$ rpki-client -vvf rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa File: AS53224.roa (raw, json) Hash identifier: MEChprGFPhlJCqyTu7ELhsHmeS2DSPtDM3RN7VZkhSM= Subject key identifier: 1E:9E:C4:D5:D4:BA:91:55:9B:6D:60:A5:DD:92:A2:CF:10:1F:AD:37 Certificate issuer: /CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Certificate serial: 7434C20D12505174CFCDF3A08F2AB25603B35538 Authority key identifier: F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject info access: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa Signing time: Thu 07 Nov 2024 20:53:51 +0000 ROA not before: Thu 07 Nov 2024 20:48:51 +0000 ROA not after: Thu 06 Nov 2025 20:53:51 +0000 asID: 53224 IP address blocks: 186.193.96.0/20 maxlen: 20 186.193.103.0/24 maxlen: 24 186.193.104.0/24 maxlen: 24 186.208.208.0/21 maxlen: 21 186.208.209.0/24 maxlen: 24 186.208.210.0/23 maxlen: 23 186.208.211.0/24 maxlen: 24 186.208.214.0/24 maxlen: 24 186.208.215.0/24 maxlen: 24 186.251.112.0/22 maxlen: 22 186.251.113.0/24 maxlen: 24 186.251.114.0/24 maxlen: 24 186.251.115.0/24 maxlen: 24 186.251.117.0/24 maxlen: 24 186.251.118.0/24 maxlen: 24 186.251.119.0/24 maxlen: 24 187.86.96.0/20 maxlen: 20 187.86.97.0/24 maxlen: 24 187.86.98.0/24 maxlen: 24 187.86.99.0/24 maxlen: 24 187.86.100.0/24 maxlen: 24 187.86.101.0/24 maxlen: 24 187.86.110.0/24 maxlen: 24 189.45.16.0/20 maxlen: 20 200.233.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 24 Nov 2024 00:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:34:c2:0d:12:50:51:74:cf:cd:f3:a0:8f:2a:b2:56:03:b3:55:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F62FA540E59B857020C4B20954230E0C0AE8CA0E Validity Not Before: Nov 7 20:48:51 2024 GMT Not After : Nov 6 20:53:51 2025 GMT Subject: CN=1E9EC4D5D4BA91559B6D60A5DD92A2CF101FAD37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:06:23:d9:a0:25:17:ab:a1:74:a8:93:58:5e: a4:09:a0:ba:da:ac:dd:85:12:af:23:37:1d:e8:e1: 1e:63:6e:0e:1e:25:3a:19:7e:0d:d1:3f:d2:75:3c: b0:2b:52:6b:21:8c:75:b6:7e:a4:13:8d:6f:ba:58: 7f:87:ae:ef:ee:d3:37:71:fa:cc:07:8a:5a:8b:75: 44:f1:23:6a:b6:93:66:f9:53:82:54:8a:5b:82:4a: d1:f2:03:fd:96:bb:6c:8a:31:83:4e:ef:2e:31:b9: a5:43:21:43:12:6e:ed:e7:f9:91:ca:f2:67:92:e9: bf:cb:83:61:64:d7:88:0e:3d:e1:95:93:45:35:02: f0:0d:95:b4:ec:41:9b:97:2f:05:c3:5d:f2:01:e7: 4b:7b:3c:b2:be:58:8b:ff:98:1a:7e:57:d9:7e:b4: 09:1d:bd:c0:5c:0b:54:0b:9b:e7:7b:08:ad:d1:37: a3:79:b7:0f:4f:a6:99:8c:9c:dc:3a:55:29:61:13: 4b:80:e3:4f:b9:ff:f4:fa:24:ea:f9:1d:d7:83:15: ee:b6:28:2f:81:1a:05:8c:e2:fe:98:03:d0:c7:da: 0b:2c:0e:b2:2b:d8:be:ed:a2:b3:2d:fd:88:f7:6e: 1e:bc:64:dd:75:5e:3e:46:7c:fc:67:95:79:ed:7b: b8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9E:C4:D5:D4:BA:91:55:9B:6D:60:A5:DD:92:A2:CF:10:1F:AD:37 X509v3 Authority Key Identifier: keyid:F6:2F:A5:40:E5:9B:85:70:20:C4:B2:09:54:23:0E:0C:0A:E8:CA:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/F62FA540E59B857020C4B20954230E0C0AE8CA0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/F62FA540E59B857020C4B20954230E0C0AE8CA0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dGAPJP65efeCTUa84hw5RGRbZGPW2qRyTvgahgjxEeB/0/AS53224.