$ rpki-client -vvf rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52900.roa File: AS52900.roa (raw, json) Hash identifier: rAQHUFdoANlWtjyYYCcd822RMT0eYFnXZF+WVubqJ90= Subject key identifier: AC:2D:28:F8:3F:2E:F6:74:2D:02:78:64:6E:D0:F4:E8:22:84:D1:D4 Certificate issuer: /CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Certificate serial: 7AD560DCD5B0399A3E09F3ED33231AD02F0B98F7 Authority key identifier: 5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject info access: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52900.roa Signing time: Wed 10 Apr 2024 22:18:29 +0000 ROA not before: Wed 10 Apr 2024 22:13:29 +0000 ROA not after: Wed 09 Apr 2025 22:18:29 +0000 asID: 52900 IP address blocks: 131.221.252.0/22 maxlen: 24 138.186.52.0/22 maxlen: 24 186.251.156.0/22 maxlen: 24 2804:26c8::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 10:52:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d5:60:dc:d5:b0:39:9a:3e:09:f3:ed:33:23:1a:d0:2f:0b:98:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD Validity Not Before: Apr 10 22:13:29 2024 GMT Not After : Apr 9 22:18:29 2025 GMT Subject: CN=AC2D28F83F2EF6742D0278646ED0F4E82284D1D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:29:71:76:2c:09:1d:58:53:83:94:9d:7e:2b: 14:1f:cb:b9:33:2d:24:43:a3:5d:86:7d:ee:46:f2: f3:2c:ee:f6:4d:17:b0:e8:0e:0b:40:97:b3:e9:f4: 3a:24:d5:ea:bd:82:3a:88:7e:81:d9:ed:f8:df:85: e4:a4:1d:0a:d7:8a:e7:1c:d4:62:4b:3c:8b:38:ff: 10:fb:9a:6f:37:53:3b:3d:53:95:ff:90:6a:f4:a0: 16:bb:3d:3b:60:17:66:56:5a:35:c3:8d:f1:04:39: d8:c3:cf:1a:f1:e0:52:dd:42:2b:16:fa:96:94:e4: cc:ac:2f:cb:72:95:f7:d1:af:24:77:66:38:df:d2: 06:eb:c7:55:0d:c1:c5:22:b7:48:39:1e:90:ee:b7: 9a:ae:6c:62:e4:38:01:4a:24:09:98:09:20:2b:9f: cf:a0:78:1a:55:89:fb:6a:98:d4:2e:4b:26:3d:40: ad:5b:f6:b4:00:7f:be:6f:15:44:2e:a5:91:57:34: 51:67:80:37:2d:44:ec:ba:f8:b4:09:e2:e3:1a:f9: a5:24:dd:34:48:32:9e:9c:9c:4c:5e:16:64:cc:94: 63:2c:3c:8f:b2:69:9a:88:8d:96:2c:e1:95:7f:e6: ed:4d:00:a5:65:dd:9c:83:e8:50:b9:f3:ce:3f:51: b2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2D:28:F8:3F:2E:F6:74:2D:02:78:64:6E:D0:F4:E8:22:84:D1:D4 X509v3 Authority Key Identifier: keyid:5B:E9:14:75:EB:6C:86:AA:40:F3:A1:3A:A0:C3:C3:8D:B9:62:7B:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/5BE91475EB6C86AA40F3A13AA0C3C38DB9627BCD.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/673qYPSK2DWWjCBamWhNC7rgrqhCQPAjdGHSdCZn9V6o/1/AS52900.