$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28211.roa File: AS28211.roa (raw, json) Hash identifier: dnB/NoKw2cP6tlQBXlUFT2J60TY8vx4oI0nuVaEWyF4= Subject key identifier: 8D:43:7D:1D:C1:D6:73:35:34:7B:50:14:D0:35:5D:75:1E:C4:5F:52 Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 7ED7955AD4AC857825579C0147EF2EABA89798E6 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28211.roa Signing time: Mon 25 Nov 2024 16:59:33 +0000 ROA not before: Mon 25 Nov 2024 16:54:33 +0000 ROA not after: Mon 24 Nov 2025 16:59:33 +0000 asID: 28211 IP address blocks: 189.113.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 20:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d7:95:5a:d4:ac:85:78:25:57:9c:01:47:ef:2e:ab:a8:97:98:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:33 2024 GMT Not After : Nov 24 16:59:33 2025 GMT Subject: CN=8D437D1DC1D67335347B5014D0355D751EC45F52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:68:d9:73:e2:2b:da:34:82:ee:dd:d0:cd:98: 9e:67:13:4f:0b:b4:1a:d2:4c:e5:08:63:85:e1:05: 6f:93:30:7c:44:31:0a:b2:35:98:19:44:66:2e:46: 14:4a:bf:b1:dc:4a:14:6b:f8:39:b8:1b:a7:54:0b: f2:c4:4d:ed:db:0d:49:44:65:4c:83:9e:2e:9c:3a: e8:f9:6f:d8:97:51:b2:48:c3:05:74:bd:c3:b5:37: 9d:f7:02:33:8b:ac:0b:b8:18:aa:c7:39:86:3e:00: b9:ff:4d:84:48:7c:2d:06:e1:b8:7e:a3:a4:f1:1b: 22:d8:d5:d8:30:70:7a:b9:9e:41:e0:cd:f5:7e:5f: d5:98:f6:20:ac:42:26:49:b2:8d:20:f4:87:93:f1: ba:73:83:74:55:9d:7c:2d:6a:fc:4b:26:84:ed:6a: 06:f3:07:28:45:ec:2e:9d:ff:6a:16:ad:2c:13:5d: d9:db:d3:1c:31:17:b5:c2:cb:32:2d:6d:05:32:49: 62:5f:c9:10:35:ed:ab:0f:93:cf:41:02:07:0d:39: c9:fe:a9:4b:ad:51:5a:ef:b7:6e:e1:55:a3:5a:ed: 38:45:6c:59:59:1d:b2:80:a0:b7:a0:11:c8:80:ce: d1:cf:fa:27:b6:21:05:61:1a:f3:63:4c:18:1c:9f: 9a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:43:7D:1D:C1:D6:73:35:34:7B:50:14:D0:35:5D:75:1E:C4:5F:52 X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28211.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.113.80.0/20 Signature Algorithm: sha256WithRSAEncryption 46:80:99:4c:ac:11:ee:77:0b:75:27:9b:ad:60:6c:d8:08:0f: 26:81:b0:3f:6d:40:d9:aa:f1:48:92:bf:12:f7:f8:2d:a6:1d: 4e:85:19:58:1a:07:48:b0:ac:86:f4:99:33:10:c7:21:f8:3e: 1d:c0:03:42:64:56:a4:29:fb:3c:4b:ef:15:8d:74:90:5e:cf: fb:ee:ee:94:d7:6c:9d:ad:71:f8:7c:71:15:2f:f5:34:7f:73: a0:d8:49:27:af:9f:b1:17:d2:21:f1:8d:4f:a5:74:55:24:fb: ac:20:3a:d4:c1:ff:1b:80:13:5e:02:80:78:aa:85:8f:ce:a8: a1:82:3f:4f:06:b4:78:de:2c:c0:98:e6:51:a8:63:f4:6c:10: a2:b7:1d:6e:62:3c:aa:03:69:50:dc:43:c7:4c:4a:e2:a2:ce: 7f:d5:70:f5:b0:71:c3:88:92:5e:47:ae:ae:e0:9b:b0:a8:b1: 1c:ba:ae:ae:12:f9:7d:c9:56:60:68:29:e1:29:63:1e:c8:90: a2:fe:92:fd:5e:fc:99:64:3e:3f:de:37:1e:48:fa:be:69:d0: b0:15:5c:23:2a:4a:77:94:88:93:51:92:ac:72:db:76:bf:85: 0b:90:f2:76:bd:c4:d9:96:7e:c2:a4:75:0e:d4:24:9c:ac:30: 9b:9a:8f:0c -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUfteVWtSshXglV5wBR+8uq6iXmOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzNaFw0yNTExMjQxNjU5MzNaMDMxMTAvBgNV BAMTKDhENDM3RDFEQzFENjczMzUzNDdCNTAxNEQwMzU1RDc1MUVDNDVGNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcaNlz4ivaNILu3dDNmJ5nE08L tBrSTOUIY4XhBW+TMHxEMQqyNZgZRGYuRhRKv7HcShRr+Dm4G6dUC/LETe3bDUlE ZUyDni6cOuj5b9iXUbJIwwV0vcO1N533AjOLrAu4GKrHOYY+ALn/TYRIfC0G4bh+ o6TxGyLY1dgwcHq5nkHgzfV+X9WY9iCsQiZJso0g9IeT8bpzg3RVnXwtavxLJoTt agbzByhF7C6d/2oWrSwTXdnb0xwxF7XCyzItbQUySWJfyRA17asPk89BAgcNOcn+ qUutUVrvt27hVaNa7ThFbFlZHbKAoLegEciAztHP+ie2IQVhGvNjTBgcn5qxAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUjUN9HcHWczU0e1AU0DVddR7EX1IwHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjgy MTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS9cVAwDQYJKoZIhvcNAQELBQADggEBAEaAmUysEe53C3Un m61gbNgIDyaBsD9tQNmq8UiSvxL3+C2mHU6FGVgaB0iwrIb0mTMQxyH4Ph3AA0Jk VqQp+zxL7xWNdJBez/vu7pTXbJ2tcfh8cRUv9TR/c6DYSSevn7EX0iHxjU+ldFUk +6wgOtTB/xuAE14CgHiqhY/OqKGCP08GtHjeLMCY5lGoY/RsEKK3HW5iPKoDaVDc Q8dMSuKizn/VcPWwccOIkl5Hrq7gm7CosRy6rq4S+X3JVmBoKeEpYx7IkKL+kv1e /JlkPj/eNx5I+r5p0LAVXCMqSneUiJNRkqxy23a/hQuQ8na9xNmWfsKkdQ7UJJys MJuajww= -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:10 2024 by rpki-client on console-ams.rpki-client.org