$ rpki-client -vvf rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa File: AS268018.roa (raw, json) Hash identifier: 1Pe5RUB4aLq32t+IW0sRw2bZ+6P8AQDCdJJ71jcbQ7o= Subject key identifier: 93:59:F0:FA:71:61:CF:BA:08:C6:F6:43:DA:91:B8:E6:0A:1F:09:3E Certificate issuer: /CN=988E922E2EBFFBA80468C170F0B053C90FD160E4 Certificate serial: 5424050CC56C6F8701DAD6ECB2A7CB83239749D9 Authority key identifier: 98:8E:92:2E:2E:BF:FB:A8:04:68:C1:70:F0:B0:53:C9:0F:D1:60:E4 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer Subject info access: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa Signing time: Thu 06 Mar 2025 08:42:17 +0000 ROA not before: Thu 06 Mar 2025 08:37:17 +0000 ROA not after: Thu 05 Mar 2026 08:42:17 +0000 asID: 268018 IP address blocks: 45.165.230.0/23 maxlen: 23 45.165.230.0/24 maxlen: 24 45.165.231.0/24 maxlen: 24 138.122.84.0/22 maxlen: 22 138.122.84.0/23 maxlen: 23 138.122.85.0/24 maxlen: 24 138.122.86.0/23 maxlen: 23 138.122.86.0/24 maxlen: 24 177.39.56.0/21 maxlen: 21 177.39.56.0/22 maxlen: 22 177.39.58.0/23 maxlen: 23 177.53.216.0/21 maxlen: 21 177.53.216.0/22 maxlen: 22 177.53.216.0/23 maxlen: 23 177.53.218.0/23 maxlen: 23 177.53.220.0/22 maxlen: 22 177.53.220.0/23 maxlen: 23 177.53.222.0/23 maxlen: 23 177.53.223.0/24 maxlen: 24 179.96.216.0/21 maxlen: 21 179.96.216.0/22 maxlen: 22 179.96.216.0/23 maxlen: 23 179.96.218.0/23 maxlen: 23 179.96.218.0/24 maxlen: 24 179.96.220.0/22 maxlen: 22 179.96.220.0/23 maxlen: 23 179.96.222.0/23 maxlen: 23 2804:56b0::/32 maxlen: 32 2804:56b0::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.crl rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 21:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:24:05:0c:c5:6c:6f:87:01:da:d6:ec:b2:a7:cb:83:23:97:49:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=988E922E2EBFFBA80468C170F0B053C90FD160E4 Validity Not Before: Mar 6 08:37:17 2025 GMT Not After : Mar 5 08:42:17 2026 GMT Subject: CN=9359F0FA7161CFBA08C6F643DA91B8E60A1F093E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:15:4d:fd:da:05:e8:e8:c5:ae:a1:41:4b: 32:d7:45:89:84:ff:ed:d0:cb:d3:a3:76:8a:52:c0: 85:7a:f5:ea:c1:e4:39:ff:82:8b:7d:4c:3c:9b:e5: f2:89:26:09:23:5c:4d:0a:33:53:f8:13:02:75:c9: bb:ba:be:64:6e:73:5f:7f:9c:77:86:0f:a4:ec:20: 78:c0:03:5f:13:41:b9:c7:91:de:d3:3e:28:20:0f: 94:4d:06:07:b2:1f:69:4e:8c:8d:53:c9:b2:61:45: d2:9b:77:0e:c5:af:1e:e3:05:05:5b:27:ac:9a:bd: 27:31:e1:7c:de:cc:26:55:01:48:6a:00:98:52:d6: cf:92:a4:17:75:01:1d:bb:20:8b:8d:d5:0e:fd:54: 08:77:b6:f5:52:95:b7:22:d7:91:ee:45:72:26:75: a4:91:78:0c:16:55:07:07:48:91:18:ce:24:f8:97: 6e:c7:12:81:41:02:87:cd:41:cc:0e:da:d2:9d:1a: ad:44:14:20:50:85:d6:7d:ad:aa:ff:51:b8:29:d6: 9f:84:8a:97:33:f6:f7:d4:f7:23:d7:43:ab:fb:69: 84:e4:b1:17:8f:74:9d:e4:17:ee:7d:84:e3:c8:bc: 98:99:12:d7:2e:b1:c6:87:61:33:ca:26:2c:b2:30: b7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:59:F0:FA:71:61:CF:BA:08:C6:F6:43:DA:91:B8:E6:0A:1F:09:3E