$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa File: AS53059.roa (raw, json) Hash identifier: Vb2BrHnp84oChDG2+UEeVmdFhLl16AGTfVOkcQNjw1c= Subject key identifier: C6:82:47:58:D1:7A:4C:62:2F:FD:69:41:90:00:D1:00:DE:84:DE:24 Certificate issuer: /CN=5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF Certificate serial: 36BDEDDEA75D0B0D1CE344810A34268785106878 Authority key identifier: 5D:D0:CA:D6:FE:5D:D0:2B:05:3D:6B:01:DB:D5:3A:59:8B:D3:50:BF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.cer Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa Signing time: Sat 13 Apr 2024 21:09:40 +0000 ROA not before: Sat 13 Apr 2024 21:04:40 +0000 ROA not after: Sat 12 Apr 2025 21:09:40 +0000 asID: 53059 IP address blocks: 138.0.100.0/22 maxlen: 22 168.228.68.0/22 maxlen: 22 177.137.193.0/24 maxlen: 24 177.137.194.0/24 maxlen: 24 177.137.195.0/24 maxlen: 24 177.137.196.0/24 maxlen: 24 177.137.197.0/24 maxlen: 24 177.137.198.0/24 maxlen: 24 177.137.199.0/24 maxlen: 24 177.137.200.0/24 maxlen: 24 177.137.201.0/24 maxlen: 24 177.137.202.0/24 maxlen: 24 177.137.203.0/24 maxlen: 24 177.137.204.0/24 maxlen: 24 177.137.205.0/24 maxlen: 24 177.137.206.0/24 maxlen: 24 177.137.207.0/24 maxlen: 24 179.96.240.0/20 maxlen: 20 186.193.96.0/20 maxlen: 20 186.208.213.0/24 maxlen: 24 186.208.214.0/24 maxlen: 24 186.208.215.0/24 maxlen: 24 186.251.113.0/24 maxlen: 24 186.251.116.0/24 maxlen: 24 186.251.117.0/24 maxlen: 24 187.49.192.0/20 maxlen: 20 187.87.112.0/20 maxlen: 20 200.233.80.0/20 maxlen: 20 2804:2140:100c::/48 maxlen: 48 2804:2140:1016::/48 maxlen: 48 2804:2140:1020::/46 maxlen: 46 2804:2140:1801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.crl rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 30 Jun 2024 03:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:bd:ed:de:a7:5d:0b:0d:1c:e3:44:81:0a:34:26:87:85:10:68:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF Validity Not Before: Apr 13 21:04:40 2024 GMT Not After : Apr 12 21:09:40 2025 GMT Subject: CN=C6824758D17A4C622FFD69419000D100DE84DE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:59:4c:e5:ee:34:11:43:7e:77:64:b0:29:8a: 11:21:6f:26:9e:1f:5f:a8:bc:df:25:a1:9f:88:c8: 29:82:7e:77:07:2d:de:f4:d7:04:5f:6b:6b:a3:48: a5:b6:06:15:27:44:76:11:be:63:a7:3d:df:2d:43: 34:63:3a:64:15:62:1e:47:b2:99:04:36:78:5a:da: f8:9f:81:de:77:00:6c:08:15:10:87:37:c9:d9:f5: 3f:24:1c:95:3c:8d:5a:ba:c1:43:58:29:31:06:f1: c8:6c:2a:bc:3e:c1:1e:a8:fe:a3:d2:3d:3c:c2:c7: 53:c6:8f:7a:1d:42:d1:0a:28:e9:9c:6e:c2:43:62: 36:b4:c5:84:c3:c5:9a:a3:7c:86:97:8a:cd:06:28: dd:c5:84:24:9a:7b:63:3d:de:73:c7:fb:b9:8b:9b: 44:12:de:6e:3e:b4:ff:77:fb:e5:93:e6:45:77:e9: da:69:ca:f9:f1:ab:51:ce:87:d3:70:c7:76:c0:53: 69:3c:69:15:85:c1:fb:4e:10:d1:28:7a:19:cf:2e: 22:61:75:bb:c6:3c:14:43:3b:1e:53:a5:c5:96:d2: 1c:0e:8e:c4:7c:f1:fa:9d:f7:f0:f4:d2:aa:48:5c: 6a:92:e7:74:53:ce:b5:12:3a:30:2c:20:fe:a4:3c: e5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:82:47:58:D1:7A:4C:62:2F:FD:69:41:90:00:D1:00:DE:84:DE:24 X509v3 Authority Key Identifier: keyid:5D:D0:CA:D6:FE:5D:D0:2B:05:3D:6B:01:DB:D5:3A:59:8B:D3:50:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5DD0CAD6FE5DD02B053D6B01DBD53A598BD350BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.0.100.0/22 