$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS262794.roa File: AS262794.roa (raw, json) Hash identifier: i+v7lTyGLjfWU1kV/+Rb0JDm6OT0zpvMBUzQ4+kORtU= Subject key identifier: CA:15:ED:8F:47:23:81:91:89:85:08:DB:F9:A6:AF:18:0D:F0:79:A6 Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 1DE2DF865D446AAD2D779F6F1D15A822003A922D Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS262794.roa Signing time: Mon 25 Nov 2024 16:59:36 +0000 ROA not before: Mon 25 Nov 2024 16:54:36 +0000 ROA not after: Mon 24 Nov 2025 16:59:36 +0000 asID: 262794 IP address blocks: 143.255.244.0/22 maxlen: 24 168.195.84.0/22 maxlen: 24 201.76.112.0/20 maxlen: 24 2804:2b6c::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 20:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:e2:df:86:5d:44:6a:ad:2d:77:9f:6f:1d:15:a8:22:00:3a:92:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:36 2024 GMT Not After : Nov 24 16:59:36 2025 GMT Subject: CN=CA15ED8F47238191898508DBF9A6AF180DF079A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:8e:8f:61:9e:d9:a5:4e:15:35:d6:4d:a8: 8d:2a:56:5a:99:95:27:2c:ea:0a:27:c5:e8:a8:75: 6a:a1:6d:30:6e:e3:5a:93:21:53:5a:de:93:68:18: eb:2a:ac:0b:e5:7e:3a:1c:4c:f4:27:39:31:e4:aa: d7:30:53:2d:db:42:d1:83:c8:4a:a9:44:45:98:7d: 50:a6:15:71:6b:c5:8b:5e:54:a3:dc:18:0b:5a:dd: 40:dc:f1:64:72:79:f6:98:cd:67:7a:c6:66:5d:a3: d7:07:22:7f:be:e5:5f:65:e2:7c:98:2a:77:65:c3: dd:d9:f2:0c:eb:96:f3:e7:57:7a:41:9a:99:92:2f: 92:91:5a:ce:93:2c:e5:80:dd:85:ee:88:0a:4d:15: e2:80:08:de:6a:6c:37:fe:80:e3:ec:19:f1:1a:f7: 3e:a1:de:a9:10:e9:40:e6:3d:04:b7:c2:37:9d:5b: 3c:84:29:5d:b8:94:27:0f:3e:d7:c7:93:56:a6:ff: 24:21:de:5d:3c:3d:22:df:60:dd:a7:ec:c8:0f:e1: d3:fc:44:43:f0:a8:05:1f:85:80:50:27:cd:36:64: 50:6c:ca:f3:88:a9:01:9c:29:25:fe:64:19:22:a7: 66:9b:8e:75:4d:10:25:d4:21:c9:7e:34:cd:42:53: 0d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:15:ED:8F:47:23:81:91:89:85:08:DB:F9:A6:AF:18:0D:F0:79:A6 X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS262794.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.255.244.0/22 168.195.84.0/22 201.76.112.0/20 IPv6: 2804:2b6c::/32 Signature Algorithm: sha256WithRSAEncryption 57:34:98:c5:b6:0b:08:76:31:4f:a6:ce:04:b4:52:a5:4b:c8: 87:bb:b9:9f:dc:b3:36:4c:d2:f1:33:a4:3b:80:cd:7c:6b:61: e7:62:04:3d:70:87:ae:73:0a:78:85:37:91:0a:c1:5f:62:55: 80:72:8a:0d:1a:c9:27:d5:cc:17:c7:23:5f:de:4e:1d:5a:96: 29:89:c5:3c:dd:e6:2e:f4:26:f6:65:d7:5d:0b:4a:09:0e:1d: 37:c9:c8:14:5d:00:d8:05:53:7f:78:22:9a:ac:2c:6e:34:b2: 17:0a:5c:4a:0b:1d:e8:ea:db:c8:7d:5c:4b:30:fd:1d:af:04: 58:17:95:35:e8:91:a2:97:f7:54:5b:33:8a:40:cd:92:67:77: 36:98:e8:53:7b:b5:d7:1b:cb:2d:67:b0:d5:8b:87:47:c0:46: 31:b5:3e:c8:cd:d3:57:21:1f:61:e6:77:42:f3:40:ff:d9:10: 64:72:71:ca:b5:8f:b8:8b:5b:17:48:ff:67:30:b7:1b:f0:97: e5:1e:78:a4:7b:fa:1a:57:f0:76:d2:a2:d0:27:8e:b2:08:0d: a0:e4:2a:68:2b:26:2e:f4:2a:e8:c4:b1:a9:75:a5:e8:3e:0c: 9d:ad:3d:d1:c4:dd:1b:8e:08:3b:3b:a6:04:de:f2:8d:7f:6e: c8:e3:1a:fe -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHeLfhl1Eaq0td59vHRWoIgA6ki0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzZaFw0yNTExMjQxNjU5MzZaMDMxMTAvBgNV BAMTKENBMTVFRDhGNDcyMzgxOTE4OTg1MDhEQkY5QTZBRjE4MERGMDc5QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZiY6PYZ7ZpU4VNdZNqI0qVlqZ lScs6gonxeiodWqhbTBu41qTIVNa3pNoGOsqrAvlfjocTPQnOTHkqtcwUy3bQtGD yEqpREWYfVCmFXFrxYteVKPcGAta3UDc8WRyefaYzWd6xmZdo9cHIn++5V9l4nyY Kndlw93Z8gzrlvPnV3pBmpmSL5KRWs6TLOWA3YXuiApNFeKACN5qbDf+gOPsGfEa 9z6h3qkQ6UDmPQS3wjedWzyEKV24lCcPPtfHk1am/yQh3l08PSLfYN2n7MgP4dP8 REPwqAUfhYBQJ802ZFBsyvOIqQGcKSX+ZBkip2abjnVNECXUIcl+NM1CUw3vAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUyhXtj0cjgZGJhQjb+aavGA3weaYwHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjYy Nzk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQCj//0AwQCqMNUAwQEyUxwMA0EAgACMAcDBQAoBCtsMA0G CSqGSIb3DQEBCwUAA4IBAQBXNJjFtgsIdjFPps4EtFKlS8iHu7mf3LM2TNLxM6Q7 gM18a2HnYgQ9cIeucwp4hTeRCsFfYlWAcooNGskn1cwXxyNf3k4dWpYpicU83eYu 9Cb2ZdddC0oJDh03ycgUXQDYBVN/eCKarCxuNLIXClxKCx3o6tvIfVxLMP0drwRY F5U16JGil/dUWzOKQM2SZ3c2mOhTe7XXG8stZ7DVi4dHwEYxtT7IzdNXIR9h5ndC 80D/2RBkcnHKtY+4i1sXSP9nMLcb8JflHnike/oaV/B20qLQJ46yCA2g5CpoKyYu 9CroxLGpdaXoPgydrT3RxN0bjgg7O6YE3vKNf27I4xr+ -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:10 2024 by rpki-client on console-ams.rpki-client.org