$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa File: AS53059.roa (raw, json) Hash identifier: OaS2FCZ5DoWuFKLOt+1ZnFrtERbW5HqHQhAvjhZBEj4= Subject key identifier: 70:A2:7A:AF:20:F4:FA:E1:B4:5E:AA:42:06:37:9A:17:A1:1A:2B:2C Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Certificate serial: 5B0E75312D9CB03CD077D50FF9F6692431C275BA Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa Signing time: Thu 07 Nov 2024 20:53:51 +0000 ROA not before: Thu 07 Nov 2024 20:48:51 +0000 ROA not after: Thu 06 Nov 2025 20:53:51 +0000 asID: 53059 IP address blocks: 138.0.100.0/22 maxlen: 22 168.228.68.0/22 maxlen: 22 177.137.193.0/24 maxlen: 24 177.137.194.0/24 maxlen: 24 177.137.195.0/24 maxlen: 24 177.137.196.0/24 maxlen: 24 177.137.197.0/24 maxlen: 24 177.137.198.0/24 maxlen: 24 177.137.199.0/24 maxlen: 24 177.137.200.0/24 maxlen: 24 177.137.201.0/24 maxlen: 24 177.137.202.0/24 maxlen: 24 177.137.203.0/24 maxlen: 24 177.137.204.0/24 maxlen: 24 177.137.205.0/24 maxlen: 24 177.137.206.0/24 maxlen: 24 177.137.207.0/24 maxlen: 24 179.96.240.0/20 maxlen: 20 186.193.96.0/20 maxlen: 20 186.208.213.0/24 maxlen: 24 186.208.214.0/24 maxlen: 24 186.208.215.0/24 maxlen: 24 186.251.113.0/24 maxlen: 24 186.251.116.0/24 maxlen: 24 186.251.117.0/24 maxlen: 24 187.49.192.0/20 maxlen: 20 187.87.112.0/20 maxlen: 20 200.233.80.0/20 maxlen: 20 2804:2140:100c::/48 maxlen: 48 2804:2140:1016::/48 maxlen: 48 2804:2140:1020::/46 maxlen: 46 2804:2140:1801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 00:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0e:75:31:2d:9c:b0:3c:d0:77:d5:0f:f9:f6:69:24:31:c2:75:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Validity Not Before: Nov 7 20:48:51 2024 GMT Not After : Nov 6 20:53:51 2025 GMT Subject: CN=70A27AAF20F4FAE1B45EAA4206379A17A11A2B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:17:d3:c1:4e:86:53:cf:cc:34:ef:b5:58:f3: ad:a2:0a:5b:c5:2c:bf:f2:bd:10:81:e2:8b:ce:2b: 1f:9d:e2:4f:89:dc:7d:a7:26:e4:86:87:d5:f0:6b: 75:58:42:36:c1:23:ab:eb:c3:05:33:ff:95:3f:25: 4f:3b:cc:6c:c9:01:46:3c:38:c7:75:76:fb:1e:b0: 8e:3e:3e:2a:e4:25:3b:de:a8:d8:4a:56:1e:79:32: 94:5f:2b:92:63:aa:c9:04:d9:2c:1f:10:a7:e8:e6: d1:e4:5c:e0:5d:6b:87:ed:07:dd:7e:9e:5b:3d:a8: 25:9a:04:6b:9a:8a:7a:f2:33:95:bd:e4:39:dd:5c: 9e:a4:f0:92:1e:ad:47:2f:63:c0:18:28:e8:a7:cb: 64:55:b7:49:c9:dd:f4:ca:27:66:bd:28:b8:b4:38: 66:54:1e:5c:8f:98:16:18:d1:95:36:b9:2f:ea:a0: 4b:12:8f:a3:31:37:db:e8:0a:7f:b2:c1:ff:11:27: 47:84:a9:37:1f:34:fc:86:12:54:ce:c0:e6:bb:a7: 70:86:5d:fc:ef:e9:f5:90:1f:12:2b:7d:08:8b:51: 72:19:3a:97:0f:3b:e7:f0:9d:0d:5d:31:17:9f:a6: 0e:57:ee:e9:4a:28:6e:2a:9f:79:15:c8:15:84:74: df:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A2:7A:AF:20:F4:FA:E1:B4:5E:AA:42:06:37:9A:17:A1:1A:2B:2C X509v3 Authority Key Identifier: keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.0.100.0/22 168.228.68.0/22 177.137.193.0-177.137.207.255 179.96.240.0/20 186.193.96.0/20 186.208.213.0-186.208.215.255 