$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263297.roa File: AS263297.roa (raw, json) Hash identifier: ln1e7ehtaBpKX/X5uzYwDbJupTpQZAGuJCzbg7EK+yg= Subject key identifier: 5F:07:7B:8D:05:F7:E1:F7:14:39:1E:5F:E8:1B:6B:CF:A8:F2:54:FB Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 6B01493D60378A7E4D7847FD7F8873F7940202A2 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263297.roa Signing time: Mon 25 Nov 2024 16:59:38 +0000 ROA not before: Mon 25 Nov 2024 16:54:38 +0000 ROA not after: Mon 24 Nov 2025 16:59:38 +0000 asID: 263297 IP address blocks: 45.230.116.0/22 maxlen: 24 131.255.124.0/22 maxlen: 24 143.202.168.0/22 maxlen: 24 167.249.92.0/22 maxlen: 24 168.0.124.0/22 maxlen: 24 170.82.196.0/22 maxlen: 24 191.6.136.0/22 maxlen: 24 2804:13d0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 30 Nov 2024 09:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:01:49:3d:60:37:8a:7e:4d:78:47:fd:7f:88:73:f7:94:02:02:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:38 2024 GMT Not After : Nov 24 16:59:38 2025 GMT Subject: CN=5F077B8D05F7E1F714391E5FE81B6BCFA8F254FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e4:c9:a2:54:ca:79:ba:4d:66:1f:d3:73:06: 26:f7:a7:7c:e0:2f:32:7e:e6:67:f4:f4:9d:10:be: bc:79:36:e8:3c:75:3f:ac:e0:dc:92:a0:2d:c8:d8: 0f:78:31:f3:cc:03:54:45:a2:57:e4:f1:c6:90:18: 5f:09:95:0a:9b:50:1e:6b:ea:a3:b4:ee:5a:18:37: b0:96:44:3b:06:68:a0:4e:90:8c:d6:56:3c:f0:37: 1a:bf:f5:ed:d3:33:ee:f9:e1:96:e2:4c:3d:be:a6: 0d:85:65:b0:50:15:25:6f:db:77:36:75:0a:c5:c5: 48:7c:75:5d:2e:b4:71:59:52:74:12:08:34:cd:80: 18:22:e5:b8:d0:4f:99:d8:91:8f:4e:67:3c:00:61: d3:c0:f4:5f:54:22:3e:21:93:67:57:d9:3c:52:99: bc:68:84:70:7f:60:9b:ed:1a:01:b7:d1:c3:9e:9c: 83:30:f1:c5:22:5f:3b:27:f1:74:bd:f6:67:1b:9d: 9b:45:51:0e:cc:79:71:aa:a8:da:ed:42:05:cc:e2: 28:5c:34:26:d0:89:c3:85:15:af:27:3d:c0:68:5f: f9:d6:68:28:07:4b:2a:d9:b7:0f:48:5e:cd:ca:28: 98:2b:ee:d5:33:a3:a3:db:36:b0:51:42:72:b6:10: 44:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:07:7B:8D:05:F7:E1:F7:14:39:1E:5F:E8:1B:6B:CF:A8:F2:54:FB X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263297.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.230.116.0/22 131.255.124.0/22 143.202.168.0/22 167.249.92.0/22 168.0.124.0/22 170.82.196.0/22 191.6.136.0/22 IPv6: 2804:13d0::/32 Signature Algorithm: sha256WithRSAEncryption 38:8e:24:8f:ca:d5:d0:74:07:5a:6e:d7:78:8a:e0:38:f9:a3: 2a:62:63:65:0a:b8:49:7e:26:b9:0f:a1:35:64:ec:27:da:75: 8c:f1:6f:6d:29:f6:98:7b:38:14:d2:88:99:93:f5:ee:51:61: 87:e0:21:58:8c:65:85:50:e6:14:20:fa:ec:5f:65:de:22:89: d3:da:ed:08:2a:7a:e5:04:b3:58:57:5c:f8:42:04:7d:b4:85: f6:a8:fd:b7:72:ac:64:e4:d4:9d:ff:73:fc:79:05:02:26:d9: d2:b2:96:f7:61:42:de:c7:76:ad:dd:6d:7d:84:df:b0:40:2a: f8:49:d0:20:01:ea:b5:cb:a9:26:2e:11:35:35:5a:bf:b4:ee: 12:85:f4:3f:7a:e5:c5:c8:44:0f:6d:0b:51:52:f1:6f:47:de: 4b:e3:56:7d:36:b9:02:02:8d:dc:19:a8:2e:5a:a1:48:4c:49: 84:85:5b:90:b6:23:3b:2b:bd:d4:4d:89:e1:6e:79:98:53:aa: bb:04:1f:38:69:3e:96:0c:c3:78:70:3e:b9:c9:8f:65:e8:e6: a3:54:c2:01:5f:d7:0c:99:49:7a:f3:cf:bd:9b:d0:69:c0:25: 56:a8:2d:a8:47:24:8f:13:84:61:41:ba:5f:bb:d2:ab:1d:5c: 88:f7:db:db -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUawFJPWA3in5NeEf9f4hz95QCAqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzhaFw0yNTExMjQxNjU5MzhaMDMxMTAvBgNV BAMTKDVGMDc3QjhEMDVGN0UxRjcxNDM5MUU1RkU4MUI2QkNGQThGMjU0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd5MmiVMp5uk1mH9NzBib3p3zg LzJ+5mf09J0Qvrx5Nug8dT+s4NySoC3I2A94MfPMA1RFolfk8caQGF8JlQqbUB5r 6qO07loYN7CWRDsGaKBOkIzWVjzwNxq/9e3TM+754ZbiTD2+pg2FZbBQFSVv23c2 dQrFxUh8dV0utHFZUnQSCDTNgBgi5bjQT5nYkY9OZzwAYdPA9F9UIj4hk2dX2TxS mbxohHB/YJvtGgG30cOenIMw8cUiXzsn8XS99mcbnZtFUQ7MeXGqqNrtQgXM4ihc NCbQicOFFa8nPcBoX/nWaCgHSyrZtw9IXs3KKJgr7tUzo6PbNrBRQnK2EERzAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUXwd7jQX34fcUOR5f6Btrz6jyVPswHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjYz Mjk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/ BEMwQTAwBAIAATAqAwQCLeZ0AwQCg/98AwQCj8qoAwQCp/lcAwQCqAB8AwQCqlLE AwQCvwaIMA0EAgACMAcDBQAoBBPQMA0GCSqGSIb3DQEBCwUAA4IBAQA4jiSPytXQ dAdabtd4iuA4+aMqYmNlCrhJfia5D6E1ZOwn2nWM8W9tKfaYezgU0oiZk/XuUWGH 4CFYjGWFUOYUIPrsX2XeIonT2u0IKnrlBLNYV1z4QgR9tIX2qP23cqxk5NSd/3P8 eQUCJtnSspb3YULex3at3W19hN+wQCr4SdAgAeq1y6kmLhE1NVq/tO4ShfQ/euXF yEQPbQtRUvFvR95L41Z9NrkCAo3cGaguWqFITEmEhVuQtiM7K73UTYnhbnmYU6q7 BB84aT6WDMN4cD65yY9l6OajVMIBX9cMmUl688+9m9BpwCVWqC2oRySPE4RhQbpf u9KrHVyI99vb -----END CERTIFICATE-----Generated at Fri Nov 29 10:53:29 2024 by rpki-client on console-ams.rpki-client.org