Route Origin Authorization
$ rpki-client -vvf rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/AS28165.roa
File: AS28165.roa (raw, json)
Hash identifier: rnRldtoLv2hTHQLY2cWv57T62NHqOkuLWYA/6YCjUXs=
Subject key identifier: 40:ED:0A:6E:DD:BE:4A:7C:4D:B7:A9:69:7A:81:98:3A:D6:13:78:6A
Certificate issuer: /CN=80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77
Certificate serial: 339D7D2D2C5C89D5F40F0894C896AB008FD88955
Authority key identifier: 80:D1:2B:8D:1F:C4:93:DC:78:D6:A6:D2:3E:94:B6:8D:9D:AC:6A:77
Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.cer
Subject info access: rsync://rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/AS28165.roa
Signing time: Tue 05 Nov 2024 14:58:51 +0000
ROA not before: Tue 05 Nov 2024 14:53:51 +0000
ROA not after: Tue 04 Nov 2025 14:58:51 +0000
asID: 28165
IP address blocks: 131.255.100.0/22 maxlen: 22
131.255.100.0/23 maxlen: 23
131.255.100.0/24 maxlen: 24
131.255.101.0/24 maxlen: 24
131.255.102.0/23 maxlen: 23
131.255.102.0/24 maxlen: 24
131.255.103.0/24 maxlen: 24
138.59.148.0/22 maxlen: 22
138.59.148.0/23 maxlen: 23
138.59.148.0/24 maxlen: 24
138.59.149.0/24 maxlen: 24
138.59.150.0/24 maxlen: 24
138.59.151.0/24 maxlen: 24
138.204.92.0/22 maxlen: 22
138.204.92.0/23 maxlen: 23
138.204.92.0/24 maxlen: 24
138.204.93.0/24 maxlen: 24
138.204.94.0/23 maxlen: 23
138.204.94.0/24 maxlen: 24
138.204.95.0/24 maxlen: 24
170.81.168.0/22 maxlen: 22
170.81.168.0/23 maxlen: 23
170.81.168.0/24 maxlen: 24
170.81.169.0/24 maxlen: 24
170.81.170.0/23 maxlen: 23
170.81.170.0/24 maxlen: 24
170.81.171.0/24 maxlen: 24
177.184.192.0/20 maxlen: 20
177.184.192.0/23 maxlen: 23
177.184.192.0/24 maxlen: 24
177.184.193.0/24 maxlen: 24
177.184.194.0/23 maxlen: 23
177.184.196.0/22 maxlen: 22
177.184.196.0/24 maxlen: 24
177.184.197.0/24 maxlen: 24
177.184.198.0/24 maxlen: 24
177.184.199.0/24 maxlen: 24
177.184.200.0/22 maxlen: 22
177.184.200.0/24 maxlen: 24
177.184.201.0/24 maxlen: 24
177.184.202.0/24 maxlen: 24
177.184.203.0/24 maxlen: 24
177.184.204.0/23 maxlen: 23
177.184.204.0/24 maxlen: 24
177.184.205.0/24 maxlen: 24
177.184.206.0/23 maxlen: 23
177.184.206.0/24 maxlen: 24
177.184.207.0/24 maxlen: 24
177.222.16.0/20 maxlen: 20
177.222.16.0/21 maxlen: 21
177.222.16.0/24 maxlen: 24
177.222.17.0/24 maxlen: 24
177.222.18.0/24 maxlen: 24
177.222.19.0/24 maxlen: 24
177.222.20.0/24 maxlen: 24
177.222.21.0/24 maxlen: 24
177.222.22.0/24 maxlen: 24
177.222.23.0/24 maxlen: 24
177.222.24.0/22 maxlen: 22
177.222.24.0/24 maxlen: 24
177.222.25.0/24 maxlen: 24
177.222.26.0/24 maxlen: 24
177.222.27.0/24 maxlen: 24
177.222.28.0/22 maxlen: 22
177.222.28.0/24 maxlen: 24
177.222.29.0/24 maxlen: 24
177.222.30.0/24 maxlen: 24
177.222.31.0/24 maxlen: 24
187.62.208.0/20 maxlen: 20
187.62.208.0/21 maxlen: 21
187.62.208.0/24 maxlen: 24
187.62.209.0/24 maxlen: 24
187.62.210.0/24 maxlen: 24
187.62.211.0/24 maxlen: 24
187.62.212.0/24 maxlen: 24
187.62.213.0/24 maxlen: 24
187.62.214.0/24 maxlen: 24
187.62.215.0/24 maxlen: 24
187.62.216.0/21 maxlen: 21
187.62.216.0/24 maxlen: 24
187.62.217.0/24 maxlen: 24
187.62.218.0/24 maxlen: 24
187.62.219.0/24 maxlen: 24
