$ rpki-client -vvf rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/3137372e3132392e3233362e302f32322d3234203d3e203238353834.roa File: 3137372e3132392e3233362e302f32322d3234203d3e203238353834.roa (raw, json) Hash identifier: IA7SU1skYEFPyXwIpINwxaPiOeXAArTYBWea+cx5O18= Subject key identifier: 19:9D:A3:37:9F:0A:5A:8E:3B:DD:84:00:A1:0A:CF:9E:C9:16:E8:65 Certificate issuer: /CN=1233961E0559F239AED4F50437087EF6837DC5E3 Certificate serial: 4E950F80D78078758C7A8B47D2232AF2748B1EF6 Authority key identifier: 12:33:96:1E:05:59:F2:39:AE:D4:F5:04:37:08:7E:F6:83:7D:C5:E3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1233961E0559F239AED4F50437087EF6837DC5E3.cer Subject info access: rsync://rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/3137372e3132392e3233362e302f32322d3234203d3e203238353834.roa Signing time: Tue 08 Apr 2025 19:20:20 +0000 ROA not before: Tue 08 Apr 2025 19:15:20 +0000 ROA not after: Tue 07 Apr 2026 19:20:20 +0000 asID: 28584 IP address blocks: 177.129.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/1233961E0559F239AED4F50437087EF6837DC5E3.crl rsync://rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/1233961E0559F239AED4F50437087EF6837DC5E3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1233961E0559F239AED4F50437087EF6837DC5E3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 11:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:95:0f:80:d7:80:78:75:8c:7a:8b:47:d2:23:2a:f2:74:8b:1e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1233961E0559F239AED4F50437087EF6837DC5E3 Validity Not Before: Apr 8 19:15:20 2025 GMT Not After : Apr 7 19:20:20 2026 GMT Subject: CN=199DA3379F0A5A8E3BDD8400A10ACF9EC916E865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:56:c2:c5:bc:fd:9e:b2:0c:c8:48:68:18: 9b:b0:5a:15:93:a9:da:fc:71:36:59:29:a9:2f:57: c1:bf:f1:06:f4:a3:bd:20:38:21:43:2c:0b:72:88: 36:18:1d:35:75:16:a3:f7:e6:09:79:09:6b:2a:69: 7a:54:b3:66:58:ee:bf:3f:a7:31:74:97:6a:9f:de: 50:90:59:90:b7:23:ed:fd:12:1c:43:ff:d2:af:68: fd:e1:4f:5a:6a:20:bf:55:00:57:bd:23:45:33:9b: 6c:cb:54:21:1f:b6:6f:8a:63:0e:ea:2b:05:c2:5f: 68:7e:da:4a:e4:04:39:0a:8d:51:4a:c0:63:17:f3: f6:de:fe:32:15:3b:9a:f8:71:d8:70:88:48:b2:3b: 2c:ce:b4:48:b9:1b:1e:fc:de:55:23:0b:13:d2:f4: 33:91:58:ca:f9:fb:79:bc:db:26:25:f4:4f:5a:d4: 40:f2:c5:cd:76:27:c4:c3:86:3d:fd:24:af:75:06: 56:d6:5b:ed:d9:9e:70:45:2c:e7:2f:e9:cb:e0:de: 13:65:4a:f8:09:97:ec:aa:b7:33:1a:e7:79:bb:71: 48:fc:48:8c:88:9c:a2:0b:28:05:83:33:77:5a:08: 20:d2:50:dc:01:eb:93:69:29:0f:b8:c5:72:51:38: bb:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9D:A3:37:9F:0A:5A:8E:3B:DD:84:00:A1:0A:CF:9E:C9:16:E8:65 X509v3 Authority Key Identifier: