$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52674.roa File: AS52674.roa (raw, json) Hash identifier: hkwaabhQm4vM/Xg951nOZHf703SpQT5fjXMWOjPrFTg= Subject key identifier: AF:EB:66:45:B6:A8:A7:0B:58:58:B3:F4:FC:00:6D:F9:D1:3A:60:3D Certificate issuer: /CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Certificate serial: 4DB97F2A985C8DD1746E12817557A593CE956C72 Authority key identifier: 5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52674.roa Signing time: Wed 12 Mar 2025 23:23:50 +0000 ROA not before: Wed 12 Mar 2025 23:18:50 +0000 ROA not after: Wed 11 Mar 2026 23:23:50 +0000 asID: 52674 IP address blocks: 131.161.40.0/22 maxlen: 24 168.227.236.0/22 maxlen: 24 177.67.88.0/22 maxlen: 24 2804:1d40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 01:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b9:7f:2a:98:5c:8d:d1:74:6e:12:81:75:57:a5:93:ce:95:6c:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Validity Not Before: Mar 12 23:18:50 2025 GMT Not After : Mar 11 23:23:50 2026 GMT Subject: CN=AFEB6645B6A8A70B5858B3F4FC006DF9D13A603D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:99:e3:03:c3:da:25:e2:29:4c:4e:15:3a:ed: af:59:cc:ed:6c:f7:6a:76:53:8a:68:c1:c8:1b:9b: 09:58:2a:39:3a:8f:5d:76:95:04:63:53:ac:e5:e6: 06:1e:46:45:95:df:b8:59:77:f1:dd:0b:4b:04:1e: c9:94:c3:ea:7e:a5:7b:e5:bf:f5:24:62:04:cf:77: 7d:78:55:5b:cf:ff:60:e8:68:cf:5f:be:da:97:74: 7e:26:5c:a2:ac:1e:43:bf:a1:3b:09:c2:9c:12:6a: f9:6f:40:3e:3a:ba:af:e5:c4:10:93:17:ee:2b:53: 0d:30:f5:63:69:e6:54:23:2c:d9:53:b2:e7:a6:2a: 84:7a:b9:f9:3a:0e:2e:69:be:30:3a:81:5c:3e:12: 4b:06:65:ba:c3:38:63:1c:9a:52:a5:1d:23:66:af: 7e:0e:54:19:f6:37:e5:68:06:b0:8e:a7:56:84:c3: 7a:35:1d:57:3f:5a:d7:38:dd:da:1a:6a:62:07:fd: b6:53:2c:6c:84:42:a3:75:80:0b:c6:92:58:1b:d7: 5c:35:54:d1:0e:4f:ab:87:82:ef:fb:90:15:48:af: fe:12:1a:95:e1:9d:8c:d2:50:eb:fc:f1:91:82:05: 20:c2:f9:59:c0:6a:76:fc:aa:7c:50:ce:1c:17:a7: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EB:66:45:B6:A8:A7:0B:58:58:B3:F4:FC:00:6D:F9:D1:3A:60:3D X509v3 Authority Key Identifier: keyid:5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52674.