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.221.252.0/22 138.186.52.0/22 186.251.156.0/22 IPv6: 2804:26c8::/32 Signature Algorithm: sha256WithRSAEncryption 80:80:ce:ee:d4:d8:26:c5:42:7e:e5:66:f7:8d:97:6e:98:5e: 84:a6:4f:0f:41:23:f0:d6:dc:42:11:cd:c4:fc:82:b7:f2:d6: eb:98:78:4c:5f:a5:c1:e1:c1:8d:e7:4e:7f:53:b4:5e:5b:ce: 58:6f:95:c3:94:ef:c5:d2:7e:fc:f9:7d:ec:37:c1:a8:08:7a: 1a:d3:b0:9f:a7:b7:19:00:8e:92:3c:c4:b5:83:20:d7:f3:f2: 2c:7d:62:fd:ad:d9:32:11:57:0c:5f:ba:8b:2c:f4:82:40:4a: 99:2e:07:f5:4a:c8:f9:9f:23:55:05:e9:ca:3c:aa:2b:dc:3a: 22:d1:2f:d5:9a:52:0d:3b:0c:85:07:b6:bf:92:45:b3:8c:0f: 54:35:0d:b6:1b:88:84:06:44:a6:46:c2:29:3c:f0:d8:49:2f: d1:86:2c:e3:cc:a4:b4:a6:e3:43:df:d0:48:aa:a2:bf:69:1f: 58:91:b6:e8:66:a7:37:bf:73:31:53:c7:00:c7:f5:35:82:56: 37:81:35:2f:03:15:f2:9f:3f:66:e7:4e:cc:f8:f3:da:59:70: 54:50:18:77:58:33:ed:c9:1f:cf:b3:43:22:d2:4b:51:24:b4: bc:ac:17:62:fb:0c:8a:4a:e1:ec:56:c9:66:fc:19:c6:d0:0a: da:04:a3:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUetVg3NWwOZo+CfPtMyMa0C8LmPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFOTE0NzVFQjZDODZBQTQwRjNBMTNBQTBDM0MzOERC OTYyN0JDRDAeFw0yNDA0MTAyMjEzMjlaFw0yNTA0MDkyMjE4MjlaMDMxMTAvBgNV BAMTKEFDMkQyOEY4M0YyRUY2NzQyRDAyNzg2NDZFRDBGNEU4MjI4NEQxRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTKXF2LAkdWFODlJ1+KxQfy7kz LSRDo12Gfe5G8vMs7vZNF7DoDgtAl7Pp9Dok1eq9gjqIfoHZ7fjfheSkHQrXiucc 1GJLPIs4/xD7mm83Uzs9U5X/kGr0oBa7PTtgF2ZWWjXDjfEEOdjDzxrx4FLdQisW +paU5MysL8tylffRryR3Zjjf0gbrx1UNwcUit0g5HpDut5qubGLkOAFKJAmYCSAr n8+geBpViftqmNQuSyY9QK1b9rQAf75vFUQupZFXNFFngDctROy6+LQJ4uMa+aUk 3TRIMp6cnExeFmTMlGMsPI+yaZqIjZYs4ZV/5u1NAKVl3ZyD6FC5884/UbKbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrC0o+D8u9nQtAnhkbtD06CKE0dQwHwYDVR0j BBgwFoAUW+kUdetshqpA86E6oMPDjblie80wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNjczcVlQU0syRFdXakNCYW1XaE5DN3JncnFoQ1FQQWpkR0hTZENabjlW Nm8vMS81QkU5MTQ3NUVCNkM4NkFBNDBGM0ExM0FBMEMzQzM4REI5NjI3QkNELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzVCRTkxNDc1RUI2Qzg2QUE0 MEYzQTEzQUEwQzNDMzhEQjk2MjdCQ0QuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby82NzNx WVBTSzJEV1dqQ0JhbVdoTkM3cmdycWhDUVBBamRHSFNkQ1puOVY2by8xL0FTNTI5 MDAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAKD3fwDBAKKujQDBAK6+5wwDQQCAAIwBwMFACgEJsgwDQYJ KoZIhvcNAQELBQADggEBAICAzu7U2CbFQn7lZveNl26YXoSmTw9BI/DW3EIRzcT8 grfy1uuYeExfpcHhwY3nTn9TtF5bzlhvlcOU78XSfvz5few3wagIehrTsJ+ntxkA jpI8xLWDINfz8ix9Yv2t2TIRVwxfuoss9IJASpkuB/VKyPmfI1UF6co8qivcOiLR L9WaUg07DIUHtr+SRbOMD1Q1DbYbiIQGRKZGwik88NhJL9GGLOPMpLSm40Pf0Eiq or9pH1iRtuhmpze/czFTxwDH9TWCVjeBNS8DFfKfP2bnTsz489pZcFRQGHdYM+3J H8+zQyLSS1EktLysF2L7DIpK4exWyWb8GcbQCtoEo3Q= -----END CERTIFICATE-----Generated at Fri Nov 22 11:44:10 2024 by rpki-client on console-ams.rpki-client.org