$ rpki-client -vvf rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32322d3234203d3e20323634333031.roa File: 3133382e3132312e3139362e302f32322d3234203d3e20323634333031.roa (raw, json) Hash identifier: Lw3oXs27+kclpcAbki3gab/aEtoYxajf5Cmi//fS1As= Subject key identifier: D3:85:16:12:47:B3:4B:48:F4:97:08:2B:D9:89:3A:C0:0A:93:47:63 Certificate issuer: /CN=8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B Certificate serial: 4FE6655725BE6CBC91C81481DC6B54B7DA4F57ED Authority key identifier: 8B:E6:51:CB:0C:FD:9D:3B:1C:7B:C9:48:3B:51:70:67:2B:77:ED:4B Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.cer Subject info access: rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32322d3234203d3e20323634333031.roa Signing time: Mon 24 Mar 2025 18:12:45 +0000 ROA not before: Mon 24 Mar 2025 18:07:45 +0000 ROA not after: Mon 23 Mar 2026 18:12:45 +0000 asID: 264301 IP address blocks: 138.121.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.crl rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 13:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e6:65:57:25:be:6c:bc:91:c8:14:81:dc:6b:54:b7:da:4f:57:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B Validity Not Before: Mar 24 18:07:45 2025 GMT Not After : Mar 23 18:12:45 2026 GMT Subject: CN=D385161247B34B48F497082BD9893AC00A934763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:81:00:6c:03:f5:47:9b:1c:db:0b:d4:14:34: de:12:1e:c0:cd:d7:38:80:3c:b4:fe:ca:8c:e6:ea: 23:ec:aa:09:7e:9c:2a:c0:46:7d:15:76:20:ee:0b: 47:8b:54:d9:a1:65:1e:91:4a:bc:8e:b2:f7:c4:da: 3b:98:76:a0:2a:08:5e:2e:2d:27:75:99:cb:73:bc: 53:19:27:a8:29:9a:e9:18:88:2d:2c:71:23:41:91: 47:4a:c9:45:a2:2d:e7:6c:be:d7:32:82:69:7c:64: 67:aa:cf:6e:8d:85:68:65:8d:97:00:9f:fc:a6:6c: 57:bc:9b:69:60:ad:c4:cc:40:0d:ae:bc:1f:07:1f: 7a:07:51:77:81:e7:55:57:a2:ad:2e:fe:36:a3:9b: 98:4f:06:25:64:37:d8:08:9f:7f:75:32:99:91:0b: 02:64:82:cd:5e:4f:0e:98:71:39:49:cf:a2:b7:d5: b5:2e:44:a0:ae:3a:1d:5a:fa:94:0f:d1:9d:b1:9a: 6a:aa:81:84:1f:53:43:74:06:8f:b5:bb:6d:fc:5e: fd:c4:d8:b9:0d:49:74:d5:63:fd:16:02:98:1e:4c: 2a:bd:dc:90:e4:b0:a5:57:06:c0:08:1c:f1:65:bc: fc:4e:75:37:9b:99:03:05:0b:99:8b:5d:b3:8e:68: cb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:85:16:12:47:B3:4B:48:F4:97:08:2B:D9:89:3A:C0:0A:93:47:63 X509v3 Authority Key Identifier: keyid:8B:E6:51:CB:0C:FD:9D:3B:1C:7B:C9:48:3B:51:70:67:2B:77:ED:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/8BE651CB0CFD9D3B1C7BC9483B5170672B77ED4B.