Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
File: AS28220.roa (raw, json)
Hash identifier: O6hmfhJLf16cotNSknAhgMSlvLCrpe/CD+shcRzpEWQ=
Subject key identifier: 58:75:77:91:52:D5:5A:DD:80:9E:A4:53:CB:F2:A2:66:4C:3F:96:7B
Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E
Certificate serial: 6B857A2C6912F7F9331D9A7F957FC7082BD68450
Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
Signing time: Thu 07 Nov 2024 21:01:19 +0000
ROA not before: Thu 07 Nov 2024 20:56:19 +0000
ROA not after: Thu 06 Nov 2025 21:01:19 +0000
asID: 28220
IP address blocks: 45.4.64.0/22 maxlen: 22
138.0.100.0/22 maxlen: 22
168.227.108.0/22 maxlen: 22
168.227.108.0/23 maxlen: 23
168.227.108.0/24 maxlen: 24
168.227.109.0/24 maxlen: 24
168.227.110.0/23 maxlen: 23
168.227.110.0/24 maxlen: 24
168.227.111.0/24 maxlen: 24
168.228.68.0/22 maxlen: 22
170.82.92.0/22 maxlen: 22
170.82.92.0/23 maxlen: 23
170.82.92.0/24 maxlen: 24
170.82.93.0/24 maxlen: 24
170.82.94.0/23 maxlen: 23
170.82.94.0/24 maxlen: 24
170.82.95.0/24 maxlen: 24
177.89.0.0/16 maxlen: 16
177.89.248.0/21 maxlen: 21
177.137.192.0/20 maxlen: 20
177.137.193.0/24 maxlen: 24
177.137.194.0/24 maxlen: 24
177.137.195.0/24 maxlen: 24
177.137.196.0/24 maxlen: 24
177.137.197.0/24 maxlen: 24
177.137.198.0/24 maxlen: 24
177.137.199.0/24 maxlen: 24
177.137.200.0/24 maxlen: 24
177.137.201.0/24 maxlen: 24
177.137.202.0/24 maxlen: 24
177.137.203.0/24 maxlen: 24
177.137.204.0/24 maxlen: 24
177.137.205.0/24 maxlen: 24
177.137.206.0/24 maxlen: 24
177.137.207.0/24 maxlen: 24
179.96.192.0/21 maxlen: 21
179.96.240.0/20 maxlen: 20
179.190.128.0/17 maxlen: 17
179.190.208.0/21 maxlen: 21
186.192.16.0/20 maxlen: 20
186.192.16.0/21 maxlen: 21
186.192.16.0/22 maxlen: 22
186.192.16.0/23 maxlen: 23
186.192.16.0/24 maxlen: 24
186.192.17.0/24 maxlen: 24
186.192.18.0/23 maxlen: 23
186.192.18.0/24 maxlen: 24
186.192.19.0/24 maxlen: 24
186.192.20.0/22 maxlen: 22
186.192.20.0/23 maxlen: 23
186.192.20.0/24 maxlen: 24
186.192.21.0/24 maxlen: 24
186.192.22.0/23 maxlen: 23
186.192.22.0/24 maxlen: 24
186.192.23.0/24 maxlen: 24
186.192.24.0/21 maxlen: 21
186.192.24.0/22 maxlen: 22
186.192.24.0/23 maxlen: 23
186.192.24.0/24 maxlen: 24
186.192.25.0/24 maxlen: 24
186.192.26.0/23 maxlen: 23
186.192.26.0/24 maxlen: 24
186.192.27.0/24 maxlen: 24
186.192.28.0/22 maxlen: 22
186.192.28.0/23 maxlen: 23
186.192.28.0/24 maxlen: 24
186.192.29.0/24 maxlen: 24
186.192.30.0/23 maxlen: 23
186.192.30.0/24 maxlen: 24
186.192.31.0/24 maxlen: 24
186.193.96.0/20 maxlen: 20
186.193.96.0/21 maxlen: 21
186.193.103.0/24 maxlen: 24
186.193.104.0/21 maxlen: 21
186.193.104.0/24 maxlen: 24
186.208.208.0/21 maxlen: 21
186.208.208.0/24 maxlen: 24
186.208.209.0/24 maxlen: 24
186.208.210.0/23 maxlen: 23
