$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa File: AS28220.roa (raw, json) Hash identifier: PXB66/3hmxOCzGNbbUAS3CMJyzReV/cM6hzAnfG0EnQ= Subject key identifier: 32:3C:75:2C:26:66:1B:E4:1E:1E:06:96:64:EA:E6:2E:10:F2:5A:3B Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 4FD854D3B2F30285014E43F12D645936B297775D Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa Signing time: Thu 07 Nov 2024 21:01:08 +0000 ROA not before: Thu 07 Nov 2024 20:56:08 +0000 ROA not after: Thu 06 Nov 2025 21:01:08 +0000 asID: 28220 IP address blocks: 187.110.208.0/20 maxlen: 20 187.110.208.0/24 maxlen: 24 187.110.209.0/24 maxlen: 24 191.6.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 26 Nov 2024 09:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d8:54:d3:b2:f3:02:85:01:4e:43:f1:2d:64:59:36:b2:97:77:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Nov 7 20:56:08 2024 GMT Not After : Nov 6 21:01:08 2025 GMT Subject: CN=323C752C26661BE41E1E069664EAE62E10F25A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2b:1e:e7:e2:2e:16:05:9e:da:d1:a9:da:74: b3:07:05:d2:ad:f5:d6:10:5a:70:e7:03:15:a7:68: bf:38:4b:73:eb:37:3d:50:d2:da:5a:9c:0b:e1:f5: aa:91:64:6f:06:cc:e9:06:bd:ca:0b:cc:fe:b0:89: d7:95:bb:72:f8:20:32:1a:47:49:23:99:de:36:04: b4:fc:dc:e2:78:09:c9:35:c0:3d:6d:9f:73:7a:d6: 53:44:2f:1a:a4:1a:57:74:ad:52:3f:0d:71:5e:2d: e8:1a:00:81:d0:2a:aa:98:27:b3:a5:4d:1e:80:60: 3a:72:22:c2:f8:f5:57:bb:d5:f6:10:8e:a1:63:2b: ea:61:2f:29:48:8d:80:44:72:29:26:d7:cf:b9:c7: 54:15:58:bb:55:ca:67:26:ae:c9:d3:a8:f0:45:32: 74:32:e2:06:ed:b2:d3:f5:4d:fc:3a:31:80:6c:ac: 00:95:a9:e7:23:95:29:26:23:04:46:d4:8b:69:81: a6:9b:f1:32:8e:26:da:f3:d7:3e:45:ec:dd:19:2c: f7:44:b3:6e:af:24:b6:13:39:27:01:5d:93:e7:1a: b6:ff:10:21:db:a2:f3:9c:40:b8:08:dc:db:ef:d1: 99:be:12:5e:d2:bf:e2:ee:ea:55:1c:9e:a9:2c:5e: 98:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3C:75:2C:26:66:1B:E4:1E:1E:06:96:64:EA:E6:2E:10:F2:5A:3B X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.110.208.0/20 191.6.80.0/22 Signature Algorithm: sha256WithRSAEncryption 54:59:a1:c5:84:a4:6d:51:29:0e:bc:03:fa:2b:5d:52:f8:12: 47:01:ef:b6:a7:35:d4:5e:d2:02:0c:08:56:23:43:1b:a3:05: 1b:01:c7:04:5d:0e:35:c1:64:cf:da:bc:01:b1:e2:44:a7:4c: 11:e8:b4:c2:1a:97:f9:6e:73:f0:8e:b5:fb:4d:83:ed:f4:25: e4:7b:67:e2:be:de:df:22:34:6b:85:f0:16:96:46:63:06:c3: c4:ac:e9:13:85:0a:a7:b8:3f:94:be:e5:c8:03:3a:de:ed:c8: 34:83:fa:ef:9a:dd:5b:83:dd:9d:bb:f7:54:45:6c:bc:16:f4: 8f:fe:c9:53:6b:79:bc:09:b6:d9:dd:43:82:69:e5:b2:23:44: b1:b2:7c:eb:be:ce:69:30:e5:a4:06:26:d2:48:60:e1:e6:2e: 9f:25:db:da:bc:c2:70:5a:21:a5:8d:80:09:ab:94:00:2a:ec: f8:b4:d8:03:4e:32:45:86:63:ca:71:ca:db:b4:9b:d9:9b:19: 0e:49:79:b8:77:69:d0:72:4b:01:37:35:d7:3f:44:dc:6a:8d: bf:70:7a:c8:8a:56:99:15:98:49:e8:8a:87:48:b7:f6:da:a4: 26:38:a7:54:45:f9:0e:84:70:88:0c:05:1a:17:6f:d0:e9:b2: 44:23:40:b6 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUT9hU07LzAoUBTkPxLWRZNrKXd10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNDExMDcyMDU2MDhaFw0yNTExMDYyMTAxMDhaMDMxMTAvBgNV BAMTKDMyM0M3NTJDMjY2NjFCRTQxRTFFMDY5NjY0RUFFNjJFMTBGMjVBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzKx7n4i4WBZ7a0anadLMHBdKt 9dYQWnDnAxWnaL84S3PrNz1Q0tpanAvh9aqRZG8GzOkGvcoLzP6wideVu3L4IDIa R0kjmd42BLT83OJ4Cck1wD1tn3N61lNELxqkGld0rVI/DXFeLegaAIHQKqqYJ7Ol TR6AYDpyIsL49Ve71fYQjqFjK+phLylIjYBEcikm18+5x1QVWLtVymcmrsnTqPBF MnQy4gbtstP1Tfw6MYBsrACVqecjlSkmIwRG1Itpgaab8TKOJtrz1z5F7N0ZLPdE s26vJLYTOScBXZPnGrb/ECHbovOcQLgI3Nvv0Zm+El7Sv+Lu6lUcnqksXpgTAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUMjx1LCZmG+QeHgaWZOrmLhDyWjswHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zWjlu RVFWY0dzVkc3c1JDVGtZMlp2dm1ESGhvRTVaZ2JqREtGcU1GdDdERi8wL0FTMjgy MjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAS7btADBAK/BlAwDQYJKoZIhvcNAQELBQADggEBAFRZocWE pG1RKQ68A/orXVL4EkcB77anNdRe0gIMCFYjQxujBRsBxwRdDjXBZM/avAGx4kSn TBHotMIal/luc/COtftNg+30JeR7Z+K+3t8iNGuF8BaWRmMGw8Ss6ROFCqe4P5S+ 5cgDOt7tyDSD+u+a3VuD3Z2791RFbLwW9I/+yVNrebwJttndQ4Jp5bIjRLGyfOu+ zmkw5aQGJtJIYOHmLp8l29q8wnBaIaWNgAmrlAAq7Pi02ANOMkWGY8pxytu0m9mb GQ5Jebh3adBySwE3Ndc/RNxqjb9wesiKVpkVmEnoiodIt/bapCY4p1RF+Q6EcIgM BRoXb9DpskQjQLY= -----END CERTIFICATE-----Generated at Mon Nov 25 10:49:40 2024 by rpki-client on console-fra.rpki-client.org