$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa File: AS28220.roa (raw, json) Hash identifier: /k4WhXtLmMsmSSDLm4Qm6DToZAFFxQ+vSAeNJbCxqK0= Subject key identifier: 6D:89:32:3F:E4:89:08:7A:43:16:14:3C:83:40:D8:EB:0F:EA:FF:03 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 2160230AFC441B6EC0B0E80250A6CE1539407F18 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa Signing time: Thu 03 Apr 2025 18:21:31 +0000 ROA not before: Thu 03 Apr 2025 18:16:31 +0000 ROA not after: Thu 02 Apr 2026 18:21:31 +0000 asID: 28220 IP address blocks: 186.219.152.0/21 maxlen: 21 187.110.208.0/20 maxlen: 20 187.110.208.0/24 maxlen: 24 187.110.209.0/24 maxlen: 24 191.6.80.0/21 maxlen: 21 191.6.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 20:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:60:23:0a:fc:44:1b:6e:c0:b0:e8:02:50:a6:ce:15:39:40:7f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Apr 3 18:16:31 2025 GMT Not After : Apr 2 18:21:31 2026 GMT Subject: CN=6D89323FE489087A4316143C8340D8EB0FEAFF03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:79:b6:2b:99:59:aa:e5:71:54:8f:3c:4d: 0f:a7:6d:58:60:c3:18:cf:ee:f5:86:b5:10:e1:66: ed:c1:00:dc:a1:b9:3a:18:1d:fe:b7:4f:05:60:a8: 07:52:9f:b1:ea:14:18:92:0d:22:20:b0:7e:35:fc: 5b:49:be:82:67:79:23:53:ea:13:54:10:65:88:af: 02:2e:05:e9:5a:b2:0e:7a:ab:24:a0:1b:c3:bc:4b: 91:76:86:d0:6e:8c:b6:d5:13:3f:c0:9c:20:46:38: 4c:54:1f:06:b3:88:33:30:83:57:04:d2:f1:26:01: c4:a6:80:43:9d:c9:b0:12:48:52:91:71:38:12:0c: 19:f6:2f:98:5f:20:7b:51:eb:5f:a9:cb:56:fb:93: 74:b4:af:56:dd:f7:24:e0:c8:d1:aa:fa:e6:52:0c: 30:87:2a:ff:c0:3e:ee:6b:48:05:b4:b0:97:55:d0: e5:d2:a4:2d:99:d6:04:f6:c3:39:97:9c:ec:17:fc: 45:c7:3f:86:34:e9:6b:b9:66:f1:a3:48:f4:3c:a3: 4d:56:65:77:1f:39:39:d2:27:72:23:0c:c9:8e:9c: 86:80:6a:cb:37:3d:7e:dd:61:02:8e:53:a7:ff:4b: 4f:42:95:c4:3b:cc:48:f0:6e:b1:e8:44:85:d2:0c: 56:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:89:32:3F:E4:89:08:7A:43:16:14:3C:83:40:D8:EB:0F:EA:FF:03 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 186.219.152.0/21 187.110.208.0/20 191.6.80.0/21 Signature Algorithm: sha256WithRSAEncryption 72:ca:d2:6e:f4:24:96:8b:27:8f:42:49:46:70:d3:dd:91:dc: ac:a7:9a:8d:ad:75:0f:bb:5b:7c:10:78:96:2d:2c:f9:b8:8e: e9:c1:ae:cf:40:2f:88:80:6a:70:8e:92:24:c4:0d:b5:bb:24: 35:89:1b:31:02:23:3e:90:ab:08:32:99:e0:45:b4:e3:bb:4d: fe:74:b7:dd:18:e7:16:23:ac:67:b7:75:75:fc:9c:04:3c:ff: 2b:c0:ed:36:62:b0:fc:3b:7c:c1:1e:07:62:cf:1f:43:06:4c: ca:d2:55:2d:da:27:b8:96:ee:04:4f:c0:28:b6:d9:6b:a9:be: 1c:bb:04:f2:61:85:ca:bd:21:ec:a8:70:f5:d9:a6:53:dd:0d: 29:c6:12:2d:34:f7:06:be:4d:2c:ca:4f:51:94:28:e3:c7:ae: 10:ef:87:17:ad:b1:e2:f2:3a:d5:9c:c2:2b:43:ef:cd:90:ca: 93:3e:73:97:6a:5e:2d:eb:1f:16:09:bb:37:7e:74:5a:76:94: a2:7e:0f:16:c1:cc:fc:d5:bf:3b:ba:94:8a:58:ab:7a:9b:e3: dc:6b:c4:47:c2:0b:04:3b:b0:d6:fc:f9:b1:a5:12:e9:86:e7: 14:92:bc:99:44:5f:8f:62:8e:ae:a8:13:76:99:a9:dd:c5:ca: 60:33:07:11 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUIWAjCvxEG27AsOgCUKbOFTlAfxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTA0MDMxODE2MzFaFw0yNjA0MDIxODIxMzFaMDMxMTAvBgNV BAMTKDZEODkzMjNGRTQ4OTA4N0E0MzE2MTQzQzgzNDBEOEVCMEZFQUZGMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCprHm2K5lZquVxVI88TQ+nbVhg wxjP7vWGtRDhZu3BANyhuToYHf63TwVgqAdSn7HqFBiSDSIgsH41/FtJvoJneSNT 6hNUEGWIrwIuBelasg56qySgG8O8S5F2htBujLbVEz/AnCBGOExUHwaziDMwg1cE 0vEmAcSmgEOdybASSFKRcTgSDBn2L5hfIHtR61+py1b7k3S0r1bd9yTgyNGq+uZS DDCHKv/APu5rSAW0sJdV0OXSpC2Z1gT2wzmXnOwX/EXHP4Y06Wu5ZvGjSPQ8o01W ZXcfOTnSJ3IjDMmOnIaAass3PX7dYQKOU6f/S09ClcQ7zEjwbrHoRIXSDFaRAgMB AAGjggInMIICIzAdBgNVHQ4EFgQUbYkyP+SJCHpDFhQ8g0DY6w/q/wMwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zWjlu RVFWY0dzVkc3c1JDVGtZMlp2dm1ESGhvRTVaZ2JqREtGcU1GdDdERi8wL0FTMjgy MjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAO625gDBAS7btADBAO/BlAwDQYJKoZIhvcNAQELBQADggEB AHLK0m70JJaLJ49CSUZw092R3Kynmo2tdQ+7W3wQeJYtLPm4junBrs9AL4iAanCO kiTEDbW7JDWJGzECIz6QqwgymeBFtOO7Tf50t90Y5xYjrGe3dXX8nAQ8/yvA7TZi sPw7fMEeB2LPH0MGTMrSVS3aJ7iW7gRPwCi22Wupvhy7BPJhhcq9IeyocPXZplPd DSnGEi009wa+TSzKT1GUKOPHrhDvhxetseLyOtWcwitD782QypM+c5dqXi3rHxYJ uzd+dFp2lKJ+DxbBzPzVvzu6lIpYq3qb49xrxEfCCwQ7sNb8+bGlEumG5xSSvJlE X49ijq6oE3aZqd3FymAzBxE= -----END CERTIFICATE-----Generated at Mon Apr 7 04:09:34 2025 by rpki-client