186.208.210.0/24 maxlen: 24
186.208.211.0/24 maxlen: 24
186.208.213.0/24 maxlen: 24
186.208.214.0/24 maxlen: 24
186.208.215.0/24 maxlen: 24
186.235.0.0/20 maxlen: 20
186.236.192.0/19 maxlen: 19
186.251.112.0/21 maxlen: 21
186.251.112.0/22 maxlen: 22
186.251.112.0/24 maxlen: 24
186.251.113.0/24 maxlen: 24
186.251.114.0/24 maxlen: 24
186.251.115.0/24 maxlen: 24
186.251.116.0/22 maxlen: 22
186.251.116.0/24 maxlen: 24
186.251.117.0/24 maxlen: 24
186.251.118.0/24 maxlen: 24
186.251.119.0/24 maxlen: 24
187.49.192.0/20 maxlen: 20
187.60.64.0/19 maxlen: 19
187.61.128.0/17 maxlen: 17
187.61.128.0/18 maxlen: 18
187.61.180.0/22 maxlen: 22
187.61.191.0/24 maxlen: 24
187.61.192.0/18 maxlen: 18
187.61.224.0/21 maxlen: 21
187.61.240.0/21 maxlen: 21
187.86.96.0/20 maxlen: 20
187.86.96.0/21 maxlen: 21
187.86.96.0/24 maxlen: 24
187.86.97.0/24 maxlen: 24
187.86.98.0/23 maxlen: 23
187.86.98.0/24 maxlen: 24
187.86.99.0/24 maxlen: 24
187.86.100.0/22 maxlen: 22
187.86.100.0/24 maxlen: 24
187.86.101.0/24 maxlen: 24
187.86.104.0/21 maxlen: 21
187.86.110.0/24 maxlen: 24
187.87.112.0/20 maxlen: 20
187.108.64.0/20 maxlen: 20
187.109.176.0/20 maxlen: 20
187.109.187.0/24 maxlen: 24
187.111.224.0/19 maxlen: 19
189.45.16.0/20 maxlen: 20
189.45.16.0/21 maxlen: 21
189.45.17.0/24 maxlen: 24
189.45.18.0/23 maxlen: 23
189.45.20.0/23 maxlen: 23
189.45.22.0/24 maxlen: 24
189.45.24.0/21 maxlen: 21
189.45.24.0/24 maxlen: 24
189.45.27.0/24 maxlen: 24
189.45.28.0/24 maxlen: 24
189.45.30.0/24 maxlen: 24
189.124.128.0/17 maxlen: 17
189.124.137.0/24 maxlen: 24
189.124.140.0/24 maxlen: 24
189.124.142.0/24 maxlen: 24
189.124.143.0/24 maxlen: 24
189.124.156.0/22 maxlen: 22
189.124.200.0/21 maxlen: 21
189.124.240.0/21 maxlen: 21
191.241.40.0/21 maxlen: 21
191.241.40.0/22 maxlen: 22
191.241.40.0/23 maxlen: 23
191.241.40.0/24 maxlen: 24
191.241.41.0/24 maxlen: 24
191.241.42.0/23 maxlen: 23
191.241.42.0/24 maxlen: 24
191.241.43.0/24 maxlen: 24
191.241.44.0/22 maxlen: 22
191.241.44.0/23 maxlen: 23
191.241.44.0/24 maxlen: 24
191.241.45.0/24 maxlen: 24
191.241.46.0/23 maxlen: 23
191.241.46.0/24 maxlen: 24
200.233.80.0/20 maxlen: 20
200.233.80.0/21 maxlen: 21
200.233.84.0/24 maxlen: 24
200.233.88.0/21 maxlen: 21
201.148.188.0/22 maxlen: 22
2804:54::/32 maxlen: 32
2804:54:c::/48 maxlen: 48
2804:54:1001::/48 maxlen: 48
2804:54:1002::/48 maxlen: 48
2804:54:1a00::/40 maxlen: 40
2804:54:1b00::/40 maxlen: 40
2804:54:1c00::/40 maxlen: 40
2804:54:1d00::/40 maxlen: 40
2804:54:1e00::/40 maxlen: 40
2804:54:1f00::/40 maxlen: 40
2804:54:6007::/48 maxlen: 48
2804:2140::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl
rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 24 Nov 2024 00:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:85:7a:2c:69:12:f7:f9:33:1d:9a:7f:95:7f:c7:08:2b:d6:84:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E
Validity
Not Before: Nov 7 20:56:19 2024 GMT
Not After : Nov 6 21:01:19 2025 GMT
Subject: CN=5875779152D55ADD809EA453CBF2A2664C3F967B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:99:dc:9f:8e:7c:16:6c:c7:5e:d6:04:48:3c:
6c:05:9e:a5:ad:3b:34:15:de:f5:e7:d0:88:78:d0:
01:7e:d6:de:67:3f:51:55:73:6a:b6:c9:de:d1:f3:
33:f3:a8:86:c0:9b:c7:c1:3a:94:f4:10:b8:6f:61:
ea:60:66:bd:8b:50:25:3d:45:18:0b:cf:28:be:5f:
79:8b:a0:c2:fe:af:a1:95:45:e7:a6:0f:6e:5c:e7:
d0:66:97:43:82:1c:8d:95:bb:da:fc:31:96:29:75:
28:13:9c:cb:9b:63:e5:70:d7:39:2a:68:ba:97:a0:
6c:f4:3a:c7:ea:2a:9e:18:a9:01:24:5e:5b:11:60:
cc:24:38:76:0a:c6:ef:e0:ca:81:1a:80:4d:af:10:
f2:a1:75:24:6c:cc:a4:78:f7:20:2d:14:17:e8:33:
a7:9b:38:0b:ca:d0:03:1f:18:00:8a:ae:80:f1:55:
41:22:c4:63:10:47:50:f1:21:1e:d9:7b:44:e7:40:
83:b1:85:0d:68:b8:67:be:f0:9a:a1:0f:59:e1:27:
7d:ae:4f:f4:d5:c8:87:54:74:6b:3b:88:b2:31:b2:
c6:08:cd:65:3e:38:be:72:d7:2c:98:33:71:a5:a5:
bd:cd:0b:d4:94:ba:01:a3:33:1f:74:bc:02:0f:d2:
9c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:75:77:91:52:D5:5A:DD:80:9E:A4:53:CB:F2:A2:66:4C:3F:96:7B
X509v3 Authority Key Identifier:
keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.64.0/22
138.0.100.0/22
168.227.108.0/22
168.228.68.0/22
170.82.92.0/22
177.89.0.0/16
177.137.192.0/20
179.96.192.0/21
179.96.240.0/20
179.190.128.0/17
186.192.16.0/20
186.193.96.0/20
186.208.208.0/21
186.235.0.0/20
186.236.192.0/19
186.251.112.0/21
187.49.192.0/20
187.60.64.0/19
187.61.128.0/17
187.86.96.0/20
187.87.112.0/20
187.108.64.0/20
187.109.176.0/20
187.111.224.0/19
189.45.16.0/20
189.124.128.0/17
191.241.40.0/21
200.233.80.0/20
201.148.188.0/22
IPv6:
2804:54::/32
2804:2140::/32
Signature Algorithm: sha256WithRSAEncryption
46:b2:c4:fe:9e:8a:2f:7f:7a:61:e5:95:88:b2:67:e1:ee:f4:
2e:7a:76:f9:b7:39:7d:a2:62:67:14:74:fc:cd:e5:19:df:d5:
1e:78:a5:29:ea:6f:3a:66:41:eb:38:8d:aa:fc:19:df:b3:55:
d9:d6:ea:b2:42:bf:92:00:28:da:70:be:56:ef:8a:46:7e:0c:
a9:aa:76:63:46:0f:ea:47:58:e9:bb:d7:13:8a:e4:81:6a:2c:
41:a9:e1:24:35:f8:f4:91:fb:7f:ba:7d:f9:97:7b:ea:26:21:
18:3b:f4:95:9c:52:93:35:04:b8:41:be:0b:7e:0f:9d:e0:bd:
06:a9:2c:f4:18:d7:31:e5:36:23:ef:26:db:09:5d:aa:cf:6d:
18:5e:ad:fa:29:2a:d0:30:43:9d:6f:cc:a5:97:d6:dd:39:a7:
65:d4:9b:dc:76:95:65:64:b2:c8:55:03:f0:f0:a6:a6:50:88:
85:c1:74:3b:21:91:07:bc:13:58:ae:cd:2b:62:ff:c6:45:a2:
4f:6e:8f:4e:5b:2b:53:c4:a5:68:8c:7c:1f:ea:50:02:4b:e0:
ea:99:df:a3:4f:e5:29:dc:77:b6:e0:37:7f:f6:97:e4:7b:80:
cb:52:fd:18:6f:d1:8b:e3:d9:9c:b0:05:9d:24:02:86:0f:15:
91:c8:1c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 00:05:34 2024 by rpki-client on console-ams.rpki-client.org