$ rpki-client -vvf rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa File: AS28220.roa (raw, json) Hash identifier: 2f4mdy18qLlx+ZdLI6cTxQUAw0TZ9sUecxUz0WF1Sqw= Subject key identifier: 0D:35:C7:FB:DD:8B:96:EB:BF:F6:7A:BF:63:78:86:4D:5C:16:3E:43 Certificate issuer: /CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Certificate serial: 6B4B9F3831AA390F9D2892BD0F93C706F79E0186 Authority key identifier: DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject info access: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa Signing time: Tue 15 Apr 2025 19:35:23 +0000 ROA not before: Tue 15 Apr 2025 19:30:23 +0000 ROA not after: Tue 14 Apr 2026 19:35:23 +0000 asID: 28220 IP address blocks: 138.122.236.0/22 maxlen: 24 186.219.152.0/21 maxlen: 21 187.110.208.0/20 maxlen: 20 187.110.208.0/24 maxlen: 24 187.110.209.0/24 maxlen: 24 191.6.80.0/21 maxlen: 21 191.6.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 27 Apr 2025 05:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4b:9f:38:31:aa:39:0f:9d:28:92:bd:0f:93:c7:06:f7:9e:01:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72 Validity Not Before: Apr 15 19:30:23 2025 GMT Not After : Apr 14 19:35:23 2026 GMT Subject: CN=0D35C7FBDD8B96EBBFF67ABF6378864D5C163E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b8:66:84:a2:01:21:10:79:9b:34:76:52:d4: ea:9a:07:1b:77:d0:70:63:96:44:30:22:a2:ed:5e: 66:b7:d5:d8:01:97:29:fb:cb:32:36:9a:ab:3e:81: 04:2b:9c:07:8e:76:60:d0:92:af:55:b6:cd:6b:cc: db:4d:e3:31:43:74:34:1c:b5:79:9f:ad:92:90:3c: 8a:55:09:23:09:d3:b2:00:79:ac:22:e9:94:3f:f6: 01:32:b9:35:6f:fd:25:19:4f:d1:9f:c3:9f:22:62: 63:2f:6f:75:fe:f9:10:09:04:58:34:b2:1a:57:74: 0e:8a:ca:51:c6:b8:86:6a:23:62:d8:f5:82:d1:e8: c0:db:4d:68:18:fe:3e:e5:3b:87:51:2e:9e:9e:0c: 05:16:f1:44:52:2c:a8:60:04:c6:20:4c:0c:6e:9f: ef:a0:7e:37:01:da:01:97:72:b1:ff:1e:b0:1a:b9: f0:96:8b:1d:4d:39:96:6f:cb:03:ce:a0:db:47:10: 6d:ff:d0:8b:15:cf:6b:09:0f:75:f6:b9:93:b3:c9: e7:bc:a1:1b:d1:7d:83:70:e5:c1:31:e4:df:e9:5a: 2b:a8:f2:67:9e:54:24:97:1e:f4:de:d7:27:d9:bc: a9:08:93:3e:0e:27:2c:0f:ed:e7:30:7e:ef:2e:b4: 4e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:35:C7:FB:DD:8B:96:EB:BF:F6:7A:BF:63:78:86:4D:5C:16:3E:43 X509v3 Authority Key Identifier: keyid:DE:1F:6F:9F:B8:40:60:C0:7A:09:BD:D8:E5:2E:BA:52:2E:89:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DE1F6F9FB84060C07A09BDD8E52EBA522E89AC72.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3Z9nEQVcGsVG7sRCTkY2ZvvmDHhoE5ZgbjDKFqMFt7DF/0/AS28220.