$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28241.roa File: AS28241.roa (raw, json) Hash identifier: XijaTcK8J0r4lGsbvN4F/hsPte/WKuAfLqJzPC5RkY4= Subject key identifier: BE:5C:D4:36:8D:C5:C6:46:55:AF:B1:C5:0C:27:A2:01:88:0B:73:BD Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 41F1A9D08E8DDA6778FD8105A0EF7AEC86DEA6F7 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28241.roa Signing time: Mon 25 Nov 2024 16:59:37 +0000 ROA not before: Mon 25 Nov 2024 16:54:37 +0000 ROA not after: Mon 24 Nov 2025 16:59:37 +0000 asID: 28241 IP address blocks: 177.70.80.0/20 maxlen: 24 187.0.176.0/20 maxlen: 24 2804:5d0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 20:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f1:a9:d0:8e:8d:da:67:78:fd:81:05:a0:ef:7a:ec:86:de:a6:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:37 2024 GMT Not After : Nov 24 16:59:37 2025 GMT Subject: CN=BE5CD4368DC5C64655AFB1C50C27A201880B73BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dc:08:55:80:8d:e7:e9:8a:7c:47:8c:4f:a7: 86:8d:b0:0d:0c:d8:b9:20:e9:12:26:eb:3f:9c:78: ce:ae:e1:ec:b3:6e:d3:48:2c:2b:6b:21:dc:02:23: dc:14:fb:59:62:7e:d8:d6:13:3d:d9:75:5d:6c:c9: f2:9c:a5:1d:e9:a3:b5:fe:27:66:39:55:f8:04:e0: 7d:05:75:90:3f:81:f6:ab:d3:58:ab:74:8e:7b:42: 00:fc:0a:70:f2:cc:cd:65:43:c4:f0:a0:5e:d4:17: ff:5f:9d:4a:6b:89:da:12:95:0d:29:db:43:8f:4e: 1c:41:80:1e:80:36:40:86:4e:88:b6:66:20:0b:eb: f3:60:0d:74:28:be:17:fc:9a:e3:9b:2d:65:df:4f: 78:21:6f:8f:c0:b7:74:f2:17:01:34:c7:00:bc:14: c5:0b:64:6a:99:3d:9f:0c:8f:ab:cf:ba:8b:87:65: ee:52:fe:f4:f2:97:ff:63:da:44:be:96:0d:3e:14: a3:ef:5c:ab:d1:f3:d6:8d:7f:0f:32:7e:f1:e1:9d: 5b:59:32:45:4e:2d:49:84:f4:b1:04:2d:1b:1f:a4: ce:03:47:0b:4c:2a:af:f4:20:11:a8:8e:12:10:c6: 63:c6:67:a4:3c:0f:de:93:ca:22:83:21:a2:d7:0f: 49:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5C:D4:36:8D:C5:C6:46:55:AF:B1:C5:0C:27:A2:01:88:0B:73:BD X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS28241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.70.80.0/20 187.0.176.0/20 IPv6: 2804:5d0::/32 Signature Algorithm: sha256WithRSAEncryption 47:8f:c6:34:58:2b:fa:55:2f:ab:d4:69:f7:71:72:b7:70:62: 4e:9c:63:49:6a:07:7c:fe:ad:75:d8:eb:d0:ee:27:bd:b7:a4: b4:b4:ec:2d:86:d0:17:da:db:d2:2d:dc:75:40:c2:dd:a6:de: fd:f0:75:f3:82:58:e9:d9:92:d7:07:40:10:67:32:bc:c3:7e: 6c:38:58:55:91:5b:74:05:10:c1:25:48:d9:4c:d6:ab:a5:9c: 6f:c6:cb:e1:6d:2e:d7:fe:06:9a:f3:ee:d0:97:39:62:f9:70: 6b:f5:0f:1c:b2:3c:8e:8b:c6:7c:db:c3:1d:0a:1c:bb:e4:f6: 82:95:e6:25:9a:84:24:f3:fe:33:32:f6:a5:0b:f1:9a:47:17: 29:a3:10:56:a0:a8:ac:65:6e:26:55:cc:a0:7d:f8:cd:0b:3e: 68:0c:57:af:e3:dc:a9:fc:1f:94:94:50:3f:d9:d4:96:3d:72: 44:66:67:4f:c5:61:80:68:7b:49:e5:01:c9:c2:ac:a7:29:fe: 5d:fa:a7:c6:5f:1c:59:b6:d8:a4:62:15:43:c5:9a:cc:11:8e: 8b:bc:e0:49:48:3e:45:07:4c:31:cc:06:de:ad:39:9b:0f:ec: 2a:72:84:2c:34:2a:3b:86:4f:dd:94:de:85:cf:72:e5:27:49: 33:57:2f:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQfGp0I6N2md4/YEFoO967IbepvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzdaFw0yNTExMjQxNjU5MzdaMDMxMTAvBgNV BAMTKEJFNUNENDM2OERDNUM2NDY1NUFGQjFDNTBDMjdBMjAxODgwQjczQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE3AhVgI3n6Yp8R4xPp4aNsA0M 2Lkg6RIm6z+ceM6u4eyzbtNILCtrIdwCI9wU+1liftjWEz3ZdV1syfKcpR3po7X+ J2Y5VfgE4H0FdZA/gfar01irdI57QgD8CnDyzM1lQ8TwoF7UF/9fnUpridoSlQ0p 20OPThxBgB6ANkCGToi2ZiAL6/NgDXQovhf8muObLWXfT3ghb4/At3TyFwE0xwC8 FMULZGqZPZ8Mj6vPuouHZe5S/vTyl/9j2kS+lg0+FKPvXKvR89aNfw8yfvHhnVtZ MkVOLUmE9LEELRsfpM4DRwtMKq/0IBGojhIQxmPGZ6Q8D96TyiKDIaLXD0nZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvlzUNo3FxkZVr7HFDCeiAYgLc70wHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTMjgy NDEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBASxRlADBAS7ALAwDQQCAAIwBwMFACgEBdAwDQYJKoZIhvcN AQELBQADggEBAEePxjRYK/pVL6vUafdxcrdwYk6cY0lqB3z+rXXY69DuJ723pLS0 7C2G0Bfa29It3HVAwt2m3v3wdfOCWOnZktcHQBBnMrzDfmw4WFWRW3QFEMElSNlM 1qulnG/Gy+FtLtf+Bprz7tCXOWL5cGv1DxyyPI6Lxnzbwx0KHLvk9oKV5iWahCTz /jMy9qUL8ZpHFymjEFagqKxlbiZVzKB9+M0LPmgMV6/j3Kn8H5SUUD/Z1JY9ckRm Z0/FYYBoe0nlAcnCrKcp/l36p8ZfHFm22KRiFUPFmswRjou84ElIPkUHTDHMBt6t OZsP7CpyhCw0KjuGT92U3oXPcuUnSTNXL4o= -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:10 2024 by rpki-client on console-ams.rpki-client.org