$ rpki-client -vvf rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/34352e3233342e3130332e302f32342d3234203d3e203631353932.roa File: 34352e3233342e3130332e302f32342d3234203d3e203631353932.roa (raw, json) Hash identifier: WRDVVGuT6qpRjnTG1J0bFznMU2d8fuI3VoaTqQZyWRU= Subject key identifier: BF:5E:59:7C:7B:F5:39:47:BC:E3:1C:07:98:6C:99:98:81:B9:03:19 Certificate issuer: /CN=45D8EABBB8344E57C69E3416BF523D78A65C0103 Certificate serial: 0F3E250CF73C94A9A51575B4D7ED04D07412FD9F Authority key identifier: 45:D8:EA:BB:B8:34:4E:57:C6:9E:34:16:BF:52:3D:78:A6:5C:01:03 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/45D8EABBB8344E57C69E3416BF523D78A65C0103.cer Subject info access: rsync://rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/34352e3233342e3130332e302f32342d3234203d3e203631353932.roa Signing time: Wed 12 Feb 2025 14:31:03 +0000 ROA not before: Wed 12 Feb 2025 14:26:03 +0000 ROA not after: Wed 11 Feb 2026 14:31:03 +0000 asID: 61592 IP address blocks: 45.234.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/45D8EABBB8344E57C69E3416BF523D78A65C0103.crl rsync://rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/45D8EABBB8344E57C69E3416BF523D78A65C0103.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/45D8EABBB8344E57C69E3416BF523D78A65C0103.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 22 Feb 2025 08:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3e:25:0c:f7:3c:94:a9:a5:15:75:b4:d7:ed:04:d0:74:12:fd:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45D8EABBB8344E57C69E3416BF523D78A65C0103 Validity Not Before: Feb 12 14:26:03 2025 GMT Not After : Feb 11 14:31:03 2026 GMT Subject: CN=BF5E597C7BF53947BCE31C07986C999881B90319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b3:4f:b8:f7:c6:bf:e5:48:86:8d:8c:e3:ab: 78:6e:28:e0:c7:44:2f:b1:5c:ab:28:3b:c0:c1:d4: 76:9c:c0:a6:a2:ae:e6:d0:ba:06:ab:8f:cb:70:b4: 11:65:bf:5f:cf:89:78:f0:66:cb:e7:5a:6b:f1:38: 60:fa:41:90:7c:9e:f5:08:50:6c:60:79:cb:3f:46: 55:63:b2:76:42:4c:53:d5:d2:a5:93:6c:eb:68:89: a8:72:cc:80:1c:f0:7a:95:5d:ac:fd:bc:c5:6f:cc: dc:a3:c2:e9:ab:61:ed:2f:c3:b0:37:3f:aa:51:a6: f3:7c:f1:58:d1:34:ff:f5:2a:80:1a:30:86:83:5f: 2c:71:27:4c:d0:d3:23:d9:cf:54:d7:b8:86:d3:40: c9:73:6b:c7:a6:85:62:7c:e0:fd:39:e1:60:90:9f: cb:39:78:c8:2c:88:0b:eb:af:03:e6:db:55:18:be: 24:8d:8c:a6:4e:a2:7c:d9:16:3b:05:0d:d2:59:a0: 9f:1f:12:22:30:11:4b:33:c0:14:ca:3b:0b:e4:72: 81:e4:f5:eb:da:03:df:71:f4:9a:9a:90:bb:4c:47: 6a:d5:6b:5d:83:ce:b2:aa:57:00:66:6b:e4:36:7a: e0:0d:80:5a:91:9f:31:71:03:b0:57:a1:ba:45:d1: ac:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5E:59:7C:7B:F5:39:47:BC:E3:1C:07:98:6C:99:98:81:B9:03:19 X509v3 Authority Key Identifier: keyid:45:D8:EA:BB:B8:34:4E:57:C6:9E:34:16:BF:52:3D:78:A6:5C:01:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/45D8EABBB8344E57C69E3416BF523D78A65C0103.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/45D8EABBB8344E57C69E3416BF523D78A65C0103.