Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
File: AS28220.roa (raw, json)
Hash identifier: p4m16fBsgSW2bZGM0Hgt/tNzTL7M/TJoMH9dqOFQpSU=
Subject key identifier: A0:61:B2:09:70:4A:7D:AF:9B:5D:45:AF:50:16:6D:4D:89:72:82:51
Certificate issuer: /CN=610FA580591423BC36D2EE3D16B968E308782571
Certificate serial: 20200A21358F1A68B577AAE87058E371495466E7
Authority key identifier: 61:0F:A5:80:59:14:23:BC:36:D2:EE:3D:16:B9:68:E3:08:78:25:71
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/610FA580591423BC36D2EE3D16B968E308782571.cer
Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
Signing time: Mon 09 Sep 2024 15:00:46 +0000
ROA not before: Mon 09 Sep 2024 14:55:46 +0000
ROA not after: Mon 08 Sep 2025 15:00:46 +0000
asID: 28220
IP address blocks: 45.4.64.0/22 maxlen: 22
138.0.100.0/22 maxlen: 22
168.227.108.0/22 maxlen: 22
168.227.108.0/23 maxlen: 23
168.227.108.0/24 maxlen: 24
168.227.109.0/24 maxlen: 24
168.227.110.0/23 maxlen: 23
168.227.110.0/24 maxlen: 24
168.227.111.0/24 maxlen: 24
168.228.68.0/22 maxlen: 22
170.82.92.0/22 maxlen: 22
170.82.92.0/23 maxlen: 23
170.82.92.0/24 maxlen: 24
170.82.93.0/24 maxlen: 24
170.82.94.0/23 maxlen: 23
170.82.94.0/24 maxlen: 24
170.82.95.0/24 maxlen: 24
177.89.0.0/16 maxlen: 16
177.89.248.0/21 maxlen: 21
177.137.192.0/20 maxlen: 20
177.137.193.0/24 maxlen: 24
177.137.194.0/24 maxlen: 24
177.137.195.0/24 maxlen: 24
177.137.196.0/24 maxlen: 24
177.137.197.0/24 maxlen: 24
177.137.198.0/24 maxlen: 24
177.137.199.0/24 maxlen: 24
177.137.200.0/24 maxlen: 24
177.137.201.0/24 maxlen: 24
177.137.202.0/24 maxlen: 24
177.137.203.0/24 maxlen: 24
177.137.204.0/24 maxlen: 24
177.137.205.0/24 maxlen: 24
177.137.206.0/24 maxlen: 24
177.137.207.0/24 maxlen: 24
179.96.192.0/21 maxlen: 21
179.96.240.0/20 maxlen: 20
179.190.128.0/17 maxlen: 17
179.190.208.0/21 maxlen: 21
186.192.16.0/20 maxlen: 20
186.192.16.0/21 maxlen: 21
186.192.16.0/22 maxlen: 22
186.192.16.0/23 maxlen: 23
186.192.16.0/24 maxlen: 24
186.192.17.0/24 maxlen: 24
186.192.18.0/23 maxlen: 23
186.192.18.0/24 maxlen: 24
186.192.19.0/24 maxlen: 24
186.192.20.0/22 maxlen: 22
186.192.20.0/23 maxlen: 23
186.192.20.0/24 maxlen: 24
186.192.21.0/24 maxlen: 24
186.192.22.0/23 maxlen: 23
186.192.22.0/24 maxlen: 24
186.192.23.0/24 maxlen: 24
186.192.24.0/21 maxlen: 21
186.192.24.0/22 maxlen: 22
186.192.24.0/23 maxlen: 23
186.192.24.0/24 maxlen: 24
186.192.25.0/24 maxlen: 24
186.192.26.0/23 maxlen: 23
186.192.26.0/24 maxlen: 24
186.192.27.0/24 maxlen: 24
186.192.28.0/22 maxlen: 22
186.192.28.0/23 maxlen: 23
186.192.28.0/24 maxlen: 24
186.192.29.0/24 maxlen: 24
186.192.30.0/23 maxlen: 23
186.192.30.0/24 maxlen: 24
186.192.31.0/24 maxlen: 24
186.193.96.0/20 maxlen: 20
186.193.96.0/21 maxlen: 21
186.193.103.0/24 maxlen: 24
186.193.104.0/21 maxlen: 21
186.193.104.0/24 maxlen: 24
186.208.208.0/21 maxlen: 21
186.208.208.0/24 maxlen: 24
186.208.209.0/24 maxlen: 24
186.208.210.0/23 maxlen: 23
186.208.210.0/24 maxlen: 24
186.208.211.0/24 maxlen: 24
