$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS262509.roa File: AS262509.roa (raw, json) Hash identifier: z3WtH/Sygr90lElh4BrL1IcwiuvTDrgPHmvGfu++SqQ= Subject key identifier: 73:3A:55:F0:5F:3D:9D:3C:43:BD:76:9D:FB:CE:F6:FB:2C:49:FD:62 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 04B0292301667ABD1801EA6AE6873344C60152C7 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS262509.roa Signing time: Thu 07 Nov 2024 21:01:08 +0000 ROA not before: Thu 07 Nov 2024 20:56:08 +0000 ROA not after: Thu 06 Nov 2025 21:01:08 +0000 asID: 262509 IP address blocks: 131.196.76.0/22 maxlen: 22 131.196.76.0/23 maxlen: 23 131.196.78.0/23 maxlen: 23 168.121.52.0/22 maxlen: 22 170.247.52.0/22 maxlen: 22 170.247.52.0/24 maxlen: 24 177.67.0.0/21 maxlen: 21 177.67.1.0/24 maxlen: 24 177.67.2.0/24 maxlen: 24 177.67.3.0/24 maxlen: 24 177.67.4.0/22 maxlen: 22 177.67.4.0/24 maxlen: 24 177.67.5.0/24 maxlen: 24 177.67.6.0/24 maxlen: 24 177.67.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 09:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b0:29:23:01:66:7a:bd:18:01:ea:6a:e6:87:33:44:c6:01:52:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Nov 7 20:56:08 2024 GMT Not After : Nov 6 21:01:08 2025 GMT Subject: CN=733A55F05F3D9D3C43BD769DFBCEF6FB2C49FD62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:62:1a:1f:2f:5f:b2:7a:09:11:a9:d9:2c:59: 5b:08:6c:80:dd:41:4f:e9:83:e3:1c:4a:df:fc:29: 39:29:b7:b7:d1:c1:02:60:30:4a:67:6a:af:1e:8c: 7c:a4:47:2a:db:f8:e4:7d:f6:eb:30:e4:40:cc:93: 2f:f4:7a:92:28:2d:0a:c3:de:d8:cc:24:a9:cd:0c: 73:0d:29:e8:a0:51:42:ba:27:64:07:11:f4:10:a8: fc:a5:11:b6:17:6a:c8:46:f3:cb:a1:a6:e0:2d:f3: e0:d0:ec:1f:6a:d5:15:ac:b7:50:da:23:54:f9:48: da:d1:5f:90:3d:51:90:ee:61:0e:ca:cf:eb:35:22: 49:8f:d9:0f:c2:69:60:ce:02:89:27:3e:fc:e7:c2: 9c:02:d3:c2:6f:e5:b4:a7:53:78:e1:10:7d:8d:83: 3e:59:46:05:c7:94:24:bc:7e:93:ce:18:a8:82:c0: d2:3e:1b:a9:ea:ed:3a:b3:4f:95:4a:90:27:28:1c: 05:b3:a5:34:e6:38:50:2d:24:20:33:b7:d7:4f:4c: 4b:56:83:4d:cb:76:f9:f4:0e:64:e7:09:73:04:d2: 35:1a:be:dc:98:ba:16:90:08:20:73:b9:cb:ce:0e: 56:4d:81:eb:78:fc:53:cf:56:10:49:fd:d9:c8:57: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3A:55:F0:5F:3D:9D:3C:43:BD:76:9D:FB:CE:F6:FB:2C:49:FD:62 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS262509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.196.76.0/22 168.121.52.0/22 170.247.52.0/22 177.67.0.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:76:81:1e:cf:14:56:8d:17:6c:21:f6:b3:41:90:fd:66:5e: f2:48:f3:3a:b2:ae:1d:50:d9:d1:13:41:2b:03:00:12:c6:65: 95:8b:0e:16:ab:9f:3e:d7:f9:5f:fe:57:d3:34:4e:b2:76:d4: 46:79:20:a1:01:fd:a2:19:0b:d4:52:c5:87:06:50:91:98:ec: 74:aa:50:35:ae:53:70:65:25:aa:ec:ca:e7:fc:f0:5e:1f:57: 87:a5:f3:e6:18:99:6d:4d:0d:24:88:ba:99:68:8e:10:0b:a9: 11:b2:55:b8:f0:48:f2:9e:db:8e:59:21:e0:4d:f7:68:b1:17: 1a:b6:c1:e9:8a:f2:5e:43:3a:a2:98:18:2f:51:a7:e3:6b:08: d6:a5:15:d5:71:8d:c2:83:c9:1e:c0:35:3b:76:ae:0e:e5:1b: 4f:37:36:f9:23:32:97:3a:28:b2:2b:f1:5c:84:16:e9:1d:f1: ae:d2:b6:24:57:26:8b:f5:cf:93:a3:6e:31:7f:94:fb:c6:98: 54:ec:d1:11:5c:f7:e8:43:85:6a:39:e7:01:5c:03:d2:9d:55: 6f:57:18:e3:d0:43:48:d9:33:b7:5c:9b:19:4d:ed:6f:e6:b6: 81:07:4e:a2:fb:86:d0:b9:0a:a0:f5:44:1f:ec:a5:a4:fc:cb: 76:e3:d7:71 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUBLApIwFmer0YAepq5oczRMYBUscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNDExMDcyMDU2MDhaFw0yNTExMDYyMTAxMDhaMDMxMTAvBgNV BAMTKDczM0E1NUYwNUYzRDlEM0M0M0JENzY5REZCQ0VGNkZCMkM0OUZENjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0YhofL1+yegkRqdksWVsIbIDd QU/pg+McSt/8KTkpt7fRwQJgMEpnaq8ejHykRyrb+OR99usw5EDMky/0epIoLQrD 3tjMJKnNDHMNKeigUUK6J2QHEfQQqPylEbYXashG88uhpuAt8+DQ7B9q1RWst1Da I1T5SNrRX5A9UZDuYQ7Kz+s1IkmP2Q/CaWDOAoknPvznwpwC08Jv5bSnU3jhEH2N gz5ZRgXHlCS8fpPOGKiCwNI+G6nq7TqzT5VKkCcoHAWzpTTmOFAtJCAzt9dPTEtW g03Ldvn0DmTnCXME0jUavtyYuhaQCCBzucvODlZNget4/FPPVhBJ/dnIV7gVAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUczpV8F89nTxDvXad+872+yxJ/WIwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zWjlu RVFWY0dzVkc3c1JDVGtZMlp2dm1ESGhvRTVaZ2JqREtGcU1GdDdERi8wL0FTMjYy NTA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/ BCIwIDAeBAIAATAYAwQCg8RMAwQCqHk0AwQCqvc0AwQDsUMAMA0GCSqGSIb3DQEB CwUAA4IBAQBadoEezxRWjRdsIfazQZD9Zl7ySPM6sq4dUNnRE0ErAwASxmWViw4W q58+1/lf/lfTNE6ydtRGeSChAf2iGQvUUsWHBlCRmOx0qlA1rlNwZSWq7Mrn/PBe H1eHpfPmGJltTQ0kiLqZaI4QC6kRslW48EjyntuOWSHgTfdosRcatsHpivJeQzqi mBgvUafjawjWpRXVcY3Cg8kewDU7dq4O5RtPNzb5IzKXOiiyK/FchBbpHfGu0rYk VyaL9c+To24xf5T7xphU7NERXPfoQ4VqOecBXAPSnVVvVxjj0ENI2TO3XJsZTe1v 5raBB06i+4bQuQqg9UQf7KWk/Mt249dx -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:45 2024 by rpki-client on console-ams.rpki-client.org