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.122.236.0/22 186.219.152.0/21 187.110.208.0/20 191.6.80.0/21 Signature Algorithm: sha256WithRSAEncryption 25:55:91:47:0a:77:24:de:8c:db:ac:ae:5a:0c:b4:0c:43:74: 74:b9:a0:22:74:12:16:2b:70:0b:42:01:76:3d:5d:29:8e:56: f6:48:cd:4d:1f:87:da:48:e4:af:1c:a5:28:8c:81:ef:3b:5a: 42:48:6a:73:af:ac:75:66:59:6f:c9:3e:e2:4f:6b:0a:6f:88: f6:cb:cc:06:da:a2:69:97:de:71:fa:01:32:98:f1:79:23:26: c7:2f:e4:eb:6d:33:e1:4e:34:c9:0f:bc:0d:8c:b7:2f:b2:bb: 92:68:02:da:ad:f1:1e:18:2e:a8:0e:36:ea:11:b5:d0:ca:5b: 2b:4b:3b:26:ae:95:66:df:5e:d7:d3:ed:2a:8f:77:20:25:df: 58:df:9d:99:a8:39:a6:90:1f:10:74:df:ce:b1:e7:25:e8:63: 4d:83:f2:13:0a:08:3a:46:21:d2:e5:9f:3b:10:e2:cd:e4:c5: a5:8e:2e:31:32:f4:2c:c7:88:8f:18:30:df:ea:0d:39:fb:ee: 35:66:cc:ec:a1:07:b6:a9:db:bf:0b:cf:44:1b:92:b5:1c:70: 90:4f:c0:31:9d:8e:ef:3f:60:30:f7:d3:3b:ea:3c:9d:33:2e: 3e:da:df:0d:b3:62:55:0e:ea:bb:6f:67:e0:62:ec:bf:7a:65: 6b:65:3c:37 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUa0ufODGqOQ+dKJK9D5PHBveeAYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUxRjZGOUZCODQwNjBDMDdBMDlCREQ4RTUyRUJBNTIy RTg5QUM3MjAeFw0yNTA0MTUxOTMwMjNaFw0yNjA0MTQxOTM1MjNaMDMxMTAvBgNV BAMTKDBEMzVDN0ZCREQ4Qjk2RUJCRkY2N0FCRjYzNzg4NjRENUMxNjNFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDauGaEogEhEHmbNHZS1OqaBxt3 0HBjlkQwIqLtXma31dgBlyn7yzI2mqs+gQQrnAeOdmDQkq9Vts1rzNtN4zFDdDQc tXmfrZKQPIpVCSMJ07IAeawi6ZQ/9gEyuTVv/SUZT9Gfw58iYmMvb3X++RAJBFg0 shpXdA6KylHGuIZqI2LY9YLR6MDbTWgY/j7lO4dRLp6eDAUW8URSLKhgBMYgTAxu n++gfjcB2gGXcrH/HrAaufCWix1NOZZvywPOoNtHEG3/0IsVz2sJD3X2uZOzyee8 oRvRfYNw5cEx5N/pWiuo8meeVCSXHvTe1yfZvKkIkz4OJywP7ecwfu8utE5HAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUDTXH+92Lluu/9nq/Y3iGTVwWPkMwHwYDVR0j BBgwFoAU3h9vn7hAYMB6Cb3Y5S66Ui6JrHIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM1o5bkVRVmNHc1ZHN3NSQ1RrWTJadnZtREhob0U1WmdiakRLRnFNRnQ3 REYvMC9ERTFGNkY5RkI4NDA2MEMwN0EwOUJERDhFNTJFQkE1MjJFODlBQzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RFMUY2RjlGQjg0MDYwQzA3 QTA5QkREOEU1MkVCQTUyMkU4OUFDNzIuY2VyMHkGCCsGAQUFBwELBG0wazBpBggr BgEFBQcwC4ZdcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby8zWjlu RVFWY0dzVkc3c1JDVGtZMlp2dm1ESGhvRTVaZ2JqREtGcU1GdDdERi8wL0FTMjgy MjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAKKeuwDBAO625gDBAS7btADBAO/BlAwDQYJKoZIhvcNAQEL BQADggEBACVVkUcKdyTejNusrloMtAxDdHS5oCJ0EhYrcAtCAXY9XSmOVvZIzU0f h9pI5K8cpSiMge87WkJIanOvrHVmWW/JPuJPawpviPbLzAbaommX3nH6ATKY8Xkj Jscv5OttM+FONMkPvA2Mty+yu5JoAtqt8R4YLqgONuoRtdDKWytLOyaulWbfXtfT 7SqPdyAl31jfnZmoOaaQHxB0386x5yXoY02D8hMKCDpGIdLlnzsQ4s3kxaWOLjEy 9CzHiI8YMN/qDTn77jVmzOyhB7ap278Lz0QbkrUccJBPwDGdju8/YDD30zvqPJ0z Lj7a3w2zYlUO6rtvZ+Bi7L96ZWtlPDc= -----END CERTIFICATE-----Generated at Sat Apr 26 08:46:19 2025 by rpki-client on console.sobornost.net