187.62.220.0/24 maxlen: 24
187.62.221.0/24 maxlen: 24
187.62.222.0/24 maxlen: 24
187.62.223.0/24 maxlen: 24
191.240.144.0/20 maxlen: 20
191.240.144.0/21 maxlen: 21
191.240.144.0/24 maxlen: 24
191.240.145.0/24 maxlen: 24
191.240.146.0/24 maxlen: 24
191.240.147.0/24 maxlen: 24
191.240.148.0/24 maxlen: 24
191.240.149.0/24 maxlen: 24
191.240.150.0/24 maxlen: 24
191.240.151.0/24 maxlen: 24
191.240.152.0/22 maxlen: 22
191.240.152.0/24 maxlen: 24
191.240.153.0/24 maxlen: 24
191.240.154.0/24 maxlen: 24
191.240.155.0/24 maxlen: 24
191.240.156.0/23 maxlen: 23
191.240.156.0/24 maxlen: 24
191.240.157.0/24 maxlen: 24
191.240.158.0/23 maxlen: 23
191.240.158.0/24 maxlen: 24
191.240.159.0/24 maxlen: 24
200.229.224.0/20 maxlen: 20
200.229.224.0/22 maxlen: 22
200.229.224.0/24 maxlen: 24
200.229.225.0/24 maxlen: 24
200.229.226.0/24 maxlen: 24
200.229.227.0/24 maxlen: 24
200.229.228.0/22 maxlen: 22
200.229.228.0/24 maxlen: 24
200.229.229.0/24 maxlen: 24
200.229.230.0/24 maxlen: 24
200.229.231.0/24 maxlen: 24
200.229.232.0/21 maxlen: 21
200.229.232.0/24 maxlen: 24
200.229.233.0/24 maxlen: 24
200.229.234.0/24 maxlen: 24
200.229.235.0/24 maxlen: 24
200.229.236.0/24 maxlen: 24
200.229.237.0/24 maxlen: 24
200.229.238.0/24 maxlen: 24
200.229.239.0/24 maxlen: 24
2804:340::/32 maxlen: 32
2804:340:2000::/36 maxlen: 36
2804:340:4000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.crl
rsync://rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.mft
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.cer
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl
rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl
rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Sat 23 Nov 2024 06:14:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:9d:7d:2d:2c:5c:89:d5:f4:0f:08:94:c8:96:ab:00:8f:d8:89:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77
Validity
Not Before: Nov 5 14:53:51 2024 GMT
Not After : Nov 4 14:58:51 2025 GMT
Subject: CN=40ED0A6EDDBE4A7C4DB7A9697A81983AD613786A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:97:b4:a0:a5:00:43:15:4c:a8:89:a9:99:3d:
24:18:47:8e:85:43:92:31:68:bd:c9:0b:fd:56:e1:
1f:26:e7:ad:12:43:e6:5a:f9:31:d4:aa:19:2d:15:
58:1b:42:fc:4b:00:a1:c0:0d:50:fc:ce:3b:ce:4b:
a3:bc:64:55:20:cf:ab:d5:d4:64:a6:f4:22:0d:76:
db:ff:71:56:b1:39:70:6d:4d:ea:a2:8f:d9:fb:0f:
ef:31:76:5d:9b:1f:74:7d:c0:87:f1:6b:84:23:04:
67:5d:25:26:26:71:b8:ab:5a:b1:a5:e1:8f:dd:9d:
cc:fc:55:3d:74:d9:7f:1c:af:88:57:36:ed:ef:7d:
21:62:0a:e1:e3:97:f9:66:e4:d0:2c:43:1c:56:3e:
86:d4:55:8a:44:a1:4e:08:8a:49:e1:75:ef:ec:25:
16:2b:2b:f3:5c:c3:34:79:e7:5a:83:29:31:85:55:
1d:27:ad:94:74:c7:fe:3e:23:bf:4f:05:23:87:d2:
ac:ae:16:fb:c6:a8:e1:0d:52:11:89:2e:2e:0c:e6:
0d:2d:53:9a:e5:d4:35:76:54:e3:d1:1b:72:4c:21:
4a:96:ae:ac:5b:d7:25:c7:d7:db:a7:4a:55:90:02:
c0:91:33:4f:e5:05:d3:87:ad:33:89:05:17:11:a6:
97:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:ED:0A:6E:DD:BE:4A:7C:4D:B7:A9:69:7A:81:98:3A:D6:13:78:6A
X509v3 Authority Key Identifier:
