Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/323830343a323565343a3530303a3a2f34302d3430203d3e203631353733.roa
File:                     323830343a323565343a3530303a3a2f34302d3430203d3e203631353733.roa (raw, json)
Hash identifier:          khMyHQRjMI2o7HfwPq94IIXh0Fnb9x1jTGJ0KWnFv1A=
Subject key identifier:   2C:44:70:DC:04:B0:4C:E6:A0:58:31:4C:F2:70:98:7D:82:62:46:A7
Certificate issuer:       /CN=DE18E4F1B19E9CB42BE5468312764519EAA866BD
Certificate serial:       6750765A0DC69EE834AEB80BC0C2D4E179C45AD7
Authority key identifier: DE:18:E4:F1:B1:9E:9C:B4:2B:E5:46:83:12:76:45:19:EA:A8:66:BD
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE18E4F1B19E9CB42BE5468312764519EAA866BD.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/323830343a323565343a3530303a3a2f34302d3430203d3e203631353733.roa
Signing time:             Sat 03 May 2025 00:20:49 +0000
ROA not before:           Sat 03 May 2025 00:15:49 +0000
ROA not after:            Sat 02 May 2026 00:20:49 +0000
asID:                     61573
IP address blocks:        2804:25e4:500::/40 maxlen: 40
Validation:               OK
Signature path:           rsync://rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/DE18E4F1B19E9CB42BE5468312764519EAA866BD.crl
                          rsync://rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/DE18E4F1B19E9CB42BE5468312764519EAA866BD.mft
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE18E4F1B19E9CB42BE5468312764519EAA866BD.cer
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
                          rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
                          rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 10 Jun 2025 15:48:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:50:76:5a:0d:c6:9e:e8:34:ae:b8:0b:c0:c2:d4:e1:79:c4:5a:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DE18E4F1B19E9CB42BE5468312764519EAA866BD
        Validity
            Not Before: May  3 00:15:49 2025 GMT
            Not After : May  2 00:20:49 2026 GMT
        Subject: CN=2C4470DC04B04CE6A058314CF270987D826246A7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:6c:a4:aa:7b:f7:9c:83:03:9d:e7:06:02:13:
                    fd:e4:35:69:18:7a:93:01:11:36:04:e0:38:1b:f0:
                    84:b5:3d:af:ed:63:71:da:0f:c8:34:2f:f4:14:8d:
                    67:97:e0:a7:74:20:96:dd:bc:ec:c7:36:f3:42:d4:
                    cb:a9:67:19:3f:a0:67:c2:e3:e9:22:8b:68:7c:a2:
                    4f:f9:f8:7c:7f:77:2d:bf:27:9a:cf:30:88:af:75:
                    21:c6:60:6f:97:28:1a:fd:27:5f:37:fe:c6:f9:4b:
                    76:d5:8b:64:9d:13:0a:87:81:b1:b9:78:52:08:16:
                    38:84:99:7a:50:a7:64:1d:96:cf:04:48:d3:e7:2d:
                    40:ff:e2:ee:0b:6b:0f:42:1b:fc:21:92:a1:fd:31:
                    ce:d9:af:92:92:b5:8b:6e:43:7f:0d:79:da:ef:6d:
                    03:f7:47:c7:fb:26:38:53:4b:cd:df:9a:96:10:61:
                    99:15:ee:ba:6f:6d:58:69:e2:f0:22:c9:8f:27:52:
                    43:b4:ab:27:d3:b4:4c:83:4f:d7:08:bd:b1:58:b6:
                    c6:d3:03:06:69:8f:b9:b3:e4:20:7e:c0:0a:76:f6:
                    3a:fb:49:30:f8:fd:ce:58:d9:0d:9f:eb:a8:66:ad:
                    26:6e:e0:64:7d:bc:9b:0d:66:d4:b6:ee:43:b0:57:
                    1e:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:44:70:DC:04:B0:4C:E6:A0:58:31:4C:F2:70:98:7D:82:62:46:A7
            X509v3 Authority Key Identifier:
                keyid:DE:18:E4:F1:B1:9E:9C:B4:2B:E5:46:83:12:76:45:19:EA:A8:66:BD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/DE18E4F1B19E9CB42BE5468312764519EAA866BD.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE18E4F1B19E9CB42BE5468312764519EAA866BD.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/HwEKvtDJ6SBkvnVqGJiVji5uP46RLXTnhFsjx8Bs7eRt/0/323830343a323565343a3530303a3a2f34302d3430203d3e203631353733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:25e4:500::/40

    Signature Algorithm: sha256WithRSAEncryption
         7f:a2:40:eb:61:85:5f:e1:a5:cc:fe:88:dd:e6:44:f3:d1:4f:
         83:f2:03:d4:0c:d1:92:7d:07:8d:59:1b:77:04:05:98:fc:78:
         cb:98:f3:bd:84:08:2e:53:61:58:85:7b:21:ec:0a:2d:69:a9:
         08:fe:f2:cf:a7:c4:30:b2:45:7e:6b:9c:6d:eb:69:3d:99:f3:
         d7:f8:10:fa:c1:6f:dd:08:bb:6a:4d:89:26:07:b9:c7:ef:c3:
         d9:6b:1d:a2:0d:4f:0b:cb:3b:86:a8:f3:38:9d:62:f6:39:61:
         5a:61:74:90:3c:3a:e8:b7:1e:5e:0b:30:a7:0e:46:e1:00:71:
         83:2b:08:be:b7:8c:c5:90:a9:0f:2c:b2:e0:09:ea:f7:02:ea:
         df:07:81:4a:39:25:5b:cb:8c:dd:4e:85:7a:d9:3d:ac:29:77:
         80:08:7a:e2:d0:31:ab:8e:4b:4c:4f:05:e3:f9:39:95:b1:28:
         69:0c:5b:8a:76:22:34:02:5a:20:02:38:90:2d:9e:d2:37:73:
         c8:80:ce:be:10:33:4a:5e:ed:67:a2:3c:65:6e:26:f8:99:bf:
         ba:b5:11:7f:69:09:83:de:1d:e2:8d:8f:a6:51:cc:d6:bc:70:
         00:8e:e3:67:66:28:15:9c:29:07:9e:47:35:45:05:14:bd:dc:
         b9:cc:e6:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:37:26 2025 by rpki-client