$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267085.roa File: AS267085.roa (raw, json) Hash identifier: 9/zatEcjIfEO/h+0BaUJSbsC1zigcQXoJhHsf8cxaaA= Subject key identifier: 95:8C:BB:B6:76:3D:F7:F9:A8:C8:0E:01:DA:F6:72:00:25:53:BC:AA Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 6F7129420A100747D455D00EA9380FACFEC5BDE6 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267085.roa Signing time: Mon 25 Nov 2024 16:59:34 +0000 ROA not before: Mon 25 Nov 2024 16:54:34 +0000 ROA not after: Mon 24 Nov 2025 16:59:34 +0000 asID: 267085 IP address blocks: 45.228.240.0/22 maxlen: 24 2804:47ec::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 19:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:71:29:42:0a:10:07:47:d4:55:d0:0e:a9:38:0f:ac:fe:c5:bd:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:34 2024 GMT Not After : Nov 24 16:59:34 2025 GMT Subject: CN=958CBBB6763DF7F9A8C80E01DAF672002553BCAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:59:23:88:d2:c6:ac:60:2b:ce:87:d2:32:d0: bd:cb:73:c3:50:5e:ee:53:74:70:22:7d:8a:50:02: f0:ca:fd:d7:02:04:a0:9c:7d:c1:bc:af:e4:35:b0: 91:28:a8:da:b0:d3:2b:44:2b:8b:e1:c2:ca:88:80: 89:bd:0d:41:bd:08:f5:c5:88:9f:c4:85:d2:c4:36: 43:87:f7:18:f3:76:62:5e:bc:dd:78:da:dc:e6:dc: 2e:ea:d9:ea:69:ee:da:8a:8a:05:b3:95:11:e2:6b: 2a:08:ae:c9:e8:0c:33:d5:91:80:91:a0:7a:7e:77: e9:b9:53:75:f6:38:c2:73:9a:6b:e6:2a:2a:ab:98: 7a:60:a4:11:5a:02:aa:ab:f9:a8:9b:d7:82:0e:e8: 5b:13:41:51:95:ac:63:f7:03:88:69:6e:b3:6c:37: a5:8f:ce:ff:d8:c3:5e:56:86:16:40:89:cd:7a:54: 13:7a:02:ad:8c:2f:b6:92:b3:f7:8c:a7:00:59:06: 84:b8:83:cc:2d:3b:62:54:73:3f:0c:0e:33:35:74: 2c:36:46:27:48:44:d6:fe:1f:7a:34:c3:a9:8e:c5: 2c:6b:8f:1e:b0:55:36:aa:45:0f:7d:df:dc:1e:4a: 38:07:40:9d:56:93:5f:b6:b0:54:51:92:ad:c2:2c: fd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8C:BB:B6:76:3D:F7:F9:A8:C8:0E:01:DA:F6:72:00:25:53:BC:AA X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.228.240.0/22 IPv6: 2804:47ec::/32 Signature Algorithm: sha256WithRSAEncryption b9:9c:09:ba:57:42:75:25:ab:98:22:d7:4b:62:62:ef:7f:d5: 90:46:7b:80:a1:7d:22:2b:14:bf:88:a4:3c:fe:04:90:cb:0f: 37:2b:4f:c9:de:7a:1d:5e:1c:38:52:96:9f:ef:14:60:0c:3a: dc:4f:c6:9b:5b:87:aa:58:a1:48:29:72:62:76:bc:66:61:7f: 30:a9:23:fc:ba:cf:e5:3f:09:f4:f3:cb:e6:9a:23:1b:e7:90: cd:03:97:bf:f5:cc:d8:c4:cb:65:38:af:91:38:aa:3c:97:d5: cb:61:a0:a6:1d:a6:d3:03:89:0a:e7:2b:2b:a7:6d:6d:c8:ee: 51:cc:50:2c:7f:25:3f:4f:82:fd:66:81:dc:a6:e7:df:b5:f2: 60:a0:83:28:fc:6f:7f:9c:c0:85:22:d3:74:23:e9:d4:a4:31: 00:22:e3:3f:78:55:6b:33:e0:de:52:7e:0a:87:d6:62:8b:da: 94:93:d9:81:50:23:be:17:d5:78:af:4c:9a:bb:4f:7d:3d:2b: 5d:41:53:9a:0c:43:10:d8:8f:47:44:aa:49:3d:60:a7:ec:00: 90:3a:fa:9b:b3:7d:8a:11:8e:1e:0d:ea:2c:25:15:8f:8f:7c: 95:04:19:50:6f:60:21:b9:58:c5:a3:fc:71:f0:e0:c7:d1:d4: 39:90:50:c5 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUb3EpQgoQB0fUVdAOqTgPrP7FveYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzRaFw0yNTExMjQxNjU5MzRaMDMxMTAvBgNV BAMTKDk1OENCQkI2NzYzREY3RjlBOEM4MEUwMURBRjY3MjAwMjU1M0JDQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxWSOI0sasYCvOh9Iy0L3Lc8NQ Xu5TdHAifYpQAvDK/dcCBKCcfcG8r+Q1sJEoqNqw0ytEK4vhwsqIgIm9DUG9CPXF iJ/EhdLENkOH9xjzdmJevN142tzm3C7q2epp7tqKigWzlRHiayoIrsnoDDPVkYCR oHp+d+m5U3X2OMJzmmvmKiqrmHpgpBFaAqqr+aib14IO6FsTQVGVrGP3A4hpbrNs N6WPzv/Yw15WhhZAic16VBN6Aq2ML7aSs/eMpwBZBoS4g8wtO2JUcz8MDjM1dCw2 RidIRNb+H3o0w6mOxSxrjx6wVTaqRQ9939weSjgHQJ1Wk1+2sFRRkq3CLP2PAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUlYy7tnY99/moyA4B2vZyACVTvKowHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjY3 MDg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCLeTwMA0EAgACMAcDBQAoBEfsMA0GCSqGSIb3DQEBCwUA A4IBAQC5nAm6V0J1JauYItdLYmLvf9WQRnuAoX0iKxS/iKQ8/gSQyw83K0/J3nod Xhw4Upaf7xRgDDrcT8abW4eqWKFIKXJidrxmYX8wqSP8us/lPwn088vmmiMb55DN A5e/9czYxMtlOK+ROKo8l9XLYaCmHabTA4kK5ysrp21tyO5RzFAsfyU/T4L9ZoHc pufftfJgoIMo/G9/nMCFItN0I+nUpDEAIuM/eFVrM+DeUn4Kh9Zii9qUk9mBUCO+ F9V4r0yau099PStdQVOaDEMQ2I9HRKpJPWCn7ACQOvqbs32KEY4eDeosJRWPj3yV BBlQb2AhuVjFo/xx8ODH0dQ5kFDF -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:35 2024 by rpki-client on console-fra.rpki-client.org