$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS263985.roa File: AS263985.roa (raw, json) Hash identifier: wbc+RGWVYsmsMx6yIzqhzCWju4Sv//FNRUs9LvyV6sM= Subject key identifier: 43:ED:AE:16:B0:F4:FC:D0:91:EE:0D:77:F9:27:57:57:AD:C7:D8:4B Certificate issuer: /CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Certificate serial: 6CE894BE2E03F504D1A140FDEEBE073F29567DE5 Authority key identifier: 5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS263985.roa Signing time: Thu 20 Mar 2025 14:24:07 +0000 ROA not before: Thu 20 Mar 2025 14:19:07 +0000 ROA not after: Thu 19 Mar 2026 14:24:07 +0000 asID: 263985 IP address blocks: 143.0.20.0/22 maxlen: 24 168.227.152.0/22 maxlen: 24 2804:28dc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 11 Apr 2025 12:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e8:94:be:2e:03:f5:04:d1:a1:40:fd:ee:be:07:3f:29:56:7d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Validity Not Before: Mar 20 14:19:07 2025 GMT Not After : Mar 19 14:24:07 2026 GMT Subject: CN=43EDAE16B0F4FCD091EE0D77F9275757ADC7D84B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4f:36:93:8f:59:7e:8e:d3:88:99:9f:b9:3b: 34:a4:01:48:42:4f:91:52:4d:b8:7e:84:20:0f:50: 8b:7c:8c:cc:7e:e1:18:c1:d7:8a:3f:fe:64:cf:1a: 84:69:de:ec:5b:01:d4:52:d5:cf:82:ab:e3:d1:d4: 9d:4d:f2:de:6a:a3:6c:b2:cf:c4:24:89:bf:a7:d1: a6:85:8c:c3:01:f9:bf:03:59:c9:69:fd:37:40:ce: 7a:e3:e2:a0:83:b6:e6:77:f6:b7:2a:75:c6:50:d2: 16:db:5f:78:31:d1:d5:fb:f5:f8:7f:a8:cd:1a:0e: 12:04:5f:4e:fe:ee:98:a0:0c:fa:65:f8:56:a8:c1: 33:20:9f:2c:ea:a7:a5:b2:15:eb:96:bf:a8:cf:ae: c3:89:fd:ab:c3:00:56:01:de:b6:79:d6:e4:37:78: 8c:9e:12:39:0b:7a:65:0b:78:ee:27:0f:99:3b:84: f1:08:93:4a:8d:b3:9a:1f:9a:a0:06:1e:d7:01:29: e1:14:65:fe:9d:19:83:27:3f:d9:f0:84:66:45:43: 67:0d:89:55:40:89:fd:9f:e8:7b:8e:f2:06:56:69: c1:e9:f6:06:95:90:91:79:40:1a:d1:dc:9d:e5:e4: c0:4c:de:94:5d:fd:0f:b2:17:96:ee:9d:13:bd:29: f0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:ED:AE:16:B0:F4:FC:D0:91:EE:0D:77:F9:27:57:57:AD:C7:D8:4B X509v3 Authority Key Identifier: keyid:5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS263985.