$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS268613.roa File: AS268613.roa (raw, json) Hash identifier: 5m5eWeFA/Qc1LYY6WfHheq9zxj+sosoOZkqSxW1FOb0= Subject key identifier: 67:E7:6E:6B:17:22:F7:9F:45:E7:D1:29:8C:35:17:D1:9D:FE:A7:17 Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 2332C6BC5FF62354F48970EF69ADB5FD7AEA6599 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS268613.roa Signing time: Mon 25 Nov 2024 16:59:33 +0000 ROA not before: Mon 25 Nov 2024 16:54:33 +0000 ROA not after: Mon 24 Nov 2025 16:59:33 +0000 asID: 268613 IP address blocks: 45.164.4.0/22 maxlen: 24 2804:53e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 19:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:32:c6:bc:5f:f6:23:54:f4:89:70:ef:69:ad:b5:fd:7a:ea:65:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:33 2024 GMT Not After : Nov 24 16:59:33 2025 GMT Subject: CN=67E76E6B1722F79F45E7D1298C3517D19DFEA717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:31:dc:49:85:a5:d5:4d:89:8c:85:f9:6c:f1: 7e:d5:c9:05:a1:d8:73:0a:02:3f:60:30:71:29:26: 91:61:79:95:80:18:8a:c9:88:38:9e:dc:2c:08:08: 57:89:bc:c3:02:3b:7f:5f:73:7e:c0:ec:57:6d:73: 28:30:7a:07:cd:e9:79:9e:9f:5d:6c:ca:ae:da:53: dc:f1:6d:f3:a3:a1:28:b6:df:58:85:fb:56:77:59: fc:49:e7:ac:4e:71:99:11:98:18:a7:9f:07:f0:62: 34:56:fe:22:1b:da:4c:d3:a4:50:9d:2e:ac:31:8d: 04:6e:97:74:3e:5e:35:73:45:1d:57:17:39:b6:2d: a1:2c:fa:9d:78:37:9a:fe:8e:90:f6:fa:6b:7d:8f: a5:c7:2b:1c:a9:b9:23:3a:e1:13:76:1c:ad:06:67: 7c:62:94:85:7b:ac:91:f8:c1:56:f2:fd:5b:d4:62: 3c:94:6b:ec:67:61:20:6e:91:bd:fb:53:a1:cf:0d: 2a:97:0d:72:51:b7:39:59:bf:69:f9:bb:8b:04:75: ae:0b:5a:ae:27:fa:16:b6:b0:98:6a:51:03:ce:bb: c6:88:9d:ef:cf:24:10:13:07:c1:0c:db:c7:57:73: fa:73:3a:bd:2a:8d:2c:fe:c0:66:34:56:10:0c:0f: c0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E7:6E:6B:17:22:F7:9F:45:E7:D1:29:8C:35:17:D1:9D:FE:A7:17 X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS268613.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.4.0/22 IPv6: 2804:53e0::/32 Signature Algorithm: sha256WithRSAEncryption b7:27:fb:83:b2:a2:55:b9:ff:4c:bb:4b:eb:09:e4:c1:d4:39: b9:16:51:7d:73:6c:52:8e:bd:8e:c4:04:34:2c:8e:2a:92:a3: 56:88:2f:cf:1b:ad:a8:87:f8:c3:f2:01:1b:bb:aa:30:67:f8: 7a:f9:93:02:52:dd:f4:ed:c2:8c:8e:e1:f2:3b:dd:2f:b9:18: 32:46:6e:bc:be:3d:d5:bf:cd:30:37:bc:aa:d1:2e:3e:a5:94: d2:36:ce:99:18:cd:ad:d0:7c:f9:18:73:38:cc:3d:e2:cd:63: 15:68:da:6c:80:ac:4b:8b:54:5c:04:3b:81:e8:7b:d0:55:fb: 49:d5:aa:02:2f:6f:f0:c9:c7:11:02:94:89:71:d3:42:82:3f: 40:f1:fd:8f:bd:9b:a4:1d:46:ec:2b:fe:96:25:23:be:96:5a: cf:78:6f:fa:e5:a4:05:d9:b4:da:7a:a2:bd:29:75:76:a8:2d: e9:46:be:4d:0e:c0:e1:0a:bd:40:4b:c1:35:48:e3:5e:10:c9: 58:c4:03:66:db:22:d8:93:fc:ae:83:47:f3:3e:fd:d7:6e:cc: 35:38:10:31:69:23:5a:00:1d:ce:97:0d:0d:7c:29:cc:1f:e8: a4:a1:e8:1b:88:18:b3:e4:5b:bb:29:ca:4b:ed:40:96:4f:66: d1:75:8f:1e -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgIUIzLGvF/2I1T0iXDvaa21/XrqZZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzNaFw0yNTExMjQxNjU5MzNaMDMxMTAvBgNV BAMTKDY3RTc2RTZCMTcyMkY3OUY0NUU3RDEyOThDMzUxN0QxOURGRUE3MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1MdxJhaXVTYmMhfls8X7VyQWh 2HMKAj9gMHEpJpFheZWAGIrJiDie3CwICFeJvMMCO39fc37A7FdtcygwegfN6Xme n11syq7aU9zxbfOjoSi231iF+1Z3WfxJ56xOcZkRmBinnwfwYjRW/iIb2kzTpFCd LqwxjQRul3Q+XjVzRR1XFzm2LaEs+p14N5r+jpD2+mt9j6XHKxypuSM64RN2HK0G Z3xilIV7rJH4wVby/VvUYjyUa+xnYSBukb37U6HPDSqXDXJRtzlZv2n5u4sEda4L Wq4n+ha2sJhqUQPOu8aIne/PJBATB8EM28dXc/pzOr0qjSz+wGY0VhAMD8AhAgMB AAGjggIrMIICJzAdBgNVHQ4EFgQUZ+duaxci959F59EpjDUX0Z3+pxcwHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjY4 NjEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCLaQEMA0EAgACMAcDBQAoBFPgMA0GCSqGSIb3DQEBCwUA A4IBAQC3J/uDsqJVuf9Mu0vrCeTB1Dm5FlF9c2xSjr2OxAQ0LI4qkqNWiC/PG62o h/jD8gEbu6owZ/h6+ZMCUt307cKMjuHyO90vuRgyRm68vj3Vv80wN7yq0S4+pZTS Ns6ZGM2t0Hz5GHM4zD3izWMVaNpsgKxLi1RcBDuB6HvQVftJ1aoCL2/wyccRApSJ cdNCgj9A8f2PvZukHUbsK/6WJSO+llrPeG/65aQF2bTaeqK9KXV2qC3pRr5NDsDh Cr1AS8E1SONeEMlYxANm2yLYk/yug0fzPv3Xbsw1OBAxaSNaAB3Olw0NfCnMH+ik oegbiBiz5Fu7KcpL7UCWT2bRdY8e -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:35 2024 by rpki-client on console-fra.rpki-client.org