$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS271724.roa File: AS271724.roa (raw, json) Hash identifier: l5gmeL2yHvrD9TVL4KZFQizJAvhAXD1DWO8q3z+rTGI= Subject key identifier: A1:A2:55:C4:2A:11:18:B0:98:AB:5C:39:7A:4B:3A:E1:75:0E:06:8B Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 1AD9EEF6C039CD8F1739CD2E4310F59772E2D8BB Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS271724.roa Signing time: Thu 07 Nov 2024 21:01:08 +0000 ROA not before: Thu 07 Nov 2024 20:56:08 +0000 ROA not after: Thu 06 Nov 2025 21:01:08 +0000 asID: 271724 IP address blocks: 131.221.68.0/22 maxlen: 22 138.117.124.0/22 maxlen: 22 143.255.112.0/22 maxlen: 22 170.0.204.0/22 maxlen: 22 170.245.100.0/22 maxlen: 22 177.75.192.0/20 maxlen: 20 177.75.208.0/20 maxlen: 20 179.191.128.0/20 maxlen: 20 179.191.144.0/20 maxlen: 20 187.110.208.0/20 maxlen: 20 189.50.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 18:09:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d9:ee:f6:c0:39:cd:8f:17:39:cd:2e:43:10:f5:97:72:e2:d8:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Nov 7 20:56:08 2024 GMT Not After : Nov 6 21:01:08 2025 GMT Subject: CN=A1A255C42A1118B098AB5C397A4B3AE1750E068B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9c:2d:f1:e5:2e:22:34:d5:e1:61:7d:ba:31: 0a:de:36:b9:f6:d9:1d:18:13:b4:ce:30:7f:9b:d6: 94:68:7a:a7:55:2f:cc:b5:5c:fe:d6:7d:81:70:63: 4e:52:20:d2:14:cd:a9:c9:59:8e:88:15:df:38:c7: 61:09:bb:a1:cf:03:11:d3:f0:f8:76:cb:a5:c2:18: b6:69:60:6e:5b:10:1b:a5:8e:4f:79:96:24:1b:d4: d7:87:48:0e:b5:b1:00:88:79:84:db:b5:57:71:0a: c6:6c:47:ad:6f:5c:0f:15:69:58:b5:3c:96:f9:04: 84:d8:db:df:1d:68:dc:0d:f6:c2:e7:4e:2b:46:83: 8f:1a:77:ac:eb:67:e4:59:7d:9f:7c:14:37:95:fd: 84:ee:19:fb:b7:cd:2e:11:78:61:29:f2:03:c6:10: dd:99:14:74:f0:f7:63:b7:3a:83:68:10:40:66:ff: 31:70:8d:0e:c3:5c:b8:65:2a:b7:b6:77:91:8a:10: 26:39:66:33:7e:ed:7e:10:11:5b:b9:7a:68:0e:07: 99:4b:80:c4:4e:25:4c:6f:93:e6:0f:bd:ca:7a:79: e9:94:92:ea:a5:e9:f7:38:46:1e:bf:88:6e:f7:0f: f6:be:3b:e5:8c:63:67:64:5d:6d:d7:91:5d:5a:6a: de:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A2:55:C4:2A:11:18:B0:98:AB:5C:39:7A:4B:3A:E1:75:0E:06:8B X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS271724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.221.68.0/22 138.117.124.0/22 143.255.112.0/22 170.0.204.0/22 170.245.100.0/22 177.75.192.0/19 