186.208.213.0/24 maxlen: 24
186.208.214.0/24 maxlen: 24
186.208.215.0/24 maxlen: 24
186.235.0.0/20 maxlen: 20
186.236.192.0/19 maxlen: 19
186.251.112.0/21 maxlen: 21
186.251.112.0/22 maxlen: 22
186.251.112.0/24 maxlen: 24
186.251.113.0/24 maxlen: 24
186.251.114.0/24 maxlen: 24
186.251.115.0/24 maxlen: 24
186.251.116.0/22 maxlen: 22
186.251.116.0/24 maxlen: 24
186.251.117.0/24 maxlen: 24
186.251.118.0/24 maxlen: 24
186.251.119.0/24 maxlen: 24
187.49.192.0/20 maxlen: 20
187.60.64.0/19 maxlen: 19
187.61.128.0/17 maxlen: 17
187.61.128.0/18 maxlen: 18
187.61.180.0/22 maxlen: 22
187.61.191.0/24 maxlen: 24
187.61.192.0/18 maxlen: 18
187.61.224.0/21 maxlen: 21
187.61.240.0/21 maxlen: 21
187.86.96.0/20 maxlen: 20
187.86.96.0/21 maxlen: 21
187.86.96.0/24 maxlen: 24
187.86.97.0/24 maxlen: 24
187.86.98.0/23 maxlen: 23
187.86.98.0/24 maxlen: 24
187.86.99.0/24 maxlen: 24
187.86.100.0/22 maxlen: 22
187.86.100.0/24 maxlen: 24
187.86.101.0/24 maxlen: 24
187.86.104.0/21 maxlen: 21
187.86.110.0/24 maxlen: 24
187.87.112.0/20 maxlen: 20
187.108.64.0/20 maxlen: 20
187.109.176.0/20 maxlen: 20
187.109.187.0/24 maxlen: 24
187.111.224.0/19 maxlen: 19
189.45.16.0/20 maxlen: 20
189.45.16.0/21 maxlen: 21
189.45.17.0/24 maxlen: 24
189.45.18.0/23 maxlen: 23
189.45.20.0/23 maxlen: 23
189.45.22.0/24 maxlen: 24
189.45.24.0/21 maxlen: 21
189.45.27.0/24 maxlen: 24
189.45.28.0/24 maxlen: 24
189.45.30.0/24 maxlen: 24
189.124.128.0/17 maxlen: 17
189.124.137.0/24 maxlen: 24
189.124.140.0/24 maxlen: 24
189.124.142.0/24 maxlen: 24
189.124.143.0/24 maxlen: 24
189.124.156.0/22 maxlen: 22
189.124.200.0/21 maxlen: 21
189.124.240.0/21 maxlen: 21
191.241.40.0/21 maxlen: 21
191.241.40.0/22 maxlen: 22
191.241.40.0/23 maxlen: 23
191.241.40.0/24 maxlen: 24
191.241.41.0/24 maxlen: 24
191.241.42.0/23 maxlen: 23
191.241.42.0/24 maxlen: 24
191.241.43.0/24 maxlen: 24
191.241.44.0/22 maxlen: 22
191.241.44.0/23 maxlen: 23
191.241.44.0/24 maxlen: 24
191.241.45.0/24 maxlen: 24
191.241.46.0/23 maxlen: 23
191.241.46.0/24 maxlen: 24
200.233.80.0/20 maxlen: 20
200.233.80.0/21 maxlen: 21
200.233.84.0/24 maxlen: 24
200.233.88.0/21 maxlen: 21
201.148.188.0/22 maxlen: 22
2804:54::/32 maxlen: 32
2804:54:c::/48 maxlen: 48
2804:54:1001::/48 maxlen: 48
2804:54:1002::/48 maxlen: 48
2804:54:1a00::/40 maxlen: 40
2804:54:1b00::/40 maxlen: 40
2804:54:1c00::/40 maxlen: 40
2804:54:1d00::/40 maxlen: 40
2804:54:1e00::/40 maxlen: 40
2804:54:1f00::/40 maxlen: 40
2804:54:6007::/48 maxlen: 48
2804:2140::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/610FA580591423BC36D2EE3D16B968E308782571.crl
rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/610FA580591423BC36D2EE3D16B968E308782571.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/610FA580591423BC36D2EE3D16B968E308782571.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sun 29 Sep 2024 04:24:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:20:0a:21:35:8f:1a:68:b5:77:aa:e8:70:58:e3:71:49:54:66:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610FA580591423BC36D2EE3D16B968E308782571
