7:16:12:95:8b:97:6b:33:37:1f:07:79:10:4f:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7AC53C66F274BB83DC4765EBA05AF434F9015EC4
        Validity
            Not Before: Apr 30 16:30:48 2024 GMT
            Not After : Apr 29 16:35:48 2025 GMT
        Subject: CN=C53B6DEF434AAAD0C9361A881A0B2CD06BCB3C35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:cb:2d:f0:b2:43:69:ae:4e:40:0a:ae:7c:ad:
                    b5:44:22:ff:3a:b7:79:4e:15:36:ad:ca:72:54:19:
                    2e:5b:96:49:b4:53:64:89:48:7b:a3:95:ca:90:11:
                    1e:10:60:f3:ca:bb:d6:53:bb:73:e6:11:64:df:be:
                    4e:1a:67:54:5d:83:88:66:15:05:2f:7d:2b:83:09:
                    73:80:ec:cd:14:38:24:8d:79:17:97:ad:85:27:60:
                    82:47:44:8b:4d:7a:54:9e:88:9a:5e:53:0a:42:5c:
                    c0:90:34:8b:85:70:c8:cc:30:9f:a6:10:0b:ad:98:
                    e1:2f:e9:c0:53:f1:d0:3c:7d:9a:4f:66:f5:20:49:
                    0c:a4:41:d3:db:f5:45:5a:fa:5c:67:7f:98:d4:f1:
                    da:12:90:42:69:be:c0:f3:0f:2d:f0:90:db:77:28:
                    ca:75:33:22:af:43:36:e5:af:34:10:7e:54:99:d8:
                    54:40:3a:98:48:f7:20:75:e4:f1:06:77:fc:bd:18:
                    83:7b:12:0e:ab:fb:e6:d4:a5:ce:89:0b:d1:d4:ef:
                    8a:e1:f5:0f:78:49:11:f2:c2:e1:15:5b:c8:2b:f4:
                    fb:2f:32:c2:c2:b8:04:a4:a2:b8:fb:5b:04:41:f9:
                    74:85:8b:1d:29:1f:eb:db:9d:d1:15:83:fe:f5:ce:
                    70:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:3B:6D:EF:43:4A:AA:D0:C9:36:1A:88:1A:0B:2C:D0:6B:CB:3C:35
            X509v3 Authority Key Identifier:
                keyid:7A:C5:3C:66:F2:74:BB:83:DC:47:65:EB:A0:5A:F4:34:F9:01:5E:C4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7AC53C66F274BB83DC4765EBA05AF434F9015EC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/DTK83rT71rfXjN8DzT7AKt8qFXuvu5HeKKhtzg39Qoke/0/34352e3137382e37362e302f32322d3234203d3e20323639303930.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.178.76.0/22

    Signature Algorithm: sha256WithRSAEncryption
         15:40:9b:8b:fa:fd:c6:a7:fd:a1:5d:5d:ae:bb:53:18:ca:ee:
         23:1d:d7:70:1e:c9:41:79:ab:3e:93:67:77:76:86:5d:39:a8:
         cb:6c:27:95:f8:90:88:a9:61:91:6b:15:d7:b5:b8:40:87:67:
         33:ec:32:e5:70:58:71:53:43:fe:c2:ac:7b:28:39:51:91:f6:
         c7:ad:f5:26:71:fb:31:7d:b4:22:ac:96:ee:dd:c2:35:60:33:
         1b:d1:fc:7f:28:c4:26:4e:70:20:54:5a:1c:59:6c:fc:ae:1e:
         4e:77:d5:a3:cd:94:ea:f6:1d:2e:3a:e2:ba:4a:c6:51:3d:21:
         59:60:ad:88:d3:83:c8:be:f3:4d:37:04:ab:da:b0:59:2c:91:
         cf:84:f1:db:ee:66:a5:09:1b:11:d8:a2:db:57:e7:ae:7b:07:
         0c:65:29:98:d3:a4:47:93:26:ea:66:17:48:95:89:d5:09:62:
         a4:ff:96:b0:90:f4:f5:7d:a3:01:59:a2:74:7f:3f:a3:c3:8c:
         fe:83:a6:0d:dc:d2:76:27:f9:47:04:05:6e:c2:61:e8:25:ed:
         5b:71:41:ac:1c:85:eb:0f:b6:a2:dc:ea:96:5f:e6:de:3a:b5:
         85:03:c5:ae:d3:ec:02:a7:10:aa:bf:52:09:06:32:79:3d:e5:
         d0:05:a7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 22:40:32 2024 by rpki-client on console-fra.rpki-client.org