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.0.20.0/22 168.227.152.0/22 IPv6: 2804:28dc::/32 Signature Algorithm: sha256WithRSAEncryption 85:80:83:28:b7:a0:69:4d:32:0d:8b:c8:b2:00:e1:56:64:8d: b9:c9:7d:66:f7:fd:dc:62:50:c6:e7:b6:4e:0d:42:e4:8a:f3: 91:49:b5:73:0a:bd:b9:11:1d:28:d3:dc:ec:2b:3e:f0:16:8f: 7b:20:90:f8:20:26:fd:13:ff:72:56:ee:9a:78:ad:81:3f:29: fc:6e:b5:16:f0:04:26:93:e8:6e:d3:68:2d:c6:72:29:46:e8: 84:a3:e5:f7:c0:e5:f9:3f:ff:e6:fd:c4:01:09:8a:89:be:fb: 3e:43:7d:5c:40:89:0a:6f:38:f0:27:b2:e0:a3:12:2c:07:46: bc:50:17:00:0e:24:c2:23:b1:4d:11:59:08:5b:47:dc:2f:15: 0c:7c:45:1e:45:d7:3e:c8:36:b4:8c:c9:d7:b9:9c:ff:4a:59: cd:8f:1a:d7:b2:39:f0:de:9e:55:81:39:c5:b6:07:9d:73:ca: 66:dc:c0:4f:4a:fd:bd:cc:53:0c:3f:d2:33:e3:e2:4c:3e:34: be:7e:cc:5d:7d:da:fa:38:10:cd:65:40:e9:60:19:ff:ae:63: d9:f4:47:10:71:97:67:62:27:ac:37:5d:ad:a6:73:af:7a:bd: fc:34:76:23:e6:26:94:d7:e6:b7:ff:95:23:6a:a2:d1:c7:68: 0e:49:40:fa -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUbOiUvi4D9QTRoUD97r4HPylWfeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFOTE0NzVFQjZDODZBQTQwRjNBMTNBQTBDM0MzOERC OTYyN0JDRDAeFw0yNTAzMjAxNDE5MDdaFw0yNjAzMTkxNDI0MDdaMDMxMTAvBgNV BAMTKDQzRURBRTE2QjBGNEZDRDA5MUVFMEQ3N0Y5Mjc1NzU3QURDN0Q4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzTzaTj1l+jtOImZ+5OzSkAUhC T5FSTbh+hCAPUIt8jMx+4RjB14o//mTPGoRp3uxbAdRS1c+Cq+PR1J1N8t5qo2yy z8Qkib+n0aaFjMMB+b8DWclp/TdAznrj4qCDtuZ39rcqdcZQ0hbbX3gx0dX79fh/ qM0aDhIEX07+7pigDPpl+FaowTMgnyzqp6WyFeuWv6jPrsOJ/avDAFYB3rZ51uQ3 eIyeEjkLemULeO4nD5k7hPEIk0qNs5ofmqAGHtcBKeEUZf6dGYMnP9nwhGZFQ2cN iVVAif2f6HuO8gZWacHp9gaVkJF5QBrR3J3l5MBM3pRd/Q+yF5bunRO9KfCTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUQ+2uFrD0/NCR7g13+SdXV63H2EswHwYDVR0j BBgwFoAUW+kUdetshqpA86E6oMPDjblie80wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNjczcVlQU0syRFdXakNCYW1XaE5DN3JncnFoQ1FQQWpkR0hTZENabjlW Nm8vMS81QkU5MTQ3NUVCNkM4NkFBNDBGM0ExM0FBMEMzQzM4REI5NjI3QkNELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVCRTkxNDc1RUI2Qzg2QUE0 MEYzQTEzQUEwQzNDMzhEQjk2MjdCQ0QuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby82NzNx WVBTSzJEV1dqQ0JhbVdoTkM3cmdycWhDUVBBamRHSFNkQ1puOVY2by8xL0FTMjYz OTg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCjwAUAwQCqOOYMA0EAgACMAcDBQAoBCjcMA0GCSqGSIb3 DQEBCwUAA4IBAQCFgIMot6BpTTINi8iyAOFWZI25yX1m9/3cYlDG57ZODULkivOR SbVzCr25ER0o09zsKz7wFo97IJD4ICb9E/9yVu6aeK2BPyn8brUW8AQmk+hu02gt xnIpRuiEo+X3wOX5P//m/cQBCYqJvvs+Q31cQIkKbzjwJ7LgoxIsB0a8UBcADiTC I7FNEVkIW0fcLxUMfEUeRdc+yDa0jMnXuZz/SlnNjxrXsjnw3p5VgTnFtgedc8pm 3MBPSv29zFMMP9Iz4+JMPjS+fsxdfdr6OBDNZUDpYBn/rmPZ9EcQcZdnYiesN12t pnOver38NHYj5iaU1+a3/5UjaqLRx2gOSUD6 -----END CERTIFICATE-----Generated at Thu Apr 10 15:35:40 2025 by rpki-client