Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/J8UwqwagHB8YtrsjaWibULQMxFJ6fiZ9PM2UB9Ps1wiJ/1/3138372e34392e33322e302f32302d3234203d3e203238313430.roa
File:                     3138372e34392e33322e302f32302d3234203d3e203238313430.roa (raw, json)
Hash identifier:          yL1UD3CcHrjEnBW8oIZznmSDkqrUEaX+F5BAjwHArLg=
Subject key identifier:   DC:65:4C:3F:DB:A5:D7:29:3A:D2:A0:C8:0A:E0:11:13:A8:B7:7B:65
Certificate issuer:       /CN=9D9F73448694649C4F988D98A0F12757A6913C2D
Certificate serial:       4FF7B5F30C33FB99B3B828A048ED1D8194C64690
Authority key identifier: 9D:9F:73:44:86:94:64:9C:4F:98:8D:98:A0:F1:27:57:A6:91:3C:2D
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D9F73448694649C4F988D98A0F12757A6913C2D.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/J8UwqwagHB8YtrsjaWibULQMxFJ6fiZ9PM2UB9Ps1wiJ/1/3138372e34392e33322e302f32302d3234203d3e203238313430.roa
Signing time:             Wed 03 Apr 2024 20:50:59 +0000
ROA not before:           Wed 03 Apr 2024 20:45:59 +0000
ROA not after:            Wed 02 Apr 2025 20:50:59 +0000
asID:                     28140
IP address blocks:        187.49.32.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Thu 01 Aug 2024 20:03:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:f7:b5:f3:0c:33:fb:99:b3:b8:28:a0:48:ed:1d:81:94:c6:46:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9D9F73448694649C4F988D98A0F12757A6913C2D
        Validity
            Not Before: Apr  3 20:45:59 2024 GMT
            Not After : Apr  2 20:50:59 2025 GMT
        Subject: CN=DC654C3FDBA5D7293AD2A0C80AE01113A8B77B65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:7c:dc:ee:a7:97:ee:19:75:3b:66:02:80:0c:
                    8c:c5:88:b3:1e:7f:e2:d0:b8:a0:e0:76:01:2f:86:
                    dc:c8:89:c6:2a:e9:1e:f3:31:1e:7f:aa:e9:83:b9:
                    5c:7f:ee:75:9c:75:89:64:5e:1d:8b:10:78:2e:5a:
                    39:07:ff:f1:42:49:17:dd:7b:6d:1c:45:0d:71:f6:
                    2c:6f:dd:34:27:a4:2a:00:c6:2e:d8:d6:f1:5a:60:
                    0a:e7:f2:ce:8d:25:10:93:ee:66:04:dd:21:f1:e4:
                    46:2d:c0:d4:a4:aa:ce:70:1d:09:a4:3b:53:89:4a:
                    e0:e4:8d:6d:42:fc:d8:01:cb:98:2c:f4:74:1c:90:
                    a9:8e:20:4b:12:09:27:4b:33:a2:8e:9c:c4:a1:f7:
                    fc:26:e5:58:11:5d:4c:94:4f:c0:83:b5:54:46:ba:
                    26:a1:83:a7:1e:f0:71:ee:93:1c:6f:ff:f8:76:62:
                    72:ab:cb:fe:68:4e:26:37:74:e4:19:24:bb:74:18:
                    ac:48:bd:4f:7e:7f:9c:93:9a:79:65:e5:78:e5:fb:
                    7b:35:ab:2c:ef:4d:51:d8:4e:2f:88:81:e7:d7:31:
                    93:f8:16:f8:91:79:13:6c:b0:3a:06:d9:2b:68:af:
                    b9:86:9e:6b:7a:09:f5:46:35:e2:34:ca:79:18:f4:
                    b1:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:65:4C:3F:DB:A5:D7:29:3A:D2:A0:C8:0A:E0:11:13:A8:B7:7B:65
            X509v3 Authority Key Identifier:
                keyid:9D:9F:73:44:86:94:64:9C:4F:98:8D:98:A0:F1:27:57:A6:91:3C:2D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/J8UwqwagHB8YtrsjaWibULQMxFJ6fiZ9PM2UB9Ps1wiJ/1/9D9F73448694649C4F988D98A0F12757A6913C2D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9D9F73448694649C4F988D98A0F12757A6913C2D.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/J8UwqwagHB8YtrsjaWibULQMxFJ6fiZ9PM2UB9Ps1wiJ/1/3138372e34392e33322e302f32302d3234203d3e203238313430.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  187.49.32.0/20

    Signature Algorithm: sha256WithRSAEncryption
         a2:78:87:48:1a:47:30:ce:7c:25:44:01:ff:3c:92:f2:21:d8:
         01:16:e5:c7:e7:72:c3:2c:4b:53:90:3a:0f:e5:d6:bf:56:02:
         5b:f7:9f:31:48:e2:25:1a:fa:10:6c:21:d6:d1:f0:6d:44:18:
         43:80:66:3d:c3:6e:40:80:9b:21:27:04:d8:83:78:40:e0:0b:
         bf:76:18:0c:a0:cd:a6:9d:d2:63:b5:8a:9d:24:19:91:8e:c1:
         95:32:95:9a:f6:03:b4:6f:af:76:2a:1a:b9:9e:02:67:d5:35:
         78:62:f8:48:a0:8b:45:5c:39:38:1d:bf:29:8f:09:72:e9:c0:
         09:ac:45:07:20:08:6f:39:33:0d:7b:bb:a7:54:05:72:ba:80:
         3a:be:02:80:1f:88:74:e7:d5:8b:a4:36:5e:4f:98:fc:e6:6a:
         ac:2f:fd:67:46:04:46:a1:63:aa:ff:9e:fb:c2:89:cf:62:f2:
         e1:61:72:55:a7:b2:29:fd:1c:8b:41:ee:2d:17:09:15:1e:6a:
         02:8e:0e:a4:1e:2d:b0:3f:de:5f:63:e6:d1:0c:ac:e4:e0:6b:
         58:eb:cb:aa:59:5d:01:66:a6:59:f0:1b:99:57:5c:f1:a4:cf:
         f6:95:de:91:a9:f3:ab:a2:6c:f1:14:91:f9:32:8c:69:7f:e3:
         14:30:72:1b
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIUT/e18wwz+5mzuCigSO0dgZTGRpAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUQ5RjczNDQ4Njk0NjQ5QzRGOTg4RDk4QTBGMTI3NTdB
NjkxM0MyRDAeFw0yNDA0MDMyMDQ1NTlaFw0yNTA0MDIyMDUwNTlaMDMxMTAvBgNV
BAMTKERDNjU0QzNGREJBNUQ3MjkzQUQyQTBDODBBRTAxMTEzQThCNzdCNjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUfNzup5fuGXU7ZgKADIzFiLMe
f+LQuKDgdgEvhtzIicYq6R7zMR5/qumDuVx/7nWcdYlkXh2LEHguWjkH//FCSRfd
e20cRQ1x9ixv3TQnpCoAxi7Y1vFaYArn8s6NJRCT7mYE3SHx5EYtwNSkqs5wHQmk
O1OJSuDkjW1C/NgBy5gs9HQckKmOIEsSCSdLM6KOnMSh9/wm5VgRXUyUT8CDtVRG
uiahg6ce8HHukxxv//h2YnKry/5oTiY3dOQZJLt0GKxIvU9+f5yTmnll5Xjl+3s1
qyzvTVHYTi+IgefXMZP4FviReRNssDoG2Stor7mGnmt6CfVGNeI0ynkY9LENAgMB
AAGjggJNMIICSTAdBgNVHQ4EFgQU3GVMP9ul1yk60qDICuARE6i3e2UwHwYDVR0j
BBgwFoAUnZ9zRIaUZJxPmI2YoPEnV6aRPC0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vSjhVd3F3YWdIQjhZdHJzamFXaWJVTFFNeEZKNmZpWjlQTTJVQjlQczF3
aUovMS85RDlGNzM0NDg2OTQ2NDlDNEY5ODhEOThBMEYxMjc1N0E2OTEzQzJELmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzlEOUY3MzQ0ODY5NDY0OUM0
Rjk4OEQ5OEEwRjEyNzU3QTY5MTNDMkQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB
lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
L0o4VXdxd2FnSEI4WXRyc2phV2liVUxRTXhGSjZmaVo5UE0yVUI5UHMxd2lKLzEv
MzEzODM3MmUzNDM5MmUzMzMyMmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzODMx
MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEBLsxIDANBgkqhkiG9w0BAQsFAAOCAQEAoniHSBpHMM58
JUQB/zyS8iHYARblx+dywyxLU5A6D+XWv1YCW/efMUjiJRr6EGwh1tHwbUQYQ4Bm
PcNuQICbIScE2IN4QOALv3YYDKDNpp3SY7WKnSQZkY7BlTKVmvYDtG+vdioauZ4C
Z9U1eGL4SKCLRVw5OB2/KY8JcunACaxFByAIbzkzDXu7p1QFcrqAOr4CgB+IdOfV
i6Q2Xk+Y/OZqrC/9Z0YERqFjqv+e+8KJz2Ly4WFyVaeyKf0ci0HuLRcJFR5qAo4O
pB4tsD/eX2Pm0Qys5OBrWOvLqlldAWamWfAbmVdc8aTP9pXekanzq6Js8RSR+TKM
aX/jFDByGw==
-----END CERTIFICATE-----
Generated at Thu Aug 1 21:00:55 2024 by rpki-client on console-fra.rpki-client.org