$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53085.roa File: AS53085.roa (raw, json) Hash identifier: j2IKVr02f5IcRD4VIfva+feAVvAso98m1m6mxrBjrQ8= Subject key identifier: 1E:E2:08:5B:48:91:D4:1C:89:21:AB:B6:D9:3F:DB:02:3F:09:E2:AD Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 099812CF87DA8F5354161D9D36B7B4360237CE47 Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53085.roa Signing time: Mon 25 Nov 2024 16:59:35 +0000 ROA not before: Mon 25 Nov 2024 16:54:35 +0000 ROA not after: Mon 24 Nov 2025 16:59:35 +0000 asID: 53085 IP address blocks: 132.255.148.0/22 maxlen: 24 187.33.160.0/20 maxlen: 24 191.5.144.0/20 maxlen: 24 2804:1790::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 16 Apr 2025 03:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:98:12:cf:87:da:8f:53:54:16:1d:9d:36:b7:b4:36:02:37:ce:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:35 2024 GMT Not After : Nov 24 16:59:35 2025 GMT Subject: CN=1EE2085B4891D41C8921ABB6D93FDB023F09E2AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:60:05:0e:b8:20:61:f1:fa:09:08:e9:58:70: 3b:db:3c:58:1a:35:88:61:18:12:51:f9:44:54:57: 71:32:8b:e4:33:10:8e:77:74:06:a2:8c:0b:bb:f6: f0:af:62:70:e0:c1:e1:bd:0a:d2:69:45:a3:49:28: da:1f:74:c7:76:8b:a6:ca:b6:2d:25:aa:2e:14:39: 59:8a:0c:b9:cd:f2:bb:86:39:22:46:fa:1a:25:ae: a8:22:7c:bc:5d:ac:27:ff:bd:62:aa:87:7e:a6:f8: 13:2d:ad:d6:9d:79:a2:b1:4a:d4:fe:37:b4:be:c1: 35:a5:a7:7e:b3:cc:05:8b:63:ce:91:96:ba:5b:ff: c9:f9:02:60:5b:2c:09:b9:49:4c:39:ac:69:2c:85: 96:30:ac:d5:f2:cd:13:8c:36:de:76:54:2a:f3:50: 0e:c5:44:1f:e8:df:8b:50:6f:3b:e7:7d:95:88:75: 29:63:c7:63:28:39:fa:9d:8b:3d:e0:a3:97:a4:22: 70:50:6d:12:08:c7:65:81:9a:5b:f2:0c:66:66:cd: 21:0f:4d:21:f4:8b:28:a4:db:09:64:59:c7:2f:e4: 00:e3:82:91:67:78:a5:9a:50:81:b6:c4:06:8b:59: a9:96:ce:70:68:9e:ed:9c:69:6b:48:6f:de:d4:07: 9e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E2:08:5B:48:91:D4:1C:89:21:AB:B6:D9:3F:DB:02:3F:09:E2:AD X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.255.148.0/22 187.33.160.0/20 191.5.144.0/20 IPv6: 2804:1790::/32 Signature Algorithm: sha256WithRSAEncryption 2b:ae:2e:a5:e0:3b:04:01:d8:a7:88:bc:a3:7f:69:2c:31:c8: c2:53:5c:78:39:00:8c:4d:ca:17:ec:f0:a6:64:54:7a:3a:3c: 2c:d7:1c:9d:d0:d9:2d:d4:3b:ca:45:0b:2f:ee:78:fc:67:80: b4:6c:99:95:60:da:75:e5:d6:2c:a6:d2:30:53:64:eb:06:87: bc:e4:1b:95:30:46:0e:85:30:e3:38:95:23:21:44:d8:04:c6: 44:bf:fd:6f:7e:36:d8:fd:33:eb:e8:ec:c3:cc:e0:f1:58:91: ca:90:81:21:8a:ef:18:fd:be:41:0b:12:df:83:7d:9f:04:fc: d2:a2:b1:ed:19:e8:d5:34:0a:8b:2f:e5:a7:aa:a4:65:6e:da: 37:a3:95:eb:bf:e5:0b:a0:09:a6:66:de:33:ee:1d:9d:fb:87: 92:b3:7f:a3:e3:0a:1a:a4:45:89:48:1e:ce:a0:f4:c7:bf:30: bb:fc:92:12:7a:83:38:cd:fe:3a:8d:c0:d4:d3:c4:15:b9:8d: 80:77:8c:94:cf:74:7a:12:01:84:cb:e2:6d:3a:6a:ce:a2:7e: 6a:ec:ef:e1:fb:1a:92:d8:e5:ed:5c:17:1a:3c:91:cc:ec:34: c8:6a:69:15:88:d8:1d:df:3b:86:39:ae:6a:67:b2:c2:76:d7: ed:51:dc:9f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCZgSz4faj1NUFh2dNre0NgI3zkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzVaFw0yNTExMjQxNjU5MzVaMDMxMTAvBgNV BAMTKDFFRTIwODVCNDg5MUQ0MUM4OTIxQUJCNkQ5M0ZEQjAyM0YwOUUyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqYAUOuCBh8foJCOlYcDvbPFga NYhhGBJR+URUV3Eyi+QzEI53dAaijAu79vCvYnDgweG9CtJpRaNJKNofdMd2i6bK ti0lqi4UOVmKDLnN8ruGOSJG+holrqgifLxdrCf/vWKqh36m+BMtrdadeaKxStT+ N7S+wTWlp36zzAWLY86Rlrpb/8n5AmBbLAm5SUw5rGkshZYwrNXyzROMNt52VCrz UA7FRB/o34tQbzvnfZWIdSljx2MoOfqdiz3go5ekInBQbRIIx2WBmlvyDGZmzSEP TSH0iyik2wlkWccv5ADjgpFneKWaUIG2xAaLWamWznBonu2caWtIb97UB56XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHuIIW0iR1ByJIau22T/bAj8J4q0wHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTNTMw ODUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKE/5QDBAS7IaADBAS/BZAwDQQCAAIwBwMFACgEF5AwDQYJ KoZIhvcNAQELBQADggEBACuuLqXgOwQB2KeIvKN/aSwxyMJTXHg5AIxNyhfs8KZk VHo6PCzXHJ3Q2S3UO8pFCy/uePxngLRsmZVg2nXl1iym0jBTZOsGh7zkG5UwRg6F MOM4lSMhRNgExkS//W9+Ntj9M+vo7MPM4PFYkcqQgSGK7xj9vkELEt+DfZ8E/NKi se0Z6NU0Cosv5aeqpGVu2jejleu/5QugCaZm3jPuHZ37h5Kzf6PjChqkRYlIHs6g 9Me/MLv8khJ6gzjN/jqNwNTTxBW5jYB3jJTPdHoSAYTL4m06as6ifmrs7+H7GpLY 5e1cFxo8kczsNMhqaRWI2B3fO4Y5rmpnssJ21+1R3J8= -----END CERTIFICATE-----Generated at Tue Apr 15 20:13:58 2025 by rpki-client