$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263405.roa File: AS263405.roa (raw, json) Hash identifier: 3DStYwK3QmjyH7+pf3S5+yU8m24Z5bu0nc1yXCvPl/s= Subject key identifier: 40:95:AC:A8:35:17:8B:83:C5:27:7D:30:1D:C7:2B:00:54:DD:02:EE Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 48637444B9949CDAE8B751B14CF621AB5EE1B23A Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263405.roa Signing time: Mon 25 Nov 2024 16:59:32 +0000 ROA not before: Mon 25 Nov 2024 16:54:32 +0000 ROA not after: Mon 24 Nov 2025 16:59:32 +0000 asID: 263405 IP address blocks: 128.201.0.0/22 maxlen: 24 143.255.252.0/22 maxlen: 24 170.254.32.0/22 maxlen: 24 177.222.248.0/21 maxlen: 24 2804:15b4::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 20:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:63:74:44:b9:94:9c:da:e8:b7:51:b1:4c:f6:21:ab:5e:e1:b2:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:32 2024 GMT Not After : Nov 24 16:59:32 2025 GMT Subject: CN=4095ACA835178B83C5277D301DC72B0054DD02EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:e8:60:ed:b9:38:8b:d1:52:87:e7:22:36: 80:d4:27:1a:70:7e:3b:be:3f:f8:e2:1f:64:8d:9d: 8d:cf:ce:e5:97:bc:85:49:40:64:0c:1e:09:7e:fa: bb:9f:26:04:ed:77:2b:69:c2:44:94:55:1f:da:4c: 97:a2:b8:18:66:2f:ac:2a:e3:b7:48:de:d3:c5:49: 9b:a0:e7:d2:ab:03:08:a9:71:a2:04:a5:3c:b7:21: 89:c1:08:1e:d5:99:e9:13:61:ce:f9:1d:78:b4:dd: af:05:af:58:6a:da:cd:4b:4f:3f:5a:d2:66:41:42: cb:19:6e:4c:dd:85:9d:db:3f:35:75:51:46:fa:0b: c6:7e:0f:84:f6:bc:69:2a:d5:8f:b7:96:a0:13:aa: b0:a1:bd:16:a8:92:8c:fe:4c:21:fa:ec:4b:12:96: 73:b4:b9:84:92:23:bf:5c:a7:72:5e:7d:2b:80:6c: 1c:d3:94:82:a5:81:74:5b:b0:52:81:36:97:6d:9b: 07:17:36:74:0b:ce:b5:50:d3:d6:47:dd:1f:c1:5d: e8:58:00:5e:e0:c5:fb:d4:89:2a:06:ff:90:8f:5d: 78:7d:1c:3e:21:3b:80:db:af:57:f4:4c:d7:49:ea: f6:21:6c:48:b6:dd:ec:1c:15:09:f3:8c:11:ea:a6: 1c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:95:AC:A8:35:17:8B:83:C5:27:7D:30:1D:C7:2B:00:54:DD:02:EE X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS263405.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.0.0/22 143.255.252.0/22 170.254.32.0/22 177.222.248.0/21 IPv6: 2804:15b4::/32 Signature Algorithm: sha256WithRSAEncryption 7e:fa:a4:70:29:0d:d6:8e:7c:d2:ea:ec:1f:a4:4e:d3:db:e5: c6:c3:37:a4:70:2d:8c:1a:78:45:2b:ee:dc:1e:a8:83:28:06: d4:4c:bc:b3:7b:47:17:4b:88:40:ee:c7:6b:88:29:f3:09:75: ce:f5:49:14:78:cb:9a:59:c7:cf:e0:28:9d:1c:b3:07:ad:02: 65:14:a9:b9:53:98:5a:6b:eb:c3:24:d6:09:1d:38:5a:14:de: 84:f2:41:0c:9b:cd:85:a7:70:7c:6f:a6:3e:d1:9b:f8:d6:9e: 35:d5:c1:ce:15:25:fd:69:42:99:8a:92:23:4b:e8:d2:20:fd: 15:41:a1:10:13:81:68:f6:4f:0a:11:fd:34:69:b7:a6:1f:87: 39:bd:9f:5c:8f:29:0c:85:02:85:0d:ef:48:66:b4:49:5a:bb: 44:7d:e8:2c:71:5f:4e:68:f8:43:a4:8d:29:42:2e:c2:82:08: 41:09:b2:22:a7:2a:42:d7:65:26:b0:6a:18:01:ba:0b:b6:49: 4a:fa:ea:b5:d5:d8:4c:0f:8b:23:60:68:3e:9d:7b:30:9a:6a: 70:0a:32:71:cd:71:81:ab:c2:1b:53:e2:de:37:29:ad:6e:b7: 52:e4:a3:cf:bf:ed:e0:a1:39:89:0f:dd:13:4a:2d:44:90:ce: 58:fb:dd:3b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSGN0RLmUnNrot1GxTPYhq17hsjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzJaFw0yNTExMjQxNjU5MzJaMDMxMTAvBgNV BAMTKDQwOTVBQ0E4MzUxNzhCODNDNTI3N0QzMDFEQzcyQjAwNTRERDAyRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Xehg7bk4i9FSh+ciNoDUJxpw fju+P/jiH2SNnY3PzuWXvIVJQGQMHgl++rufJgTtdytpwkSUVR/aTJeiuBhmL6wq 47dI3tPFSZug59KrAwipcaIEpTy3IYnBCB7VmekTYc75HXi03a8Fr1hq2s1LTz9a 0mZBQssZbkzdhZ3bPzV1UUb6C8Z+D4T2vGkq1Y+3lqATqrChvRaokoz+TCH67EsS lnO0uYSSI79cp3JefSuAbBzTlIKlgXRbsFKBNpdtmwcXNnQLzrVQ09ZH3R/BXehY AF7gxfvUiSoG/5CPXXh9HD4hO4Dbr1f0TNdJ6vYhbEi23ewcFQnzjBHqphzvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQJWsqDUXi4PFJ30wHccrAFTdAu4wHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjYz NDA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQCgMkAAwQCj//8AwQCqv4gAwQDsd74MA0EAgACMAcDBQAo BBW0MA0GCSqGSIb3DQEBCwUAA4IBAQB++qRwKQ3WjnzS6uwfpE7T2+XGwzekcC2M GnhFK+7cHqiDKAbUTLyze0cXS4hA7sdriCnzCXXO9UkUeMuaWcfP4CidHLMHrQJl FKm5U5haa+vDJNYJHThaFN6E8kEMm82Fp3B8b6Y+0Zv41p411cHOFSX9aUKZipIj S+jSIP0VQaEQE4Fo9k8KEf00abemH4c5vZ9cjykMhQKFDe9IZrRJWrtEfegscV9O aPhDpI0pQi7CgghBCbIipypC12UmsGoYAboLtklK+uq11dhMD4sjYGg+nXswmmpw CjJxzXGBq8IbU+LeNymtbrdS5KPPv+3goTmJD90TSi1EkM5Y+907 -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:10 2024 by rpki-client on console-ams.rpki-client.org