keyid:12:33:96:1E:05:59:F2:39:AE:D4:F5:04:37:08:7E:F6:83:7D:C5:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/1233961E0559F239AED4F50437087EF6837DC5E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1233961E0559F239AED4F50437087EF6837DC5E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2AmUc2rt8EUSnDQoRrYggQRM4LVmnd3gfNtUsgp1XQkP/0/3137372e3132392e3233362e302f32322d3234203d3e203238353834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.129.236.0/22 Signature Algorithm: sha256WithRSAEncryption 54:12:28:6a:06:e8:f7:e7:72:a8:d6:c9:ea:48:b5:2f:a9:d5: 41:94:7d:cf:24:d0:c4:a9:77:0b:21:af:e3:33:b5:83:0a:d4: a5:12:3d:32:2a:38:07:5b:67:4f:2f:05:b1:10:26:4f:b3:9b: fa:f8:1b:d0:af:ab:d4:64:c7:0d:7c:ff:e5:a7:4f:b4:13:db: 96:74:a0:4e:d6:37:73:9d:32:c9:fe:ef:2e:3c:74:01:70:7b: c9:52:c4:3c:c6:54:a4:07:e4:f6:60:ff:39:d6:14:ac:a1:77: 74:83:87:d6:1c:69:9b:4a:84:6c:58:f0:59:cf:5a:2c:9d:12: ce:bb:fa:24:51:a5:c5:87:2e:77:7f:b2:5e:bd:8f:c5:89:cf: ec:5c:c1:db:2c:62:ac:19:aa:e8:f0:e4:b7:e5:8c:7d:d5:46: ac:39:82:5a:ac:b1:28:e3:4e:df:bf:11:24:6c:c9:f5:96:04: 9b:ef:ee:17:bf:33:4f:d8:9c:0f:f9:59:39:0e:d9:08:31:00: 24:19:8b:a2:84:77:e7:a2:fb:d6:76:a5:2d:78:f4:b4:fc:75: 61:e8:82:06:5f:bd:f0:6d:a7:0c:d2:6c:82:d2:9e:cd:11:f9: 3f:00:4b:22:8b:9e:a3:33:22:14:44:5b:fc:31:25:e6:da:92: 1a:dd:e1:bd -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUTpUPgNeAeHWMeotH0iMq8nSLHvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTIzMzk2MUUwNTU5RjIzOUFFRDRGNTA0MzcwODdFRjY4 MzdEQzVFMzAeFw0yNTA0MDgxOTE1MjBaFw0yNjA0MDcxOTIwMjBaMDMxMTAvBgNV BAMTKDE5OURBMzM3OUYwQTVBOEUzQkREODQwMEExMEFDRjlFQzkxNkU4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHVVbCxbz9nrIMyEhoGJuwWhWT qdr8cTZZKakvV8G/8Qb0o70gOCFDLAtyiDYYHTV1FqP35gl5CWsqaXpUs2ZY7r8/ pzF0l2qf3lCQWZC3I+39EhxD/9KvaP3hT1pqIL9VAFe9I0Uzm2zLVCEftm+KYw7q KwXCX2h+2krkBDkKjVFKwGMX8/be/jIVO5r4cdhwiEiyOyzOtEi5Gx783lUjCxPS 9DORWMr5+3m82yYl9E9a1EDyxc12J8TDhj39JK91BlbWW+3ZnnBFLOcv6cvg3hNl SvgJl+yqtzMa53m7cUj8SIyInKILKAWDM3daCCDSUNwB65NpKQ+4xXJROLsjAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUGZ2jN58KWo473YQAoQrPnskW6GUwHwYDVR0j BBgwFoAUEjOWHgVZ8jmu1PUENwh+9oN9xeMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMkFtVWMycnQ4RVVTbkRRb1JyWWdnUVJNNExWbW5kM2dmTnRVc2dwMVhR a1AvMC8xMjMzOTYxRTA1NTlGMjM5QUVENEY1MDQzNzA4N0VGNjgzN0RDNUUzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzEyMzM5NjFFMDU1OUYyMzlB RUQ0RjUwNDM3MDg3RUY2ODM3REM1RTMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJBbVVjMnJ0OEVVU25EUW9ScllnZ1FSTTRMVm1uZDNnZk50VXNncDFYUWtQLzAv MzEzNzM3MmUzMTMyMzkyZTMyMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzgzNTM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKxgewwDQYJKoZIhvcNAQELBQADggEBAFQSKGoG 6PfncqjWyepItS+p1UGUfc8k0MSpdwshr+MztYMK1KUSPTIqOAdbZ08vBbEQJk+z m/r4G9Cvq9Rkxw18/+WnT7QT25Z0oE7WN3OdMsn+7y48dAFwe8lSxDzGVKQH5PZg /znWFKyhd3SDh9YcaZtKhGxY8FnPWiydEs67+iRRpcWHLnd/sl69j8WJz+xcwdss YqwZqujw5LfljH3VRqw5glqssSjjTt+/ESRsyfWWBJvv7he/M0/YnA/5WTkO2Qgx ACQZi6KEd+ei+9Z2pS149LT8dWHoggZfvfBtpwzSbILSns0R+T8ASyKLnqMzIhRE W/wxJebakhrd4b0= -----END CERTIFICATE-----Generated at Tue Apr 22 14:24:42 2025 by rpki-client