179.191.128.0/19 187.110.208.0/20 189.50.144.0/20 Signature Algorithm: sha256WithRSAEncryption b3:1d:2a:c3:04:b8:dd:d9:4a:27:e9:d2:04:af:cf:a8:48:c2: a8:af:79:10:f0:b6:6b:fd:c5:6b:37:a4:da:6f:9d:f1:74:d2: 2e:8a:f5:1a:5e:12:bf:3b:25:b1:07:cc:2a:2d:73:04:b5:c1: 9a:1c:48:2e:c8:c6:f9:f1:21:c1:ea:e6:7f:5f:ce:80:b4:4b: 8c:4a:00:87:77:53:cd:2a:8b:2b:9a:24:67:a4:4c:6b:23:13: cf:a4:78:f8:d5:0b:88:5c:bf:3a:cc:11:25:f7:5b:ef:7c:44: d5:0f:96:c8:2e:bf:47:b7:b1:f3:24:d1:ce:6a:57:45:96:1a: 68:0f:1a:a3:66:23:6c:30:14:9a:85:7a:d8:27:fc:91:79:a3: 26:aa:72:4b:05:22:3d:f7:b5:1d:9b:64:1b:3b:28:34:9f:46: 3a:94:13:12:2a:9a:a5:5d:f8:fd:15:8a:6f:b4:f7:4b:45:c1: 25:12:ab:68:94:ae:3b:67:de:e3:88:7e:8e:f4:5b:72:f4:72: 4c:b3:2d:56:a2:8b:0b:73:7f:b0:7b:22:59:48:c2:b7:f4:5e: ba:6c:30:0a:db:c2:88:ad:bd:58:7b:21:1f:d4:0b:7b:f8:22: 9f:ba:7f:d3:56:ea:f6:d4:4c:4f:52:ee:87:4b:92:8f:23:84: e1:9a:79:2c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUGtnu9sA5zY8XOc0uQxD1l3Li2LswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNDExMDcyMDU2MDhaFw0yNTExMDYyMTAxMDhaMDMxMTAvBgNV BAMTKEExQTI1NUM0MkExMTE4QjA5OEFCNUMzOTdBNEIzQUUxNzUwRTA2OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXnC3x5S4iNNXhYX26MQreNrn2 2R0YE7TOMH+b1pRoeqdVL8y1XP7WfYFwY05SINIUzanJWY6IFd84x2EJu6HPAxHT 8Ph2y6XCGLZpYG5bEBuljk95liQb1NeHSA61sQCIeYTbtVdxCsZsR61vXA8VaVi1 PJb5BITY298daNwN9sLnTitGg48ad6zrZ+RZfZ98FDeV/YTuGfu3zS4ReGEp8gPG EN2ZFHTw92O3OoNoEEBm/zFwjQ7DXLhlKre2d5GKECY5ZjN+7X4QEVu5emgOB5lL gMROJUxvk+YPvcp6eemUkuql6fc4Rh6/iG73D/a+O+WMY2dkXW3XkV1aat5bAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUoaJVxCoRGLCYq1w5eks64XUOBoswHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zWjlu RVFWY0dzVkc3c1JDVGtZMlp2dm1ESGhvRTVaZ2JqREtGcU1GdDdERi8wL0FTMjcx NzI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/ BEAwPjA8BAIAATA2AwQCg91EAwQCinV8AwQCj/9wAwQCqgDMAwQCqvVkAwQFsUvA AwQFs7+AAwQEu27QAwQEvTKQMA0GCSqGSIb3DQEBCwUAA4IBAQCzHSrDBLjd2Uon 6dIEr8+oSMKor3kQ8LZr/cVrN6Tab53xdNIuivUaXhK/OyWxB8wqLXMEtcGaHEgu yMb58SHB6uZ/X86AtEuMSgCHd1PNKosrmiRnpExrIxPPpHj41QuIXL86zBEl91vv fETVD5bILr9Ht7HzJNHOaldFlhpoDxqjZiNsMBSahXrYJ/yReaMmqnJLBSI997Ud m2QbOyg0n0Y6lBMSKpqlXfj9FYpvtPdLRcElEqtolK47Z97jiH6O9Fty9HJMsy1W oosLc3+weyJZSMK39F66bDAK28KIrb1YeyEf1At7+CKfun/TVur21ExPUu6HS5KP I4Thmnks -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:56 2025 by rpki-client