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 186.193.96.0/20 186.208.208.0/21 186.251.112.0/22 186.251.117.0-186.251.119.255 187.86.96.0/20 189.45.16.0/20 200.233.84.0/24 Signature Algorithm: sha256WithRSAEncryption 25:e9:4e:bd:2e:02:b4:59:e5:47:d8:88:50:06:13:a2:4f:5d: a5:a6:4a:cb:da:04:e1:93:d9:02:81:b3:5d:29:4a:4a:9d:0d: 33:72:1b:3f:eb:18:80:d2:89:f7:32:f2:70:30:fc:49:36:5a: 7d:22:ef:04:da:e6:fb:73:9c:c8:59:21:16:3e:7b:01:26:a2: 1a:b5:ae:6f:42:e4:f8:8f:aa:2e:d8:1a:cd:e2:c0:71:8d:8e: 63:12:9e:d7:00:43:c1:4e:b3:dd:c9:64:ef:9e:fd:18:2b:64: e4:2c:f9:e3:66:8e:02:9b:79:ec:34:e4:b3:13:dd:87:8c:33: ca:98:3c:ea:26:b8:7e:2a:68:f5:bd:70:78:f9:ae:7c:c9:42: 04:db:16:80:ab:e4:c4:8a:a7:f0:a8:46:e3:49:92:77:8e:de: 89:50:c8:9c:13:e5:49:ac:93:6f:01:1e:6e:f3:af:d0:ca:e0: c7:b6:17:7f:e4:1f:41:c4:86:66:f0:08:bb:c3:b2:ae:91:3a: ee:14:2a:32:fe:e5:58:57:63:d9:24:3d:db:5b:22:42:ec:16: cc:5f:f8:8a:aa:5e:7a:ab:d1:7b:92:9f:0e:35:23:ec:f4:bf: b7:76:a1:81:59:bb:ab:84:3a:b6:df:17:2d:68:26:66:f7:fc: f9:8a:49:b3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUdDTCDRJQUXTPzfOgjyqyVgOzVTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjYyRkE1NDBFNTlCODU3MDIwQzRCMjA5NTQyMzBFMEMw QUU4Q0EwRTAeFw0yNDExMDcyMDQ4NTFaFw0yNTExMDYyMDUzNTFaMDMxMTAvBgNV BAMTKDFFOUVDNEQ1RDRCQTkxNTU5QjZENjBBNUREOTJBMkNGMTAxRkFEMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBiPZoCUXq6F0qJNYXqQJoLra rN2FEq8jNx3o4R5jbg4eJToZfg3RP9J1PLArUmshjHW2fqQTjW+6WH+Hru/u0zdx +swHilqLdUTxI2q2k2b5U4JUiluCStHyA/2Wu2yKMYNO7y4xuaVDIUMSbu3n+ZHK 8meS6b/Lg2Fk14gOPeGVk0U1AvANlbTsQZuXLwXDXfIB50t7PLK+WIv/mBp+V9l+ tAkdvcBcC1QLm+d7CK3RN6N5tw9PppmMnNw6VSlhE0uA40+5//T6JOr5HdeDFe62 KC+BGgWM4v6YA9DH2gssDrIr2L7torMt/Yj3bh68ZN11Xj5GfPxnlXnte7ibAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUHp7E1dS6kVWbbWCl3ZKizxAfrTcwHwYDVR0j BBgwFoAU9i+lQOWbhXAgxLIJVCMODAroyg4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmRHQVBKUDY1ZWZlQ1RVYTg0aHc1UkdSYlpHUFcycVJ5VHZnYWhnanhF ZUIvMC9GNjJGQTU0MEU1OUI4NTcwMjBDNEIyMDk1NDIzMEUwQzBBRThDQTBFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Y2MkZBNTQwRTU5Qjg1NzAy MEM0QjIwOTU0MjMwRTBDMEFFOENBMEUuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8yZEdB UEpQNjVlZmVDVFVhODRodzVSR1JiWkdQVzJxUnlUdmdhaGdqeEVlQi8wL0FTNTMy MjQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAS6wWADBAO60NADBAK6+3AwDAMEALr7dQMEA7r7cAMEBLtW YAMEBL0tEAMEAMjpVDANBgkqhkiG9w0BAQsFAAOCAQEAJelOvS4CtFnlR9iIUAYT ok9dpaZKy9oE4ZPZAoGzXSlKSp0NM3IbP+sYgNKJ9zLycDD8STZafSLvBNrm+3Oc yFkhFj57ASaiGrWub0Lk+I+qLtgazeLAcY2OYxKe1wBDwU6z3clk7579GCtk5Cz5 42aOApt57DTksxPdh4wzypg86ia4fipo9b1wePmufMlCBNsWgKvkxIqn8KhG40mS d47eiVDInBPlSayTbwEebvOv0Mrgx7YXf+QfQcSGZvAIu8OyrpE67hQqMv7lWFdj 2SQ921siQuwWzF/4iqpeeqvRe5KfDjUj7PS/t3ahgVm7q4Q6tt8XLWgmZvf8+YpJ sw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:34 2024 by rpki-client on console-ams.rpki-client.org