keyid:80:D1:2B:8D:1F:C4:93:DC:78:D6:A6:D2:3E:94:B6:8D:9D:AC:6A:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/80D12B8D1FC493DC78D6A6D23E94B68D9DAC6A77.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.registro.br/repo/D2MRVV8WwJEDaDNpTzm9jrH67Ntt3HCLG3V2wWfEzkoD/3/AS28165.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.255.100.0/22
138.59.148.0/22
138.204.92.0/22
170.81.168.0/22
177.184.192.0/20
177.222.16.0/20
187.62.208.0/20
191.240.144.0/20
200.229.224.0/20
IPv6:
2804:340::/32
Signature Algorithm: sha256WithRSAEncryption
5f:44:ca:84:19:66:01:3d:95:e8:99:70:6c:52:1f:db:83:96:
36:be:ef:c6:e3:cb:56:72:7e:f3:fb:4b:7f:d1:40:e6:8a:44:
37:84:2f:a9:34:0d:c7:f3:7a:a6:f6:63:ac:36:ba:89:a7:2e:
ad:ed:4d:e9:4b:86:6d:df:03:1d:e0:1f:3d:c8:92:8a:58:e8:
b5:37:e6:bb:c9:ec:95:a7:0a:32:55:21:5e:b2:64:1a:4b:c3:
72:13:bf:40:20:a8:ab:38:6a:15:46:3e:e3:63:b0:b9:ca:02:
09:58:78:29:03:e1:f5:55:c4:33:20:2f:77:a7:93:8d:d0:26:
f6:0a:a5:72:83:12:ff:72:78:d7:9d:95:c4:61:3f:d2:34:d0:
88:01:59:83:41:ee:7a:5a:88:62:b7:34:3e:d3:6c:93:16:99:
1c:90:6c:88:0f:cb:95:7b:0a:93:77:77:70:f9:b1:dd:79:2a:
b0:05:61:df:27:36:db:72:28:60:0b:9d:be:c9:78:3d:18:a3:
ad:10:71:37:fb:2f:01:6b:5f:08:83:4c:65:cb:31:2a:a8:0f:
43:13:36:f7:3e:fc:47:bb:3f:f5:68:4f:d9:b6:ed:7d:8d:0c:
b7:89:ac:9a:73:aa:68:c9:3c:d3:0d:98:45:13:b6:1d:68:bc:
72:f2:41:30
-----BEGIN CERTIFICATE-----
MIIFUDCCBDigAwIBAgIUM519LSxcidX0DwiUyJarAI/YiVUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODBEMTJCOEQxRkM0OTNEQzc4RDZBNkQyM0U5NEI2OEQ5
REFDNkE3NzAeFw0yNDExMDUxNDUzNTFaFw0yNTExMDQxNDU4NTFaMDMxMTAvBgNV
BAMTKDQwRUQwQTZFRERCRTRBN0M0REI3QTk2OTdBODE5ODNBRDYxMzc4NkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7l7SgpQBDFUyoiamZPSQYR46F
Q5IxaL3JC/1W4R8m560SQ+Za+THUqhktFVgbQvxLAKHADVD8zjvOS6O8ZFUgz6vV
1GSm9CINdtv/cVaxOXBtTeqij9n7D+8xdl2bH3R9wIfxa4QjBGddJSYmcbirWrGl
4Y/dncz8VT102X8cr4hXNu3vfSFiCuHjl/lm5NAsQxxWPobUVYpEoU4Iiknhde/s
JRYrK/NcwzR551qDKTGFVR0nrZR0x/4+I79PBSOH0qyuFvvGqOENUhGJLi4M5g0t
U5rl1DV2VOPRG3JMIUqWrqxb1yXH19unSlWQAsCRM0/lBdOHrTOJBRcRppf/AgMB
AAGjggJaMIICVjAdBgNVHQ4EFgQUQO0Kbt2+SnxNt6lpeoGYOtYTeGowHwYDVR0j
BBgwFoAUgNErjR/Ek9x41qbSPpS2jZ2sancwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vRDJNUlZWOFd3SkVEYUROcFR6bTlqckg2N050dDNIQ0xHM1Yyd1dmRXpr
b0QvMy84MEQxMkI4RDFGQzQ5M0RDNzhENkE2RDIzRTk0QjY4RDlEQUM2QTc3LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzgwRDEyQjhEMUZDNDkzREM3
OEQ2QTZEMjNFOTRCNjhEOURBQzZBNzcuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr
BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9EMk1S
VlY4V3dKRURhRE5wVHptOWpySDY3TnR0M0hDTEczVjJ3V2ZFemtvRC8zL0FTMjgx
NjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXgYIKwYBBQUHAQcBAf8E
TzBNMDwEAgABMDYDBAKD/2QDBAKKO5QDBAKKzFwDBAKqUagDBASxuMADBASx3hAD
BAS7PtADBAS/8JADBATI5eAwDQQCAAIwBwMFACgEA0AwDQYJKoZIhvcNAQELBQAD
ggEBAF9EyoQZZgE9leiZcGxSH9uDlja+78bjy1ZyfvP7S3/RQOaKRDeEL6k0Dcfz
eqb2Y6w2uomnLq3tTelLhm3fAx3gHz3IkopY6LU35rvJ7JWnCjJVIV6yZBpLw3IT
v0AgqKs4ahVGPuNjsLnKAglYeCkD4fVVxDMgL3enk43QJvYKpXKDEv9yeNedlcRh
P9I00IgBWYNB7npaiGK3ND7TbJMWmRyQbIgPy5V7CpN3d3D5sd15KrAFYd8nNtty
KGALnb7JeD0Yo60QcTf7LwFrXwiDTGXLMSqoD0MTNvc+/Ee7P/VoT9m27X2NDLeJ
rJpzqmjJPNMNmEUTth1ovHLyQTA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:12 2024 by rpki-client on console-fra.rpki-client.org