Validity
Not Before: Sep 9 14:55:46 2024 GMT
Not After : Sep 8 15:00:46 2025 GMT
Subject: CN=A061B209704A7DAF9B5D45AF50166D4D89728251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:80:03:55:a6:3e:98:bc:39:bb:3e:bb:a7:69:
f3:4e:fb:9b:f7:fb:c2:9b:32:13:0f:ef:ba:46:96:
38:71:73:56:4f:a8:03:d6:21:d7:30:4f:dd:2c:b1:
47:6c:4f:4b:de:ce:c2:04:c4:08:52:04:f1:a0:ca:
1a:0f:3f:db:01:94:ff:0b:1d:8d:bf:2c:23:17:b3:
ea:99:44:c3:6e:8f:6e:ad:fe:f4:ed:c0:e3:5f:0d:
99:7a:b0:1a:9e:50:e2:46:54:40:9a:38:fe:02:40:
46:b9:34:a7:9e:44:5c:c0:74:c4:d5:2c:a8:a0:2c:
c3:71:8f:16:c2:f6:8e:86:3e:2c:b5:59:21:7b:13:
5e:e5:1e:ed:40:54:2e:30:e7:0a:6a:2b:83:78:62:
6b:ad:83:6f:53:3f:65:53:dc:1e:49:d9:da:b8:c2:
44:c3:0a:95:cb:f2:cf:76:d9:7e:52:33:22:6f:61:
fa:82:9d:d3:6a:9e:da:20:01:e2:2c:0f:9a:b6:b5:
20:d9:87:26:d7:67:84:46:d4:44:92:e6:71:80:b0:
e6:20:55:10:56:71:41:0a:92:83:5d:2c:ba:47:e3:
a7:97:42:c5:f9:3f:9d:64:f2:fe:91:ae:8e:43:f5:
bf:82:fd:c6:21:b4:5b:c7:2d:a2:66:0b:7a:81:3b:
d9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:61:B2:09:70:4A:7D:AF:9B:5D:45:AF:50:16:6D:4D:89:72:82:51
X509v3 Authority Key Identifier:
keyid:61:0F:A5:80:59:14:23:BC:36:D2:EE:3D:16:B9:68:E3:08:78:25:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/610FA580591423BC36D2EE3D16B968E308782571.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/610FA580591423BC36D2EE3D16B968E308782571.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS28220.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.64.0/22
138.0.100.0/22
168.227.108.0/22
168.228.68.0/22
170.82.92.0/22
177.89.0.0/16
177.137.192.0/20
179.96.192.0/21
179.96.240.0/20
179.190.128.0/17
186.192.16.0/20
186.193.96.0/20
186.208.208.0/21
186.235.0.0/20
186.236.192.0/19
186.251.112.0/21
187.49.192.0/20
187.60.64.0/19
187.61.128.0/17
187.86.96.0/20
187.87.112.0/20
187.108.64.0/20
187.109.176.0/20
187.111.224.0/19
189.45.16.0/20
189.124.128.0/17
191.241.40.0/21
200.233.80.0/20
201.148.188.0/22
IPv6:
2804:54::/32
2804:2140::/32
Signature Algorithm: sha256WithRSAEncryption
a7:eb:fa:37:1e:db:d9:14:8d:87:48:65:1b:e3:d8:89:c1:6b:
a3:2d:14:db:ea:79:72:0c:ce:84:e4:65:89:6c:4e:61:76:41:
74:f2:1a:b8:2b:dd:83:68:7e:b5:30:dc:d3:91:d0:2a:78:92:
76:33:6d:6e:44:84:ea:62:b8:48:b6:ad:8c:94:2d:2c:64:f6:
f6:65:a2:31:c9:74:70:1a:da:9b:1e:fb:be:26:b5:63:5e:58:
59:44:b2:c6:f9:a6:3c:67:fe:5e:c7:f9:90:0e:8f:1a:f0:02:
be:f7:51:0a:cc:64:bb:f9:8d:6b:c0:68:26:27:5e:a5:19:ac:
bc:7e:34:59:e3:b4:f1:29:61:8e:ef:a8:13:31:d7:52:9a:bb:
5e:b6:7e:f6:8b:2a:bb:75:ec:22:61:1e:fa:55:85:15:8d:b3:
7c:74:07:5e:37:2a:16:03:66:d4:67:bb:d0:3d:a6:6b:85:73:
a2:74:9b:ab:a5:71:ce:e4:30:52:fb:fa:a6:83:fb:cf:f2:40:
de:6c:ee:5e:60:14:7d:d3:65:c4:af:b5:a3:6f:d5:da:43:62:
31:35:d4:c7:18:21:6c:95:f8:ae:c6:0b:df:1a:d2:b0:f2:c5:
2f:b5:55:04:a1:21:c1:f5:d0:7f:4b:4c:57:71:45:69:eb:e0:
be:4b:aa:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 28 08:18:26 2024 by rpki-client on console-ams.rpki-client.org