Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/GagCNRKna5a18Ur5dUrPeGjaiDuv6qQ84bdivQ5e2sbt/0/3230312e34392e3138342e302f32342d3234203d3e20323733343937.roa
File:                     3230312e34392e3138342e302f32342d3234203d3e20323733343937.roa (raw, json)
Hash identifier:          PNLx6U3AC6K+zTBmy+W1xmjlC2vsoWIQB6uzBpyNWOc=
Subject key identifier:   39:31:6E:FD:5F:46:F2:F8:21:60:F7:9B:91:63:36:D9:3D:1C:DA:74
Certificate issuer:       /CN=EBA12609A41810B238CACDE900F107B8CA74828D
Certificate serial:       1854FD176F1E954555C7841ABBEF5E60E54162C5
Authority key identifier: EB:A1:26:09:A4:18:10:B2:38:CA:CD:E9:00:F1:07:B8:CA:74:82:8D
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EBA12609A41810B238CACDE900F107B8CA74828D.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/GagCNRKna5a18Ur5dUrPeGjaiDuv6qQ84bdivQ5e2sbt/0/3230312e34392e3138342e302f32342d3234203d3e20323733343937.roa
Signing time:             Mon 22 Jun 2026 14:23:33 +0000
ROA not before:           Mon 22 Jun 2026 14:18:33 +0000
ROA not after:            Mon 21 Jun 2027 14:23:33 +0000
asID:                     273497
IP address blocks:        201.49.184.0/24 maxlen: 24
Validation:               Failed, CRL has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:54:fd:17:6f:1e:95:45:55:c7:84:1a:bb:ef:5e:60:e5:41:62:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EBA12609A41810B238CACDE900F107B8CA74828D
        Validity
            Not Before: Jun 22 14:18:33 2026 GMT
            Not After : Jun 21 14:23:33 2027 GMT
        Subject: CN=39316EFD5F46F2F82160F79B916336D93D1CDA74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:fb:84:12:cd:83:ad:51:36:ca:27:4b:3a:97:
                    dc:9c:12:d4:af:84:c4:56:eb:9d:1c:1e:21:c2:c1:
                    aa:08:dd:07:d6:3f:32:7c:80:b8:07:62:6a:43:be:
                    d3:cb:03:5a:58:e6:4d:92:b4:fd:6a:b9:1d:69:6e:
                    55:61:e3:bb:c2:fc:fd:93:c5:cb:e7:a6:5a:dd:27:
                    47:8d:25:0a:97:ea:42:b0:fb:c3:75:35:4a:f9:8c:
                    62:4c:b3:55:d3:be:17:a4:35:1f:03:6e:7e:c3:18:
                    7d:91:e2:56:8c:dc:fa:a9:dc:ef:53:27:f0:5d:99:
                    f1:0c:65:46:d1:c0:b0:61:06:33:89:71:a0:84:e9:
                    74:3a:fb:90:a0:8d:eb:01:44:04:f8:fa:66:41:6d:
                    4c:68:19:40:f1:2b:19:99:06:b8:e2:06:19:d3:bf:
                    c7:a0:a7:3a:4b:4a:ba:f6:a6:c5:37:5f:f1:9c:02:
                    dc:66:b2:35:ab:fd:32:04:90:fe:fe:42:ae:47:43:
                    45:59:cc:95:68:76:38:c5:2e:ba:30:1f:8c:99:40:
                    04:a5:8f:79:e1:89:dd:b3:ba:d2:9f:9f:e2:49:6a:
                    f4:3c:21:cd:59:be:d2:7c:31:38:a5:26:08:88:55:
                    bf:18:1d:ba:45:a8:2a:c8:8b:91:20:4c:7b:3f:f5:
                    44:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:31:6E:FD:5F:46:F2:F8:21:60:F7:9B:91:63:36:D9:3D:1C:DA:74
            X509v3 Authority Key Identifier:
                keyid:EB:A1:26:09:A4:18:10:B2:38:CA:CD:E9:00:F1:07:B8:CA:74:82:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/GagCNRKna5a18Ur5dUrPeGjaiDuv6qQ84bdivQ5e2sbt/0/EBA12609A41810B238CACDE900F107B8CA74828D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/EBA12609A41810B238CACDE900F107B8CA74828D.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/GagCNRKna5a18Ur5dUrPeGjaiDuv6qQ84bdivQ5e2sbt/0/3230312e34392e3138342e302f32342d3234203d3e20323733343937.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.49.184.0/24

    Signature Algorithm: sha256WithRSAEncryption
         33:61:f7:dc:15:fa:a0:bc:12:67:e3:2e:ad:fb:fe:1b:a4:e7:
         ac:43:61:28:68:34:d5:c3:49:32:89:25:db:32:95:b1:8e:13:
         31:db:86:2d:87:20:b8:f2:2b:08:21:7a:4b:af:ab:7f:c7:69:
         dd:e7:8e:02:f8:0f:ce:83:ca:27:1c:bd:e8:f0:f3:2c:d3:fd:
         c3:4a:1a:2b:9e:23:16:e0:9a:9a:19:e1:ff:90:9d:7c:a3:c9:
         48:31:f4:00:77:03:b1:ca:78:a6:ea:bd:89:44:0b:6d:08:b7:
         64:f4:16:37:bc:31:e0:95:d4:09:5e:df:12:30:0b:09:79:61:
         5a:74:91:57:d0:ae:e8:63:e6:d1:49:da:91:14:b0:3f:da:1e:
         a2:1e:fe:0a:ec:44:48:ac:b3:1b:49:d4:ba:cc:aa:bd:9a:b1:
         25:01:0b:6f:ad:46:3f:ea:52:f3:c3:96:9f:03:c3:75:fe:0b:
         de:e1:c9:10:f4:04:cf:e9:8d:d4:72:3f:2f:ee:cc:ca:54:39:
         84:39:c8:ec:db:0e:64:31:d2:25:d7:cf:3b:7e:25:32:16:94:
         59:b1:09:93:c8:cb:37:b2:41:c4:bf:54:12:18:6d:3e:f4:2b:
         5a:e2:2f:db:08:9d:cb:71:03:ae:da:5d:28:f1:6f:be:87:1e:
         f0:9c:69:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:23:15 2026 by rpki-client