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2EL9mrvPXgcpLbCQ1MnqaJUgRLvaxaYJxA8s37GPo8mp/0/34352e3233342e3130332e302f32342d3234203d3e203631353932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.234.103.0/24 Signature Algorithm: sha256WithRSAEncryption 28:02:87:aa:6d:b9:01:de:d5:34:12:6c:6d:34:77:31:b3:17: 6b:2b:15:9d:2e:02:1f:06:f7:ae:13:15:6e:1b:be:77:2a:ab: 28:23:a5:52:9e:4e:f1:48:e2:da:81:3e:bc:a7:17:d1:23:5c: 36:12:99:a9:50:7e:52:4d:12:d1:83:e3:7e:76:eb:17:cf:79: 46:a5:d7:0a:a6:dc:31:53:3e:a9:b8:f0:bf:e1:84:12:c8:ca: ce:37:ab:fb:ce:fb:23:e4:6a:a2:25:21:58:ec:a2:12:be:62: 1f:3b:32:3c:a1:b6:12:12:4f:dc:e7:86:c6:c4:e9:22:75:ca: 23:aa:0f:b2:5f:2a:f7:c4:ca:60:fe:ef:2d:da:2d:a5:bd:f8: e2:e7:46:d6:f3:ef:49:ac:2f:95:84:89:ac:cb:25:fe:2d:b6: 48:fc:d6:cb:f8:1c:97:08:4c:33:06:73:6d:eb:84:f1:dc:53: 82:21:74:ff:d0:51:22:08:3e:c0:44:8e:52:e8:d7:70:1c:5a: 85:0f:64:21:15:bc:02:c1:d1:e4:ba:5f:67:7b:70:9a:59:73: a3:6e:60:f4:20:00:01:83:5c:0a:2f:36:1e:07:14:f0:eb:b8: 55:e8:96:49:19:81:f2:f4:7f:e3:c8:68:6e:26:7d:2e:e8:86: f3:0a:e0:13 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUDz4lDPc8lKmlFXW01+0E0HQS/Z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVEOEVBQkJCODM0NEU1N0M2OUUzNDE2QkY1MjNENzhB NjVDMDEwMzAeFw0yNTAyMTIxNDI2MDNaFw0yNjAyMTExNDMxMDNaMDMxMTAvBgNV BAMTKEJGNUU1OTdDN0JGNTM5NDdCQ0UzMUMwNzk4NkM5OTk4ODFCOTAzMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWs0+498a/5UiGjYzjq3huKODH RC+xXKsoO8DB1HacwKairubQugarj8twtBFlv1/PiXjwZsvnWmvxOGD6QZB8nvUI UGxgecs/RlVjsnZCTFPV0qWTbOtoiahyzIAc8HqVXaz9vMVvzNyjwumrYe0vw7A3 P6pRpvN88VjRNP/1KoAaMIaDXyxxJ0zQ0yPZz1TXuIbTQMlza8emhWJ84P054WCQ n8s5eMgsiAvrrwPm21UYviSNjKZOonzZFjsFDdJZoJ8fEiIwEUszwBTKOwvkcoHk 9evaA99x9JqakLtMR2rVa12DzrKqVwBma+Q2euANgFqRnzFxA7BXobpF0aydAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUv15ZfHv1OUe84xwHmGyZmIG5AxkwHwYDVR0j BBgwFoAURdjqu7g0TlfGnjQWv1I9eKZcAQMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMkVMOW1ydlBYZ2NwTGJDUTFNbnFhSlVnUkx2YXhhWUp4QThzMzdHUG84 bXAvMC80NUQ4RUFCQkI4MzQ0RTU3QzY5RTM0MTZCRjUyM0Q3OEE2NUMwMTAzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQ1RDhFQUJCQjgzNDRFNTdD NjlFMzQxNkJGNTIzRDc4QTY1QzAxMDMuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJFTDltcnZQWGdjcExiQ1ExTW5xYUpVZ1JMdmF4YVlKeEE4czM3R1BvOG1wLzAv MzQzNTJlMzIzMzM0MmUzMTMwMzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNjMx MzUzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQALepnMA0GCSqGSIb3DQEBCwUAA4IBAQAoAoeqbbkB 3tU0EmxtNHcxsxdrKxWdLgIfBveuExVuG753KqsoI6VSnk7xSOLagT68pxfRI1w2 EpmpUH5STRLRg+N+dusXz3lGpdcKptwxUz6puPC/4YQSyMrON6v7zvsj5GqiJSFY 7KISvmIfOzI8obYSEk/c54bGxOkidcojqg+yXyr3xMpg/u8t2i2lvfji50bW8+9J rC+VhImsyyX+LbZI/NbL+ByXCEwzBnNt64Tx3FOCIXT/0FEiCD7ARI5S6NdwHFqF D2QhFbwCwdHkul9ne3CaWXOjbmD0IAABg1wKLzYeBxTw67hV6JZJGYHy9H/jyGhu Jn0u6IbzCuAT -----END CERTIFICATE-----Generated at Fri Feb 21 11:22:21 2025 by rpki-client