Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/323830343a3562383a3a2f33322d3332203d3e20323632353335.roa
File:                     323830343a3562383a3a2f33322d3332203d3e20323632353335.roa (raw, json)
Hash identifier:          lQedKFZKOIzJRA0Rhy356BB6YTmqoKCaZ2iFawc3zkI=
Subject key identifier:   11:6D:B2:00:15:E4:92:DF:F5:13:BE:31:B1:7A:E3:8C:F3:59:5C:6E
Certificate issuer:       /CN=28C772F802942018601488095AA6C547A3694782
Certificate serial:       2E32CE4F0EB68983608F613114A8DEAAD957F3DB
Authority key identifier: 28:C7:72:F8:02:94:20:18:60:14:88:09:5A:A6:C5:47:A3:69:47:82
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28C772F802942018601488095AA6C547A3694782.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/323830343a3562383a3a2f33322d3332203d3e20323632353335.roa
Signing time:             Wed 08 May 2024 12:08:22 +0000
ROA not before:           Wed 08 May 2024 12:03:22 +0000
ROA not after:            Wed 07 May 2025 12:08:22 +0000
asID:                     262535
IP address blocks:        2804:5b8::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/28C772F802942018601488095AA6C547A3694782.crl
                          rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/28C772F802942018601488095AA6C547A3694782.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28C772F802942018601488095AA6C547A3694782.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 17 Jun 2024 11:54:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:32:ce:4f:0e:b6:89:83:60:8f:61:31:14:a8:de:aa:d9:57:f3:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28C772F802942018601488095AA6C547A3694782
        Validity
            Not Before: May  8 12:03:22 2024 GMT
            Not After : May  7 12:08:22 2025 GMT
        Subject: CN=116DB20015E492DFF513BE31B17AE38CF3595C6E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:a4:0b:df:40:1b:3e:54:6b:d1:38:ff:b6:9d:
                    a0:1d:f8:ef:22:26:e7:c4:8d:ca:fe:07:28:c4:94:
                    58:d6:75:e1:4d:cb:18:4c:fe:44:b6:2a:bc:95:16:
                    43:af:47:7f:88:2d:00:06:df:f6:c8:ca:f4:e0:19:
                    f5:e4:c1:df:d7:cc:38:1e:89:98:08:13:8a:b5:a3:
                    e4:25:7b:ec:be:f7:cb:d3:e1:a3:ba:0f:24:ce:ce:
                    4f:0e:2b:79:07:81:de:a6:47:83:6f:26:27:5a:0a:
                    4e:83:b4:2d:2f:3e:87:8a:1c:cc:8a:b4:d2:5e:1b:
                    62:91:56:ca:e1:7e:36:d8:5d:55:d2:a2:91:c8:79:
                    00:9e:67:ad:24:65:e7:31:95:df:aa:e0:32:a7:ce:
                    d0:1c:b1:53:02:11:de:47:0a:88:4d:1a:5f:50:54:
                    fc:30:2a:b6:52:3d:8d:f3:16:a3:be:7c:e0:74:0d:
                    3c:8f:fe:fe:ac:cc:10:f2:fd:7f:3b:85:de:66:3f:
                    9b:f3:d6:58:75:82:70:da:9e:ea:b1:75:0c:37:6e:
                    6c:2b:83:c2:30:31:15:56:b8:27:5b:d9:71:a8:37:
                    16:6e:63:0f:0d:aa:c5:8b:3f:97:93:4d:3b:c4:30:
                    11:a7:39:ca:93:e6:d9:b6:39:2b:5d:62:cc:fb:5c:
                    93:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:6D:B2:00:15:E4:92:DF:F5:13:BE:31:B1:7A:E3:8C:F3:59:5C:6E
            X509v3 Authority Key Identifier:
                keyid:28:C7:72:F8:02:94:20:18:60:14:88:09:5A:A6:C5:47:A3:69:47:82

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/28C772F802942018601488095AA6C547A3694782.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/28C772F802942018601488095AA6C547A3694782.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/Eqm2Ao45m9b7krCBouQkrY7RV9XW6pWZurr1Es5Ggxri/0/323830343a3562383a3a2f33322d3332203d3e20323632353335.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:5b8::/32

    Signature Algorithm: sha256WithRSAEncryption
         40:ba:64:83:96:87:fb:ca:d3:eb:a6:5b:43:3a:7a:c9:a6:5e:
         1b:e2:c9:9d:eb:14:80:ba:fb:63:62:77:e3:ed:8f:a5:fe:7e:
         22:f9:2c:cd:44:a8:ad:99:ec:f0:f6:dc:a2:68:e1:0f:6a:42:
         48:78:48:99:a9:47:d2:e1:0d:b2:21:27:1f:18:5c:e5:8f:af:
         a4:3d:83:39:65:51:d7:73:46:a9:a5:dc:bc:55:27:38:b5:0c:
         eb:17:37:6e:e1:8a:1a:54:fb:8e:e7:d5:7f:e0:d6:02:ea:22:
         4c:05:a4:e6:6a:57:d4:b9:ac:98:ec:7e:95:b1:29:a2:8a:ba:
         7a:51:d9:db:2b:8f:bd:9c:a4:1c:80:08:d1:af:99:e4:ba:6f:
         03:b5:9f:0e:93:23:6c:18:4c:b2:43:b9:b2:97:f1:ca:dc:7e:
         73:bb:cc:5b:17:1b:9f:bf:ae:13:94:10:64:60:6d:7d:84:47:
         23:3b:68:47:73:ac:4c:6c:71:ce:e9:aa:fa:2a:d1:d5:2e:75:
         c1:69:0b:d7:03:ae:5b:cd:8c:a0:8b:f3:64:5c:89:fe:84:b0:
         50:03:a1:79:c3:e6:cb:41:18:7f:22:77:f9:ff:63:ec:33:0c:
         a0:70:b9:d6:ff:d5:d5:30:ba:60:d1:7b:2a:f6:50:f4:be:dc:
         67:7d:6e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 15:56:41 2024 by rpki-client on console-ams.rpki-client.org