186.251.113.0/24 186.251.116.0/23 187.49.192.0/20 187.87.112.0/20 200.233.80.0/20 IPv6: 2804:2140:100c::/48 2804:2140:1016::/48 2804:2140:1020::/46 2804:2140:1801::/48 Signature Algorithm: sha256WithRSAEncryption 2a:9d:4f:5d:da:1a:16:5e:c9:6a:09:2a:b5:65:97:d7:ca:42: f0:a1:a8:e1:9e:c0:4d:35:11:41:38:5c:4f:f6:b7:68:d8:16: 60:94:ea:24:70:77:30:37:2e:3b:74:d5:62:e5:8a:32:8c:22: 3b:9d:c1:0a:6d:af:e3:7e:27:53:bc:09:7a:4f:36:5f:a6:05: d3:2f:98:c3:30:e2:b0:ad:cb:cc:16:cb:10:b9:5b:9b:b7:16: a6:6c:74:d6:3d:8b:1a:63:95:98:68:28:81:63:f8:a2:dd:10: a0:77:5d:1e:31:fe:4a:8f:65:5f:e1:c6:ed:67:27:9b:4f:7e: 9e:85:7f:39:af:a6:4f:97:4f:27:b3:99:98:5d:e3:63:33:5b: 30:1f:3e:0c:3f:a3:c0:a0:94:66:05:75:8c:49:5d:78:84:2e: e1:17:b8:b3:86:95:15:20:b1:eb:32:78:49:8c:7c:5f:86:1f: 0a:9e:71:c3:74:0d:87:3b:47:d4:5d:8a:ae:18:70:bb:ac:7e: 80:94:34:2e:75:0d:54:7a:76:57:20:49:8b:98:29:e1:a8:06: d7:1a:a9:fb:b1:75:c6:ef:51:f2:1c:15:73:16:89:e9:6e:4b: 81:b5:87:12:0c:c0:8e:e8:9e:39:70:1b:f5:31:e3:d6:9d:06: 11:25:c2:cb -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIUWw51MS2csDzQd9UP+fZpJDHCdbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjYyRkE1NDBFNTlCODU3MDIwQzRCMjA5NTQyMzBFMEMw QUU4Q0EwRTAeFw0yNDExMDcyMDQ4NTFaFw0yNTExMDYyMDUzNTFaMDMxMTAvBgNV BAMTKDcwQTI3QUFGMjBGNEZBRTFCNDVFQUE0MjA2Mzc5QTE3QTExQTJCMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPF9PBToZTz8w077VY862iClvF LL/yvRCB4ovOKx+d4k+J3H2nJuSGh9Xwa3VYQjbBI6vrwwUz/5U/JU87zGzJAUY8 OMd1dvsesI4+PirkJTveqNhKVh55MpRfK5JjqskE2SwfEKfo5tHkXOBda4ftB91+ nls9qCWaBGuainryM5W95DndXJ6k8JIerUcvY8AYKOiny2RVt0nJ3fTKJ2a9KLi0 OGZUHlyPmBYY0ZU2uS/qoEsSj6MxN9voCn+ywf8RJ0eEqTcfNPyGElTOwOa7p3CG Xfzv6fWQHxIrfQiLUXIZOpcPO+fwnQ1dMRefpg5X7ulKKG4qn3kVyBWEdN9LAgMB AAGjggKWMIICkjAdBgNVHQ4EFgQUcKJ6ryD0+uG0XqpCBjeaF6EaKywwHwYDVR0j BBgwFoAU9i+lQOWbhXAgxLIJVCMODAroyg4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmRHQVBKUDY1ZWZlQ1RVYTg0aHc1UkdSYlpHUFcycVJ5VHZnYWhnanhF ZUIvMC9GNjJGQTU0MEU1OUI4NTcwMjBDNEIyMDk1NDIzMEUwQzBBRThDQTBFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y2MkZBNTQwRTU5Qjg1NzAy MEM0QjIwOTU0MjMwRTBDMEFFOENBMEUuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8yZEdB UEpQNjVlZmVDVFVhODRodzVSR1JiWkdQVzJxUnlUdmdhaGdqeEVlQi8wL0FTNTMw NTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwgZkGCCsGAQUFBwEHAQH/ BIGJMIGGMFgEAgABMFIDBAKKAGQDBAKo5EQwDAMEALGJwQMEBLGJwAMEBLNg8AME BLrBYDAMAwQAutDVAwQDutDQAwQAuvtxAwQBuvt0AwQEuzHAAwQEu1dwAwQEyOlQ MCoEAgACMCQDBwAoBCFAEAwDBwAoBCFAEBYDBwIoBCFAECADBwAoBCFAGAEwDQYJ KoZIhvcNAQELBQADggEBACqdT13aGhZeyWoJKrVll9fKQvChqOGewE01EUE4XE/2 t2jYFmCU6iRwdzA3Ljt01WLlijKMIjudwQptr+N+J1O8CXpPNl+mBdMvmMMw4rCt y8wWyxC5W5u3FqZsdNY9ixpjlZhoKIFj+KLdEKB3XR4x/kqPZV/hxu1nJ5tPfp6F fzmvpk+XTyezmZhd42MzWzAfPgw/o8CglGYFdYxJXXiELuEXuLOGlRUgsesyeEmM fF+GHwqeccN0DYc7R9Rdiq4YcLusfoCUNC51DVR6dlcgSYuYKeGoBtcaqfuxdcbv UfIcFXMWieluS4G1hxIMwI7onjlwG/Ux49adBhElwss= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:34 2024 by rpki-client on console-ams.rpki-client.org