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.161.40.0/22 168.227.236.0/22 177.67.88.0/22 IPv6: 2804:1d40::/32 Signature Algorithm: sha256WithRSAEncryption 71:8f:76:de:6c:d1:c1:69:fa:e3:4f:e8:37:2c:06:7a:2d:4a: 80:aa:5b:31:3a:3a:ae:5f:57:8b:90:c2:ce:09:0a:a8:3d:60: b5:f1:44:1e:ca:15:e1:12:5c:7d:af:a2:ae:da:0c:fb:d1:46: d6:4c:17:0b:d8:fb:1b:74:00:d3:77:5d:b8:2a:d6:84:d1:5d: 7e:19:30:3f:c3:c7:0c:25:16:e2:f5:e6:f4:0b:e7:ce:e8:32: cb:c6:be:9f:7d:a3:27:bb:cf:dd:8e:e2:ef:a1:36:5c:42:a6: 3a:3f:e3:92:94:c2:ce:3d:68:37:3e:29:c3:a9:e2:a4:3d:9c: 14:44:fc:49:a4:d7:e0:81:19:4c:32:2b:42:0e:d7:9a:8f:aa: 00:3f:89:6c:49:42:52:16:4e:72:7a:49:6a:47:04:d6:b1:d4: c3:02:2c:27:f2:51:9f:90:c2:43:3a:c7:64:a3:77:bb:8e:e5: a8:c5:f5:1d:88:c4:f6:de:de:df:0e:a0:e3:03:84:5d:0f:d3: e2:aa:10:3a:bc:06:d1:43:3d:59:a2:f0:ed:09:a0:47:bd:63: 68:2d:c7:e6:30:30:ee:39:b3:92:8b:0b:9e:00:62:96:4a:10: 6a:9a:41:8a:4e:11:2a:ac:46:1a:26:4f:3a:01:13:b8:88:48: ed:d9:27:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTbl/KphcjdF0bhKBdVelk86VbHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFOTE0NzVFQjZDODZBQTQwRjNBMTNBQTBDM0MzOERC OTYyN0JDRDAeFw0yNTAzMTIyMzE4NTBaFw0yNjAzMTEyMzIzNTBaMDMxMTAvBgNV BAMTKEFGRUI2NjQ1QjZBOEE3MEI1ODU4QjNGNEZDMDA2REY5RDEzQTYwM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4meMDw9ol4ilMThU67a9ZzO1s 92p2U4powcgbmwlYKjk6j112lQRjU6zl5gYeRkWV37hZd/HdC0sEHsmUw+p+pXvl v/UkYgTPd314VVvP/2DoaM9fvtqXdH4mXKKsHkO/oTsJwpwSavlvQD46uq/lxBCT F+4rUw0w9WNp5lQjLNlTsuemKoR6ufk6Di5pvjA6gVw+EksGZbrDOGMcmlKlHSNm r34OVBn2N+VoBrCOp1aEw3o1HVc/Wtc43doaamIH/bZTLGyEQqN1gAvGklgb11w1 VNEOT6uHgu/7kBVIr/4SGpXhnYzSUOv88ZGCBSDC+VnAanb8qnxQzhwXp9djAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUr+tmRbaopwtYWLP0/ABt+dE6YD0wHwYDVR0j BBgwFoAUW+kUdetshqpA86E6oMPDjblie80wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNjczcVlQU0syRFdXakNCYW1XaE5DN3JncnFoQ1FQQWpkR0hTZENabjlW Nm8vMS81QkU5MTQ3NUVCNkM4NkFBNDBGM0ExM0FBMEMzQzM4REI5NjI3QkNELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVCRTkxNDc1RUI2Qzg2QUE0 MEYzQTEzQUEwQzNDMzhEQjk2MjdCQ0QuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby82NzNx WVBTSzJEV1dqQ0JhbVdoTkM3cmdycWhDUVBBamRHSFNkQ1puOVY2by8xL0FTNTI2 NzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKDoSgDBAKo4+wDBAKxQ1gwDQQCAAIwBwMFACgEHUAwDQYJ KoZIhvcNAQELBQADggEBAHGPdt5s0cFp+uNP6DcsBnotSoCqWzE6Oq5fV4uQws4J Cqg9YLXxRB7KFeESXH2voq7aDPvRRtZMFwvY+xt0ANN3Xbgq1oTRXX4ZMD/Dxwwl FuL15vQL587oMsvGvp99oye7z92O4u+hNlxCpjo/45KUws49aDc+KcOp4qQ9nBRE /Emk1+CBGUwyK0IO15qPqgA/iWxJQlIWTnJ6SWpHBNax1MMCLCfyUZ+QwkM6x2Sj d7uO5ajF9R2IxPbe3t8OoOMDhF0P0+KqEDq8BtFDPVmi8O0JoEe9Y2gtx+YwMO45 s5KLC54AYpZKEGqaQYpOESqsRhomTzoBE7iISO3ZJxI= -----END CERTIFICATE-----Generated at Sun Apr 6 17:18:35 2025 by rpki-client