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2AH4t4Fb9BChtNDxHzWJXX9uvJZfPdwQCfNNWXxiLwg8/0/3133382e3132312e3139362e302f32322d3234203d3e20323634333031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.196.0/22 Signature Algorithm: sha256WithRSAEncryption a2:39:d8:ac:ab:54:f9:00:5d:f6:d2:04:cc:47:2a:cf:bf:a5: ea:62:9d:6c:f3:9e:e1:e6:d3:98:27:52:c9:86:ff:86:40:ac: 28:ae:11:62:96:2e:0f:c1:f6:d8:7c:38:2c:e4:50:58:81:41: ec:e1:e0:14:c5:a4:b0:f8:f0:e6:14:d9:11:af:88:55:7f:cb: 15:a8:35:59:67:20:b5:dc:2e:2a:cb:a0:9b:31:2c:02:0f:96: 69:f3:ec:26:fe:cf:be:83:35:ea:5b:1a:88:90:91:30:d0:46: ee:9b:91:ae:a4:55:cf:ad:67:94:1d:a9:7c:e0:39:7c:fb:12: 9e:a5:a7:24:3a:f9:e5:52:d5:85:bf:43:0e:ae:89:45:97:60: 89:76:aa:df:ad:a2:d5:74:c5:dc:ba:31:f3:64:fc:8c:8e:f9: 60:58:93:0e:be:e5:8b:ac:b8:39:d8:21:dc:f3:ab:cf:8b:6e: f3:ca:35:96:8e:b5:ac:48:6e:14:3b:f3:7b:0c:41:00:48:67: 7a:8f:0f:22:6d:e8:c4:aa:34:18:6a:e1:d2:9c:79:c1:44:82: 42:7b:08:2d:56:2b:3b:a9:84:95:89:95:3d:7b:b5:06:9f:35: c4:1f:8e:76:3b:84:f8:a7:10:fe:6d:14:f7:e3:16:bf:74:5b: 16:01:11:4f -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUT+ZlVyW+bLyRyBSB3GtUt9pPV+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFNjUxQ0IwQ0ZEOUQzQjFDN0JDOTQ4M0I1MTcwNjcy Qjc3RUQ0QjAeFw0yNTAzMjQxODA3NDVaFw0yNjAzMjMxODEyNDVaMDMxMTAvBgNV BAMTKEQzODUxNjEyNDdCMzRCNDhGNDk3MDgyQkQ5ODkzQUMwMEE5MzQ3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSgQBsA/VHmxzbC9QUNN4SHsDN 1ziAPLT+yozm6iPsqgl+nCrARn0VdiDuC0eLVNmhZR6RSryOsvfE2juYdqAqCF4u LSd1mctzvFMZJ6gpmukYiC0scSNBkUdKyUWiLedsvtcygml8ZGeqz26NhWhljZcA n/ymbFe8m2lgrcTMQA2uvB8HH3oHUXeB51VXoq0u/jajm5hPBiVkN9gIn391MpmR CwJkgs1eTw6YcTlJz6K31bUuRKCuOh1a+pQP0Z2xmmqqgYQfU0N0Bo+1u238Xv3E 2LkNSXTVY/0WApgeTCq93JDksKVXBsAIHPFlvPxOdTebmQMFC5mLXbOOaMt7AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU04UWEkezS0j0lwgr2Yk6wAqTR2MwHwYDVR0j BBgwFoAUi+ZRywz9nTsce8lIO1FwZyt37UswDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMkFINHQ0RmI5QkNodE5EeEh6V0pYWDl1dkpaZlBkd1FDZk5OV1h4aUx3 ZzgvMC84QkU2NTFDQjBDRkQ5RDNCMUM3QkM5NDgzQjUxNzA2NzJCNzdFRDRCLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzhCRTY1MUNCMENGRDlEM0Ix QzdCQzk0ODNCNTE3MDY3MkI3N0VENEIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJBSDR0NEZiOUJDaHRORHhIeldKWFg5dXZKWmZQZHdRQ2ZOTldYeGlMd2c4LzAv MzEzMzM4MmUzMTMyMzEyZTMxMzkzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNDMzMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAop5xDANBgkqhkiG9w0BAQsFAAOCAQEAojnY rKtU+QBd9tIEzEcqz7+l6mKdbPOe4ebTmCdSyYb/hkCsKK4RYpYuD8H22Hw4LORQ WIFB7OHgFMWksPjw5hTZEa+IVX/LFag1WWcgtdwuKsugmzEsAg+WafPsJv7PvoM1 6lsaiJCRMNBG7puRrqRVz61nlB2pfOA5fPsSnqWnJDr55VLVhb9DDq6JRZdgiXaq 362i1XTF3Lox82T8jI75YFiTDr7li6y4Odgh3POrz4tu88o1lo61rEhuFDvzewxB AEhneo8PIm3oxKo0GGrh0px5wUSCQnsILVYrO6mElYmVPXu1Bp81xB+OdjuE+KcQ /m0U9+MWv3RbFgERTw== -----END CERTIFICATE-----Generated at Mon Apr 14 06:51:32 2025 by rpki-client