X509v3 Authority Key Identifier: keyid:98:8E:92:2E:2E:BF:FB:A8:04:68:C1:70:F0:B0:53:C9:0F:D1:60:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.165.230.0/23 138.122.84.0/22 177.39.56.0/21 177.53.216.0/21 179.96.216.0/21 IPv6: 2804:56b0::/32 Signature Algorithm: sha256WithRSAEncryption 47:3c:ef:37:cf:7b:63:65:1b:82:a7:48:b7:60:0c:21:d4:fa: 1a:6f:51:b1:ae:a5:13:3e:d3:1a:d0:09:c7:ee:b6:1e:51:a8: 14:de:52:0b:bd:a4:5c:e4:fb:d2:d5:bd:24:3b:54:28:15:d5: 08:48:7c:ac:70:d3:6e:fd:e3:43:11:06:43:d3:a7:04:48:05: da:ba:24:bc:2b:3e:b2:31:fc:21:34:37:5a:5b:62:9e:2f:eb: 1a:3e:ad:ed:3c:67:52:fd:2f:71:01:98:19:15:03:8a:35:8a: 6d:c4:28:38:5b:70:0b:ef:7a:09:83:e7:f4:01:93:f9:4c:1a: bd:35:35:5a:1c:be:96:36:73:80:3c:e2:ae:cf:1c:3a:79:25: 15:34:6e:ea:8b:9c:12:2a:41:42:bf:47:b6:b1:9c:9d:34:28: 34:eb:d7:92:e8:b4:73:fc:09:1a:2a:98:5b:a9:9c:be:dc:bf: 96:c1:04:6b:c8:0a:4a:6a:62:1d:05:a7:dd:ef:80:c6:c5:9d: 7d:70:b9:fd:ef:76:6c:e4:90:27:c9:ea:d3:40:3c:02:cf:ad: d9:b9:94:d0:8b:02:2e:48:27:5d:6f:54:f9:8d:51:b6:cb:fd: 70:3f:35:e1:38:84:da:3c:32:10:0f:7d:9c:fb:5e:3f:20:41: 5d:16:59:3d -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIUVCQFDMVsb4cB2tbssqfLgyOXSdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg4RTkyMkUyRUJGRkJBODA0NjhDMTcwRjBCMDUzQzkw RkQxNjBFNDAeFw0yNTAzMDYwODM3MTdaFw0yNjAzMDUwODQyMTdaMDMxMTAvBgNV BAMTKDkzNTlGMEZBNzE2MUNGQkEwOEM2RjY0M0RBOTFCOEU2MEExRjA5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9TBVN/doF6OjFrqFBSzLXRYmE /+3Qy9OjdopSwIV69erB5Dn/got9TDyb5fKJJgkjXE0KM1P4EwJ1ybu6vmRuc19/ nHeGD6TsIHjAA18TQbnHkd7TPiggD5RNBgeyH2lOjI1TybJhRdKbdw7Frx7jBQVb J6yavScx4XzezCZVAUhqAJhS1s+SpBd1AR27IIuN1Q79VAh3tvVSlbci15HuRXIm daSReAwWVQcHSJEYziT4l27HEoFBAofNQcwO2tKdGq1EFCBQhdZ9rar/Ubgp1p+E ipcz9vfU9yPXQ6v7aYTksRePdJ3kF+59hOPIvJiZEtcuscaHYTPKJiyyMLf5AgMB AAGjggJDMIICPzAdBgNVHQ4EFgQUk1nw+nFhz7oIxvZD2pG45gofCT4wHwYDVR0j BBgwFoAUmI6SLi6/+6gEaMFw8LBTyQ/RYOQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ1JXeHdxajlLa0NValVyUWE2MWM4Wm8xREhtSG1wVGtUOW5VZmphZlFm dXEvMS85ODhFOTIyRTJFQkZGQkE4MDQ2OEMxNzBGMEIwNTNDOTBGRDE2MEU0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk4OEU5MjJFMkVCRkZCQTgw NDY4QzE3MEYwQjA1M0M5MEZEMTYwRTQuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9DUld4 d3FqOUtrQ1VqVXJRYTYxYzhabzFESG1IbXBUa1Q5blVmamFmUWZ1cS8xL0FTMjY4 MDE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/ BDcwNTAkBAIAATAeAwQBLaXmAwQCinpUAwQDsSc4AwQDsTXYAwQDs2DYMA0EAgAC MAcDBQAoBFawMA0GCSqGSIb3DQEBCwUAA4IBAQBHPO83z3tjZRuCp0i3YAwh1Poa b1GxrqUTPtMa0AnH7rYeUagU3lILvaRc5PvS1b0kO1QoFdUISHyscNNu/eNDEQZD 06cESAXauiS8Kz6yMfwhNDdaW2KeL+saPq3tPGdS/S9xAZgZFQOKNYptxCg4W3AL 73oJg+f0AZP5TBq9NTVaHL6WNnOAPOKuzxw6eSUVNG7qi5wSKkFCv0e2sZydNCg0 69eS6LRz/AkaKphbqZy+3L+WwQRryApKamIdBafd74DGxZ19cLn973Zs5JAnyerT QDwCz63ZuZTQiwIuSCddb1T5jVG2y/1wPzXhOITaPDIQD32c+14/IEFdFlk9 -----END CERTIFICATE-----Generated at Mon Apr 7 08:31:57 2025 by rpki-client