168.228.68.0/22 177.137.193.0-177.137.207.255 179.96.240.0/20 186.193.96.0/20 186.208.213.0-186.208.215.255 186.251.113.0/24 186.251.116.0/23 187.49.192.0/20 187.87.112.0/20 200.233.80.0/20 IPv6: 2804:2140:100c::/48 2804:2140:1016::/48 2804:2140:1020::/46 2804:2140:1801::/48 Signature Algorithm: sha256WithRSAEncryption 00:bc:b0:e5:bf:14:6f:4f:70:f3:fc:ac:28:5d:d4:41:94:bc: 8a:66:7b:9a:32:98:ca:42:2d:0e:e5:92:93:67:80:80:9a:28: c5:b2:58:7f:fd:a5:62:ff:29:97:b1:12:28:16:74:16:1d:29: 74:e3:fe:75:97:d6:f6:2e:00:a9:27:b4:4f:7f:0d:b2:d2:9a: 1e:ff:5b:17:0e:c0:b1:c4:64:4f:d6:b0:47:64:ed:7f:71:5e: 82:bb:59:f7:fa:05:5f:1e:0e:77:96:68:fa:63:3b:a1:f1:1a: e0:ce:07:7f:97:cd:e5:db:56:4a:0d:03:2f:05:72:d6:c5:f9: 18:cc:a6:17:33:30:95:da:72:ba:1d:8e:ad:73:a6:f7:d8:73: 70:e7:b4:89:3d:02:cf:71:aa:1a:5d:a6:d8:b0:6e:a4:67:0a: 0e:cf:0d:04:ca:cc:49:5b:4c:9d:81:4b:c1:55:ae:61:fb:15: 6e:a5:32:77:1e:f3:32:b9:45:8d:43:0d:de:f2:d8:53:34:29: 79:c8:5b:d6:a4:3c:61:f9:2e:6f:22:f4:90:bb:06:af:67:dd: 7c:c7:83:17:62:14:ef:a6:7d:dd:5f:17:bb:e8:94:05:75:ad: bc:17:01:0f:52:7f:73:66:83:a3:39:b0:7d:dc:ac:2c:15:bb: 2e:a6:1f:66 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIUNr3t3qddCw0c40SBCjQmh4UQaHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUREMENBRDZGRTVERDAyQjA1M0Q2QjAxREJENTNBNTk4 QkQzNTBCRjAeFw0yNDA0MTMyMTA0NDBaFw0yNTA0MTIyMTA5NDBaMDMxMTAvBgNV BAMTKEM2ODI0NzU4RDE3QTRDNjIyRkZENjk0MTkwMDBEMTAwREU4NERFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfWUzl7jQRQ353ZLApihEhbyae H1+ovN8loZ+IyCmCfncHLd701wRfa2ujSKW2BhUnRHYRvmOnPd8tQzRjOmQVYh5H spkENnha2vifgd53AGwIFRCHN8nZ9T8kHJU8jVq6wUNYKTEG8chsKrw+wR6o/qPS PTzCx1PGj3odQtEKKOmcbsJDYja0xYTDxZqjfIaXis0GKN3FhCSae2M93nPH+7mL m0QS3m4+tP93++WT5kV36dppyvnxq1HOh9Nwx3bAU2k8aRWFwftOENEoehnPLiJh dbvGPBRDOx5TpcWW0hwOjsR88fqd9/D00qpIXGqS53RTzrUSOjAsIP6kPOXlAgMB AAGjggKWMIICkjAdBgNVHQ4EFgQUxoJHWNF6TGIv/WlBkADRAN6E3iQwHwYDVR0j BBgwFoAUXdDK1v5d0CsFPWsB29U6WYvTUL8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmRHQVBKUDY1ZWZlQ1RVYTg0aHc1UkdSYlpHUFcycVJ5VHZnYWhnanhF ZUIvMC81REQwQ0FENkZFNUREMDJCMDUzRDZCMDFEQkQ1M0E1OThCRDM1MEJGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVERDBDQUQ2RkU1REQwMkIw NTNENkIwMURCRDUzQTU5OEJEMzUwQkYuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8yZEdB UEpQNjVlZmVDVFVhODRodzVSR1JiWkdQVzJxUnlUdmdhaGdqeEVlQi8wL0FTNTMw NTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgZkGCCsGAQUFBwEHAQH/ BIGJMIGGMFgEAgABMFIDBAKKAGQDBAKo5EQwDAMEALGJwQMEBLGJwAMEBLNg8AME BLrBYDAMAwQAutDVAwQDutDQAwQAuvtxAwQBuvt0AwQEuzHAAwQEu1dwAwQEyOlQ MCoEAgACMCQDBwAoBCFAEAwDBwAoBCFAEBYDBwIoBCFAECADBwAoBCFAGAEwDQYJ KoZIhvcNAQELBQADggEBAAC8sOW/FG9PcPP8rChd1EGUvIpme5oymMpCLQ7lkpNn gICaKMWyWH/9pWL/KZexEigWdBYdKXTj/nWX1vYuAKkntE9/DbLSmh7/WxcOwLHE ZE/WsEdk7X9xXoK7Wff6BV8eDneWaPpjO6HxGuDOB3+XzeXbVkoNAy8FctbF+RjM phczMJXacrodjq1zpvfYc3DntIk9As9xqhpdptiwbqRnCg7PDQTKzElbTJ2BS8FV rmH7FW6lMnce8zK5RY1DDd7y2FM0KXnIW9akPGH5Lm8i9JC7Bq9n3XzHgxdiFO+m fd1fF7volAV1rbwXAQ9Sf3Nmg6M5sH3crCwVuy6mH2Y= -----END CERTIFICATE-----Generated at Sat Jun 29 03:28:34 2024 by rpki-client on console-ams.rpki-client.org