$ rpki-client -vvf rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa File: AS268018.roa (raw, json) Hash identifier: bAOOuFU2bL3qVn9o3SgHKKKZwUwJI5kM/VRWBr8e7L8= Subject key identifier: 37:36:9C:D6:AF:24:63:3C:13:35:9E:B2:EF:AC:1E:56:13:20:9B:62 Certificate issuer: /CN=988E922E2EBFFBA80468C170F0B053C90FD160E4 Certificate serial: 59484F2E1E17464983F40FAE989FC887C6C53BCE Authority key identifier: 98:8E:92:2E:2E:BF:FB:A8:04:68:C1:70:F0:B0:53:C9:0F:D1:60:E4 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer Subject info access: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa Signing time: Thu 04 Apr 2024 08:06:29 +0000 ROA not before: Thu 04 Apr 2024 08:01:29 +0000 ROA not after: Thu 03 Apr 2025 08:06:29 +0000 asID: 268018 IP address blocks: 45.165.230.0/23 maxlen: 23 45.165.230.0/24 maxlen: 24 45.165.231.0/24 maxlen: 24 138.122.84.0/22 maxlen: 22 138.122.84.0/23 maxlen: 23 138.122.85.0/24 maxlen: 24 138.122.86.0/23 maxlen: 23 138.122.86.0/24 maxlen: 24 177.39.56.0/21 maxlen: 21 177.39.56.0/22 maxlen: 22 177.39.58.0/23 maxlen: 23 177.53.216.0/21 maxlen: 21 177.53.216.0/22 maxlen: 22 177.53.216.0/23 maxlen: 23 177.53.218.0/23 maxlen: 23 177.53.220.0/22 maxlen: 22 177.53.220.0/23 maxlen: 23 177.53.222.0/23 maxlen: 23 177.53.223.0/24 maxlen: 24 179.96.216.0/21 maxlen: 21 179.96.216.0/22 maxlen: 22 179.96.216.0/23 maxlen: 23 179.96.218.0/23 maxlen: 23 179.96.218.0/24 maxlen: 24 179.96.220.0/22 maxlen: 22 179.96.220.0/23 maxlen: 23 179.96.222.0/23 maxlen: 23 2804:56b0::/32 maxlen: 32 2804:56b0::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.crl rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 03 Jul 2024 06:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:48:4f:2e:1e:17:46:49:83:f4:0f:ae:98:9f:c8:87:c6:c5:3b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=988E922E2EBFFBA80468C170F0B053C90FD160E4 Validity Not Before: Apr 4 08:01:29 2024 GMT Not After : Apr 3 08:06:29 2025 GMT Subject: CN=37369CD6AF24633C13359EB2EFAC1E5613209B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bf:ec:ba:23:82:01:83:55:68:20:32:04:b9: 3f:19:8e:ba:fb:3d:82:41:60:ec:9f:04:9c:ba:6c: 98:c4:4e:d0:38:96:51:7e:33:9f:4e:3a:ad:8c:e2: c6:1f:e1:14:44:10:20:53:aa:a0:71:45:fc:f5:d3: c0:82:2e:b5:28:22:b4:96:e3:d5:f3:03:97:9c:cf: ef:ef:67:13:87:8b:15:74:61:35:86:55:07:d5:41: 77:84:d2:ad:4d:03:b5:5c:c8:e1:c4:a1:07:b5:78: c2:4c:20:ac:43:c3:46:23:a5:f3:59:af:e2:95:ac: ff:02:15:98:ed:62:90:dd:5f:89:67:e1:cc:b0:95: a3:65:71:c9:97:62:45:9a:a1:5e:9a:8b:0d:b8:f1: 28:50:73:e7:7c:b4:4f:04:53:41:bd:0f:df:12:a2: cf:e7:58:7f:cb:51:6a:28:a0:29:d0:64:77:ab:bb: fb:e3:c2:9c:cb:11:c4:8a:33:66:9c:81:1b:3b:f3: a5:7f:ee:db:ef:46:77:11:ba:60:5f:36:0f:87:3c: 7b:be:2c:f6:59:67:f2:54:e6:2e:e5:d4:29:96:bb: 3b:c4:ec:3a:bf:4c:41:a1:aa:83:3e:f7:a4:0a:96: e7:cf:45:48:90:39:44:cf:a6:f2:ac:d9:f5:b6:30: 20:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:36:9C:D6:AF:24:63:3C:13:35:9E:B2:EF:AC:1E:56:13:20:9B:62 X509v3 Authority Key Identifier: keyid:98:8E:92:2E:2E:BF:FB:A8:04:68:C1:70:F0:B0:53:C9:0F:D1:60:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/988E922E2EBFFBA80468C170F0B053C90FD160E4.