$ rpki-client -vvf rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/34352e3137352e3233302e302f32342d3234203d3e20323638393133.roa File: 34352e3137352e3233302e302f32342d3234203d3e20323638393133.roa (raw, json) Hash identifier: dvZmaJKiFIhzuB+mWc62fkHLhWOlTP21drygDtaN74Y= Subject key identifier: 60:8F:91:C9:4B:29:4D:C0:58:9B:5D:C8:17:61:CE:DE:25:E6:57:B0 Certificate issuer: /CN=3CFEE2C21A17314AD0CFFC520FD817D14B4140D1 Certificate serial: 2436EC52B54935F2B7D18BA97D8CAC7A29A6BFFD Authority key identifier: 3C:FE:E2:C2:1A:17:31:4A:D0:CF:FC:52:0F:D8:17:D1:4B:41:40:D1 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.cer Subject info access: rsync://rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/34352e3137352e3233302e302f32342d3234203d3e20323638393133.roa Signing time: Thu 06 Mar 2025 15:09:42 +0000 ROA not before: Thu 06 Mar 2025 15:04:42 +0000 ROA not after: Thu 05 Mar 2026 15:09:42 +0000 asID: 268913 IP address blocks: 45.175.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.crl rsync://rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 16:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:36:ec:52:b5:49:35:f2:b7:d1:8b:a9:7d:8c:ac:7a:29:a6:bf:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CFEE2C21A17314AD0CFFC520FD817D14B4140D1 Validity Not Before: Mar 6 15:04:42 2025 GMT Not After : Mar 5 15:09:42 2026 GMT Subject: CN=608F91C94B294DC0589B5DC81761CEDE25E657B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:54:f9:92:ed:88:ec:d4:31:e5:54:e0:0b: 7d:74:d0:c4:77:66:5f:94:eb:44:41:3f:01:4b:dd: 60:16:74:83:dd:17:a3:d0:5e:4a:6e:5a:12:f3:2c: 92:a0:92:96:1c:c9:97:4f:10:e8:6e:be:a6:eb:9e: 5d:4b:84:de:96:a8:b7:34:df:43:13:00:36:48:5f: 77:60:d8:59:49:f2:95:2b:c0:60:be:39:e8:74:50: f9:01:3c:4a:96:09:83:b3:e2:73:51:f7:7b:02:03: b3:c5:08:bc:ee:ec:a8:5a:82:6d:b2:46:12:60:ec: 82:6f:65:2f:1f:17:d9:d5:0c:e5:f8:97:fc:38:63: 3a:cc:82:c3:15:97:da:d8:f4:3c:75:6f:a3:30:6b: 95:c6:35:4b:45:6e:ea:c1:0f:22:52:0c:57:d7:a8: f9:3a:f2:61:c9:52:db:c4:7f:c5:92:e0:13:3c:d8: 78:00:97:f0:8e:34:26:a0:15:86:93:be:b5:0a:42: 7e:87:6f:04:04:2b:bb:8c:5e:26:1f:e1:e6:76:e7: b0:ec:c5:d4:05:ee:f4:c2:d8:71:93:e2:86:02:30: a5:84:56:cc:14:bc:00:b0:51:e5:9e:ff:cb:6e:a1: 83:75:d6:1c:fd:c7:05:ac:85:24:5d:a0:d8:55:d2: ad:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8F:91:C9:4B:29:4D:C0:58:9B:5D:C8:17:61:CE:DE:25:E6:57:B0 X509v3 Authority Key Identifier: keyid:3C:FE:E2:C2:1A:17:31:4A:D0:CF:FC:52:0F:D8:17:D1:4B:41:40:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3CFEE2C21A17314AD0CFFC520FD817D14B4140D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2cPDnvdXkhhdwkaQxveRGVEVKPYJn8WSkmF7HFtPNJge/1/34352e3137352e3233302e302f32342d3234203d3e20323638393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.175.230.