$ rpki-client -vvf rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53184.roa File: AS53184.roa (raw, json) Hash identifier: 3ndF/OYmdxRxaH+cg7Ag0NYnKLtMOy4X1TMQOa2fmIE= Subject key identifier: 63:43:A3:3A:F0:BC:58:EE:B9:D8:35:36:29:AE:D4:A1:DA:BF:6F:BB Certificate issuer: /CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Certificate serial: 2A34C0ECD547A4CA2C4FE75B09A53459C63E0BDB Authority key identifier: D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject info access: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53184.roa Signing time: Mon 25 Nov 2024 16:59:34 +0000 ROA not before: Mon 25 Nov 2024 16:54:34 +0000 ROA not after: Mon 24 Nov 2025 16:59:34 +0000 asID: 53184 IP address blocks: 138.118.84.0/22 maxlen: 24 143.0.228.0/22 maxlen: 24 168.0.148.0/22 maxlen: 24 168.196.180.0/22 maxlen: 24 170.239.232.0/22 maxlen: 24 177.39.64.0/22 maxlen: 24 177.39.68.0/22 maxlen: 24 177.73.0.0/21 maxlen: 24 177.74.120.0/21 maxlen: 24 177.87.32.0/22 maxlen: 24 177.129.24.0/22 maxlen: 24 177.155.248.0/22 maxlen: 24 186.232.48.0/22 maxlen: 24 186.232.52.0/22 maxlen: 24 2804:1c8::/32 maxlen: 48 2804:2984::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 20:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:34:c0:ec:d5:47:a4:ca:2c:4f:e7:5b:09:a5:34:59:c6:3e:0b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4206C10F587084E3266C97EDA0F65643299E1B8 Validity Not Before: Nov 25 16:54:34 2024 GMT Not After : Nov 24 16:59:34 2025 GMT Subject: CN=6343A33AF0BC58EEB9D8353629AED4A1DABF6FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:49:5e:af:39:4f:38:c6:33:0c:67:2d:fe:76: 9c:32:a4:11:3b:7a:d5:26:d3:8e:9d:10:f8:19:62: 8a:f2:c4:ff:e8:b5:80:cf:c5:8c:82:6b:61:7b:c7: d1:8a:6a:14:5b:86:c0:c8:2f:56:53:31:50:e9:bd: 45:66:3e:40:07:8e:4b:14:8c:e9:71:cc:a9:c6:9e: ca:05:7c:fa:2c:fe:8a:54:0a:dd:c0:3b:6c:05:8f: 0b:71:a2:f7:f9:24:de:e9:77:02:d9:5d:6f:e1:cf: e7:0d:e3:1e:46:d1:18:0d:62:5e:8e:06:29:2e:c7: 77:ed:53:70:9c:53:c8:13:c6:28:e1:77:7c:fd:39: a2:0d:c4:3e:19:4c:cf:64:c1:46:14:c2:7e:d9:3a: fd:b9:82:a6:dc:0f:04:0b:b2:8a:2e:14:51:06:70: 92:52:f4:2b:3f:f9:0a:8f:f4:75:92:5e:ad:e1:cc: 43:92:b2:ae:c5:b6:51:90:33:4e:ea:a5:38:33:b2: d9:03:82:13:67:3f:58:e8:d4:b0:fd:bb:db:9a:79: 5a:2c:6d:7d:b0:55:a0:44:5c:6f:72:a4:8e:39:e9: 60:6c:9e:b4:bd:cc:3d:a9:c1:94:cd:9a:b2:b7:9f: 4a:e8:ad:03:08:bf:06:af:c4:6e:80:bf:a1:95:56: b5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:43:A3:3A:F0:BC:58:EE:B9:D8:35:36:29:AE:D4:A1:DA:BF:6F:BB X509v3 Authority Key Identifier: keyid:D4:20:6C:10:F5:87:08:4E:32:66:C9:7E:DA:0F:65:64:32:99:E1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/D4206C10F587084E3266C97EDA0F65643299E1B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D4206C10F587084E3266C97EDA0F65643299E1B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3KpJ5uP6qLk2iHW9gWepTDxax6jVvtuQYhFudw9r8Tcy/3/AS53184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.118.84.0/22 143.0.228.0/22 