Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa
File:                     323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa (raw, json)
Hash identifier:          MNOIp/MtCxhxklXoGMBT0l+F7DSWEAMDjaS7QWGgvvk=
Subject key identifier:   F5:42:9F:9A:39:BB:C7:11:6C:95:57:6E:21:C9:32:01:F1:7E:79:F9
Certificate issuer:       /CN=C952C93A676BA611AEC114DD4983F2B03168FE10
Certificate serial:       21512901DA8113636B3DC3E948F0AEE97E0E717A
Authority key identifier: C9:52:C9:3A:67:6B:A6:11:AE:C1:14:DD:49:83:F2:B0:31:68:FE:10
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C952C93A676BA611AEC114DD4983F2B03168FE10.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa
Signing time:             Mon 29 Jun 2026 15:51:36 +0000
ROA not before:           Mon 29 Jun 2026 15:46:36 +0000
ROA not after:            Mon 28 Jun 2027 15:51:36 +0000
asID:                     268441
IP address blocks:        2801:80:2460::/44 maxlen: 128
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/C952C93A676BA611AEC114DD4983F2B03168FE10.crl
                          rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/C952C93A676BA611AEC114DD4983F2B03168FE10.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C952C93A676BA611AEC114DD4983F2B03168FE10.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 09 Jul 2026 15:07:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            21:51:29:01:da:81:13:63:6b:3d:c3:e9:48:f0:ae:e9:7e:0e:71:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C952C93A676BA611AEC114DD4983F2B03168FE10
        Validity
            Not Before: Jun 29 15:46:36 2026 GMT
            Not After : Jun 28 15:51:36 2027 GMT
        Subject: CN=F5429F9A39BBC7116C95576E21C93201F17E79F9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:cd:32:ff:28:19:02:bc:c3:e9:cd:d1:ee:cb:
                    62:0b:d5:3a:9e:78:fd:1a:cf:0a:30:bc:f4:cd:a5:
                    4e:e9:00:92:b5:a9:e8:48:e5:4e:99:f2:84:39:8f:
                    5f:e1:84:e6:9d:48:9e:56:fd:a1:8e:c9:aa:47:ce:
                    6a:82:cb:d9:a8:d5:8d:f8:85:67:78:81:7a:59:66:
                    72:66:76:e1:52:d9:19:ba:6c:21:16:ec:2d:81:33:
                    aa:24:9a:69:8e:9f:2d:c9:fc:22:86:7c:2c:fd:82:
                    eb:aa:a8:e9:fa:c1:30:a1:67:ed:7f:c4:eb:7f:53:
                    e4:c8:a9:87:0e:97:2c:bb:18:b7:fe:6c:63:d9:b5:
                    e4:88:d5:2c:4c:08:40:61:d3:2c:9e:23:5e:d2:2c:
                    99:e8:06:6e:2d:70:de:ae:69:f0:42:ea:a7:79:3c:
                    47:97:a7:d6:47:3a:03:48:1b:d3:ae:ad:60:6c:eb:
                    ec:98:4e:00:e7:37:14:32:24:55:72:e1:ba:38:0a:
                    3e:82:e9:23:8c:76:2f:9a:06:f6:3e:74:79:08:22:
                    3c:a2:c1:36:6a:f2:37:af:5f:27:15:3e:cf:5e:60:
                    18:dc:98:1a:59:1b:06:dc:6e:df:aa:f1:43:fe:4f:
                    2c:53:76:fc:53:c3:6d:35:a1:a5:2b:8b:1b:3d:e5:
                    0f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:42:9F:9A:39:BB:C7:11:6C:95:57:6E:21:C9:32:01:F1:7E:79:F9
            X509v3 Authority Key Identifier:
                keyid:C9:52:C9:3A:67:6B:A6:11:AE:C1:14:DD:49:83:F2:B0:31:68:FE:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/C952C93A676BA611AEC114DD4983F2B03168FE10.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/C952C93A676BA611AEC114DD4983F2B03168FE10.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GJCusm1LTjde7t7vuR9A5RBQKJ4KDde6mYYUu9zhbtUi/0/323830313a38303a323436303a3a2f34342d313238203d3e20323638343431.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:80:2460::/44

    Signature Algorithm: sha256WithRSAEncryption
         63:7a:05:1a:4b:3d:74:7b:a3:97:a2:43:11:cc:de:27:63:31:
         ae:2e:f0:62:20:38:69:b1:73:1e:12:5f:6f:57:1f:df:bc:3d:
         49:35:8e:ef:10:78:09:5b:06:d6:19:35:f3:f7:36:74:aa:75:
         0f:a6:57:13:c7:5c:5a:ec:8b:69:eb:65:3a:7a:d1:3e:64:5d:
         46:af:79:33:e5:0e:2c:44:15:88:fc:63:78:8d:6a:e5:a9:91:
         0d:7d:c9:62:5f:ce:cb:32:f5:08:eb:0f:11:bf:b2:cb:b1:26:
         f4:87:61:e0:ae:25:b8:60:f9:38:4b:6f:a3:2a:be:6c:39:c4:
         01:0f:1d:26:d3:42:8d:4c:47:e1:63:54:60:ff:ef:61:2b:bb:
         b1:c6:f6:85:fc:63:fa:e7:f9:01:e8:ac:fc:62:76:b1:1c:21:
         c4:af:8d:c2:22:b1:dd:46:d0:c5:21:27:28:a8:00:ce:e5:41:
         bf:47:da:dd:f6:24:6e:c5:3a:bc:d4:c7:c8:02:29:e2:d1:b9:
         ba:e3:6f:c2:70:5c:8e:80:b6:ac:b5:f6:6d:8f:9b:85:93:14:
         af:66:9f:3b:ee:74:8e:06:8b:7a:cd:ad:2d:43:d9:73:43:dd:
         5a:7b:ed:04:c1:5d:97:16:ca:a9:f4:d3:71:27:7a:17:04:f2:
         0d:62:02:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:17:53 2026 by rpki-client