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:e1:fc:33:e8:15:4d:2c:ac:90:93:76:f8:02:af:f8:fc:36: 8f:5a:09:0d:0d:02:e0:18:ba:d5:d8:ed:1d:c4:7a:69:40:77: dc:d3:14:14:46:3d:24:25:6f:f4:64:2e:f4:55:c9:e3:71:c9: b1:5b:a3:fd:7f:4f:2e:8b:7f:5c:ee:ff:c9:7e:88:59:e6:17: f0:f7:05:eb:fb:8c:b9:70:0a:36:8a:7d:1a:1d:11:a4:f0:7a: bc:10:b1:22:24:f4:c6:29:0e:96:11:01:67:88:ea:dc:75:c1: 65:84:ae:8b:3d:a1:47:9a:87:e4:a9:63:09:ee:fe:77:60:d4: 28:cb:d0:02:39:61:e5:6a:83:9c:bc:0c:57:1d:49:7a:7f:a5: 01:0e:9c:52:b5:1c:9e:5e:30:a7:7d:01:c4:9c:fd:b2:bc:c2: 32:72:5b:44:2c:17:2b:45:86:03:dd:4e:ef:f3:22:e7:fe:41: 1f:f5:31:67:e9:b5:dd:76:4f:12:3d:65:b2:34:34:bc:e0:e7: 28:39:34:7c:18:d5:9b:88:d5:3e:bc:0d:6f:94:a5:b9:bc:e9: 1a:b4:f9:9a:24:6e:d4:32:79:b3:15:9a:1f:d9:5d:e3:4c:6b: 8d:c0:21:36:b8:28:20:2e:6f:00:eb:61:e9:b9:23:40:b7:61: 88:d6:07:d3 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUJDbsUrVJNfK30YupfYyseimmv/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NGRUUyQzIxQTE3MzE0QUQwQ0ZGQzUyMEZEODE3RDE0 QjQxNDBEMTAeFw0yNTAzMDYxNTA0NDJaFw0yNjAzMDUxNTA5NDJaMDMxMTAvBgNV BAMTKDYwOEY5MUM5NEIyOTREQzA1ODlCNURDODE3NjFDRURFMjVFNjU3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/VT5ku2I7NQx5VTgC3100MR3 Zl+U60RBPwFL3WAWdIPdF6PQXkpuWhLzLJKgkpYcyZdPEOhuvqbrnl1LhN6WqLc0 30MTADZIX3dg2FlJ8pUrwGC+Oeh0UPkBPEqWCYOz4nNR93sCA7PFCLzu7Khagm2y RhJg7IJvZS8fF9nVDOX4l/w4YzrMgsMVl9rY9Dx1b6Mwa5XGNUtFburBDyJSDFfX qPk68mHJUtvEf8WS4BM82HgAl/CONCagFYaTvrUKQn6HbwQEK7uMXiYf4eZ257Ds xdQF7vTC2HGT4oYCMKWEVswUvACwUeWe/8tuoYN11hz9xwWshSRdoNhV0q2JAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUYI+RyUspTcBYm13IF2HO3iXmV7AwHwYDVR0j BBgwFoAUPP7iwhoXMUrQz/xSD9gX0UtBQNEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMmNQRG52ZFhraGhkd2thUXh2ZVJHVkVWS1BZSm44V1NrbUY3SEZ0UE5K Z2UvMS8zQ0ZFRTJDMjFBMTczMTRBRDBDRkZDNTIwRkQ4MTdEMTRCNDE0MEQxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNDRkVFMkMyMUExNzMxNEFE MENGRkM1MjBGRDgxN0QxNEI0MTQwRDEuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJjUERudmRYa2hoZHdrYVF4dmVSR1ZFVktQWUpuOFdTa21GN0hGdFBOSmdlLzEv MzQzNTJlMzEzNzM1MmUzMjMzMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2 MzgzOTMxMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAAtr+YwDQYJKoZIhvcNAQELBQADggEBAI7h/DPo FU0srJCTdvgCr/j8No9aCQ0NAuAYutXY7R3EemlAd9zTFBRGPSQlb/RkLvRVyeNx ybFbo/1/Ty6Lf1zu/8l+iFnmF/D3Bev7jLlwCjaKfRodEaTwerwQsSIk9MYpDpYR AWeI6tx1wWWEros9oUeah+SpYwnu/ndg1CjL0AI5YeVqg5y8DFcdSXp/pQEOnFK1 HJ5eMKd9AcSc/bK8wjJyW0QsFytFhgPdTu/zIuf+QR/1MWfptd12TxI9ZbI0NLzg 5yg5NHwY1ZuI1T68DW+Upbm86Rq0+ZokbtQyebMVmh/ZXeNMa43AITa4KCAubwDr Yem5I0C3YYjWB9M= -----END CERTIFICATE-----Generated at Tue Apr 22 15:44:08 2025 by rpki-client