168.0.148.0/22 168.196.180.0/22 170.239.232.0/22 177.39.64.0/21 177.73.0.0/21 177.74.120.0/21 177.87.32.0/22 177.129.24.0/22 177.155.248.0/22 186.232.48.0/21 IPv6: 2804:1c8::/32 2804:2984::/32 Signature Algorithm: sha256WithRSAEncryption 4b:00:4b:a2:12:7c:33:88:d7:b7:5e:aa:2e:e8:93:ad:6b:7b: f0:b8:06:32:07:d6:21:51:4a:7f:43:4d:f0:11:52:d3:3b:ff: a7:28:43:aa:9f:aa:25:8f:f8:76:19:a0:bc:5e:9c:7b:68:35: df:91:fa:7a:b3:7e:f2:72:dd:c2:48:82:d5:3c:98:1c:91:9c: 35:9d:72:9a:3b:2b:17:6a:95:dc:5f:d8:6d:0f:30:f2:18:81: 45:ab:de:1c:24:3d:4b:a8:9e:08:f9:a3:6c:02:dd:69:67:ff: a8:25:66:8d:68:42:1e:2b:00:68:c6:c4:de:f6:06:6e:fb:8e: ff:bd:14:ad:09:e8:26:11:1c:b1:8f:41:31:78:8b:d5:2d:dc: 2e:61:79:89:4a:01:09:40:41:ce:df:e7:3a:75:ed:7d:48:77: 19:da:8a:0c:38:09:7f:d7:77:be:1c:0f:34:ae:25:53:15:37: 06:2f:0f:81:1d:1c:6a:42:28:d0:16:84:4f:d4:ad:22:3c:16: 90:ce:fe:0f:af:7a:d2:2d:90:3b:dc:6f:a4:58:22:5a:79:03: 3e:ce:33:67:11:23:5c:d4:8d:9c:63:e5:e8:1a:9e:3d:0f:00: ba:01:88:49:13:1f:19:f0:53:b7:35:8f:00:05:24:da:05:78: 0d:da:54:d8 -----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgIUKjTA7NVHpMosT+dbCaU0WcY+C9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQyMDZDMTBGNTg3MDg0RTMyNjZDOTdFREEwRjY1NjQz Mjk5RTFCODAeFw0yNDExMjUxNjU0MzRaFw0yNTExMjQxNjU5MzRaMDMxMTAvBgNV BAMTKDYzNDNBMzNBRjBCQzU4RUVCOUQ4MzUzNjI5QUVENEExREFCRjZGQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSSV6vOU84xjMMZy3+dpwypBE7 etUm046dEPgZYoryxP/otYDPxYyCa2F7x9GKahRbhsDIL1ZTMVDpvUVmPkAHjksU jOlxzKnGnsoFfPos/opUCt3AO2wFjwtxovf5JN7pdwLZXW/hz+cN4x5G0RgNYl6O Bikux3ftU3CcU8gTxijhd3z9OaINxD4ZTM9kwUYUwn7ZOv25gqbcDwQLsoouFFEG cJJS9Cs/+QqP9HWSXq3hzEOSsq7FtlGQM07qpTgzstkDghNnP1jo1LD9u9uaeVos bX2wVaBEXG9ypI456WBsnrS9zD2pwZTNmrK3n0rorQMIvwavxG6Av6GVVrWPAgMB AAGjggJzMIICbzAdBgNVHQ4EFgQUY0OjOvC8WO652DU2Ka7Uodq/b7swHwYDVR0j BBgwFoAU1CBsEPWHCE4yZsl+2g9lZDKZ4bgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0twSjV1UDZxTGsyaUhXOWdXZXBURHhheDZqVnZ0dVFZaEZ1ZHc5cjhU Y3kvMy9ENDIwNkMxMEY1ODcwODRFMzI2NkM5N0VEQTBGNjU2NDMyOTlFMUI4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q0MjA2QzEwRjU4NzA4NEUz MjY2Qzk3RURBMEY2NTY0MzI5OUUxQjguY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zS3BK NXVQNnFMazJpSFc5Z1dlcFREeGF4NmpWdnR1UVloRnVkdzlyOFRjeS8zL0FTNTMx ODQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwdwYIKwYBBQUHAQcBAf8E aDBmME4EAgABMEgDBAKKdlQDBAKPAOQDBAKoAJQDBAKoxLQDBAKq7+gDBAOxJ0AD BAOxSQADBAOxSngDBAKxVyADBAKxgRgDBAKxm/gDBAO66DAwFAQCAAIwDgMFACgE AcgDBQAoBCmEMA0GCSqGSIb3DQEBCwUAA4IBAQBLAEuiEnwziNe3Xqou6JOta3vw uAYyB9YhUUp/Q03wEVLTO/+nKEOqn6olj/h2GaC8Xpx7aDXfkfp6s37yct3CSILV PJgckZw1nXKaOysXapXcX9htDzDyGIFFq94cJD1LqJ4I+aNsAt1pZ/+oJWaNaEIe KwBoxsTe9gZu+47/vRStCegmERyxj0ExeIvVLdwuYXmJSgEJQEHO3+c6de19SHcZ 2ooMOAl/13e+HA80riVTFTcGLw+BHRxqQijQFoRP1K0iPBaQzv4Pr3rSLZA73G+k WCJaeQM+zjNnESNc1I2cY+XoGp49DwC6AYhJEx8Z8FO3NY8ABSTaBXgN2lTY -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:10 2024 by rpki-client on console-ams.rpki-client.org