$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267404.roa File: AS267404.roa (raw, json) Hash identifier: P6IZ5U4g7IN2FkKVppnQ3PQ+1oFLMtJTdZAkRZvPrK4= Subject key identifier: 02:FC:98:87:E8:0E:31:18:A0:11:59:9A:38:2F:D4:EF:AF:2F:15:E9 Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 2CBCEE64314CF055CBD249B58B0ECC7CC755E2DC Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267404.roa Signing time: Mon 25 Nov 2024 16:59:35 +0000 ROA not before: Mon 25 Nov 2024 16:54:35 +0000 ROA not after: Mon 24 Nov 2025 16:59:35 +0000 asID: 267404 IP address blocks: 45.234.240.0/22 maxlen: 24 2804:4cf8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 16 Apr 2025 03:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:bc:ee:64:31:4c:f0:55:cb:d2:49:b5:8b:0e:cc:7c:c7:55:e2:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:35 2024 GMT Not After : Nov 24 16:59:35 2025 GMT Subject: CN=02FC9887E80E3118A011599A382FD4EFAF2F15E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:5e:b4:82:84:6b:8b:7f:29:d7:cd:fb:12: ed:8e:c7:0e:ad:7a:7c:4c:84:f4:df:c1:89:be:e1: 5d:d8:c8:2e:5e:9f:23:7f:78:f8:c2:e4:69:03:f7: 48:b6:13:4e:40:a4:03:c6:6d:33:f5:c0:c1:5e:ee: 3a:57:4b:27:9e:ec:74:ed:f6:8c:8a:86:94:e7:61: ef:64:5d:9d:78:d2:bc:04:ca:3c:d5:6a:f8:a4:c6: 4f:f4:3f:17:60:2f:9e:a8:e2:99:45:a9:4f:5a:08: 2b:6e:c9:14:c4:42:d4:0c:af:c3:d1:60:c5:30:5c: 6a:75:1c:d8:80:e9:db:09:be:10:90:a4:63:d4:43: cb:f8:5a:54:50:22:9f:e7:5c:62:f1:76:9c:bc:35: d8:a9:6d:55:04:ca:94:a8:d4:b8:b1:54:91:22:a2: 0c:17:69:fb:fc:7f:71:a6:7c:48:df:0f:4f:b2:d3: 5f:de:6a:a2:d9:20:d9:9e:a4:95:fd:8b:1a:52:70: 81:e6:71:37:1b:0e:16:05:06:ce:50:af:f5:69:89: ba:53:d2:5a:1d:3c:bc:6f:9f:82:2f:e6:e6:24:10: 99:56:ca:14:6d:e9:75:11:86:84:45:94:15:74:3d: bf:27:db:e4:48:73:f4:b5:70:b5:71:99:9f:3e:56: f7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FC:98:87:E8:0E:31:18:A0:11:59:9A:38:2F:D4:EF:AF:2F:15:E9 X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS267404.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.234.240.0/22 IPv6: 2804:4cf8::/32 Signature Algorithm: sha256WithRSAEncryption 12:47:82:8a:d9:25:f9:2f:ef:20:22:44:a2:17:c0:8a:be:c8: 47:84:fd:db:f9:21:ac:24:7c:76:08:60:0f:6b:a0:d6:db:26: 67:9e:82:c9:40:9a:8d:11:f1:95:d3:f9:f0:45:8c:8e:12:1f: 4f:2a:a8:4f:1f:c5:29:33:db:d9:1e:2c:27:99:25:c9:6c:9f: db:fb:9b:1c:8d:65:ba:5b:31:b6:4e:3b:a8:34:34:2f:40:46: d8:aa:e9:49:29:d2:2e:ce:e4:9d:cf:2c:c2:53:bd:3d:d8:ba: bd:35:85:26:b6:09:50:d8:04:3a:5a:ea:b8:d1:40:2d:ec:9f: 8b:f6:52:70:da:9d:be:e4:4b:42:2a:17:6b:4f:d8:ec:43:c9: a2:a5:ca:46:37:3f:e5:55:55:55:e0:28:36:88:80:49:54:7a: 67:b0:f7:e1:85:a6:69:d6:ce:08:5b:ef:c5:74:4c:da:c5:42: cf:3e:12:f1:29:a4:a5:b1:de:1f:d9:ad:e1:29:d1:ed:56:23: bf:4c:62:47:a1:2e:9c:cd:1c:a1:30:d7:7a:cd:21:75:34:f8: dd:d7:ab:7b:ee:ce:98:50:ac:0f:56:6d:58:b1:6e:d4:31:a6: 1e:52:f1:6d:89:ab:f7:70:23:49:d5:23:7f:c0:5a:f1:fc:ff: 8a:39:28:50 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIULLzuZDFM8FXL0km1iw7MfMdV4twwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzVaFw0yNTExMjQxNjU5MzVaMDMxMTAvBgNV BAMTKDAyRkM5ODg3RTgwRTMxMThBMDExNTk5QTM4MkZENEVGQUYyRjE1RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNcl60goRri38p1837Eu2Oxw6t enxMhPTfwYm+4V3YyC5enyN/ePjC5GkD90i2E05ApAPGbTP1wMFe7jpXSyee7HTt 9oyKhpTnYe9kXZ140rwEyjzVavikxk/0PxdgL56o4plFqU9aCCtuyRTEQtQMr8PR YMUwXGp1HNiA6dsJvhCQpGPUQ8v4WlRQIp/nXGLxdpy8NdipbVUEypSo1LixVJEi ogwXafv8f3GmfEjfD0+y01/eaqLZINmepJX9ixpScIHmcTcbDhYFBs5Qr/VpibpT 0lodPLxvn4Iv5uYkEJlWyhRt6XURhoRFlBV0Pb8n2+RIc/S1cLVxmZ8+VvelAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUAvyYh+gOMRigEVmaOC/U768vFekwHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjY3 NDA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCLerwMA0EAgACMAcDBQAoBEz4MA0GCSqGSIb3DQEBCwUA A4IBAQASR4KK2SX5L+8gIkSiF8CKvshHhP3b+SGsJHx2CGAPa6DW2yZnnoLJQJqN EfGV0/nwRYyOEh9PKqhPH8UpM9vZHiwnmSXJbJ/b+5scjWW6WzG2TjuoNDQvQEbY qulJKdIuzuSdzyzCU7092Lq9NYUmtglQ2AQ6Wuq40UAt7J+L9lJw2p2+5EtCKhdr T9jsQ8mipcpGNz/lVVVV4Cg2iIBJVHpnsPfhhaZp1s4IW+/FdEzaxULPPhLxKaSl sd4f2a3hKdHtViO/TGJHoS6czRyhMNd6zSF1NPjd16t77s6YUKwPVm1YsW7UMaYe UvFtiav3cCNJ1SN/wFrx/P+KOShQ -----END CERTIFICATE-----Generated at Tue Apr 15 20:12:10 2025 by rpki-client