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CRWxwqj9KkCUjUrQa61c8Zo1DHmHmpTkT9nUfjafQfuq/1/AS268018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.165.230.0/23 138.122.84.0/22 177.39.56.0/21 177.53.216.0/21 179.96.216.0/21 IPv6: 2804:56b0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:48:15:a0:28:d6:bb:d2:ad:0d:c8:48:55:a1:00:42:f4:4e: 69:98:ae:d7:e0:4e:a5:20:c4:c2:82:6e:03:23:20:d8:f3:e8: e6:73:df:90:ed:97:3a:fc:9c:75:e2:aa:ba:bd:88:64:c1:63: eb:45:c1:e3:56:b0:7f:41:25:1d:5c:e0:fb:5b:89:ed:2e:70: 23:b1:ca:5f:67:bd:48:d7:f0:18:2d:b8:78:2e:e1:2a:84:56: 90:52:15:72:66:65:e0:ac:36:5e:83:c9:5a:83:1d:4a:82:43: 5c:ba:03:be:d6:4c:8a:11:e1:24:e1:63:97:e3:b3:d6:d1:33: 5d:ef:85:81:4f:ea:0c:0e:9e:cc:74:11:55:e1:dd:f4:d1:5a: ba:4b:ed:63:bf:ec:43:19:a5:6c:55:c5:a4:9a:f3:6b:1d:b0: 71:01:f0:0b:bc:eb:69:55:c6:7a:74:4a:61:5c:87:5e:63:54: 2b:0e:de:94:b1:02:5c:b4:b9:a4:38:8d:ed:5d:f2:e6:13:19: 11:57:e4:22:f6:e1:e6:5d:65:d3:6c:12:4c:9b:e0:7c:47:6d: 31:84:22:3b:f0:ba:a8:3a:2b:38:dc:db:fd:d4:1c:a0:6f:75: 1a:5b:e1:3c:8e:7c:5f:db:da:df:bf:67:12:bc:51:2f:a9:d3: 1c:ad:a2:71 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIUWUhPLh4XRkmD9A+umJ/Ih8bFO84wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg4RTkyMkUyRUJGRkJBODA0NjhDMTcwRjBCMDUzQzkw RkQxNjBFNDAeFw0yNDA0MDQwODAxMjlaFw0yNTA0MDMwODA2MjlaMDMxMTAvBgNV BAMTKDM3MzY5Q0Q2QUYyNDYzM0MxMzM1OUVCMkVGQUMxRTU2MTMyMDlCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhv+y6I4IBg1VoIDIEuT8Zjrr7 PYJBYOyfBJy6bJjETtA4llF+M59OOq2M4sYf4RREECBTqqBxRfz108CCLrUoIrSW 49XzA5ecz+/vZxOHixV0YTWGVQfVQXeE0q1NA7VcyOHEoQe1eMJMIKxDw0YjpfNZ r+KVrP8CFZjtYpDdX4ln4cywlaNlccmXYkWaoV6aiw248ShQc+d8tE8EU0G9D98S os/nWH/LUWoooCnQZHeru/vjwpzLEcSKM2acgRs786V/7tvvRncRumBfNg+HPHu+ LPZZZ/JU5i7l1CmWuzvE7Dq/TEGhqoM+96QKlufPRUiQOUTPpvKs2fW2MCDjAgMB AAGjggJDMIICPzAdBgNVHQ4EFgQUNzac1q8kYzwTNZ6y76weVhMgm2IwHwYDVR0j BBgwFoAUmI6SLi6/+6gEaMFw8LBTyQ/RYOQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ1JXeHdxajlLa0NValVyUWE2MWM4Wm8xREhtSG1wVGtUOW5VZmphZlFm dXEvMS85ODhFOTIyRTJFQkZGQkE4MDQ2OEMxNzBGMEIwNTNDOTBGRDE2MEU0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzk4OEU5MjJFMkVCRkZCQTgw NDY4QzE3MEYwQjA1M0M5MEZEMTYwRTQuY2VyMHoGCCsGAQUFBwELBG4wbDBqBggr BgEFBQcwC4ZecnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9DUld4 d3FqOUtrQ1VqVXJRYTYxYzhabzFESG1IbXBUa1Q5blVmamFmUWZ1cS8xL0FTMjY4 MDE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/ BDcwNTAkBAIAATAeAwQBLaXmAwQCinpUAwQDsSc4AwQDsTXYAwQDs2DYMA0EAgAC MAcDBQAoBFawMA0GCSqGSIb3DQEBCwUAA4IBAQBPSBWgKNa70q0NyEhVoQBC9E5p mK7X4E6lIMTCgm4DIyDY8+jmc9+Q7Zc6/Jx14qq6vYhkwWPrRcHjVrB/QSUdXOD7 W4ntLnAjscpfZ71I1/AYLbh4LuEqhFaQUhVyZmXgrDZeg8lagx1KgkNcugO+1kyK EeEk4WOX47PW0TNd74WBT+oMDp7MdBFV4d300Vq6S+1jv+xDGaVsVcWkmvNrHbBx AfALvOtpVcZ6dEphXIdeY1QrDt6UsQJctLmkOI3tXfLmExkRV+Qi9uHmXWXTbBJM m+B8R20xhCI78LqoOis43Nv91Bygb3UaW+E8jnxf29rfv2cSvFEvqdMcraJx -----END CERTIFICATE-----Generated at Tue Jul 2 07:05:24 2024 by rpki-client on console-fra.rpki-client.org