$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130382e302f32342d3234203d3e203533313533.roa File: 3138362e3230392e3130382e302f32342d3234203d3e203533313533.roa (raw, json) Hash identifier: XMI31OFJpGnSJpt2Bw+aiCZlva6Om8uPZcSYPzlx/mw= Subject key identifier: 14:EC:27:86:5E:BD:F8:0D:A4:95:19:C7:40:F6:3D:C1:0C:B3:DB:F9 Certificate issuer: /CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08 Certificate serial: 65B6E3385B2C0D5F45AB8AC165C0FDB770D22B9B Authority key identifier: 85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer Subject info access: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130382e302f32342d3234203d3e203533313533.roa Signing time: Wed 04 Dec 2024 15:42:00 +0000 ROA not before: Wed 04 Dec 2024 15:37:00 +0000 ROA not after: Wed 03 Dec 2025 15:42:00 +0000 asID: 53153 IP address blocks: 186.209.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.crl rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 18 Feb 2025 15:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b6:e3:38:5b:2c:0d:5f:45:ab:8a:c1:65:c0:fd:b7:70:d2:2b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85CB838E34B41EAF2AA18ECCB28128B775E7DF08 Validity Not Before: Dec 4 15:37:00 2024 GMT Not After : Dec 3 15:42:00 2025 GMT Subject: CN=14EC27865EBDF80DA49519C740F63DC10CB3DBF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:10:a3:d6:fd:fb:23:a6:0e:f2:fc:13:f9: 33:9e:ab:e5:1c:6e:a8:1a:d2:fb:ec:27:25:e9:11: 7a:83:ab:d0:71:96:8d:01:bc:36:0b:2e:88:da:ec: b5:4b:bb:73:a4:d1:61:dd:41:15:68:cb:9d:11:f4: 4e:09:ed:e9:11:a5:7e:e6:82:04:9f:b9:53:84:7a: c6:a0:93:2f:f9:a3:af:6e:d4:a7:4d:ef:90:98:24: 38:a5:e9:0d:c9:05:d3:b1:64:7b:58:9b:2f:08:b9: e1:a4:df:53:32:b4:95:a6:70:84:3d:e0:9d:77:bc: 7d:17:df:12:08:c2:75:9b:b8:13:e8:e8:83:72:08: f6:fd:47:a3:7f:ed:f5:32:1f:6e:17:41:1e:41:cd: c6:14:f2:b4:50:fb:3a:e7:4a:b2:84:fd:ff:e3:43: 25:4d:fd:06:2e:68:86:f5:1c:9b:fe:e3:3e:32:68: 11:18:c0:13:9a:0b:cf:75:86:d6:e4:a3:2f:69:cf: 9e:c1:a2:a0:f2:31:0c:49:b4:12:cf:28:42:25:df: 2c:0c:01:34:87:f9:38:cc:50:c2:99:5b:00:8d:4a: 41:a9:8a:d3:46:55:35:59:91:13:98:ca:0a:e6:e3: d1:b4:38:96:17:e7:03:51:e0:55:8f:65:54:27:55: 5d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:EC:27:86:5E:BD:F8:0D:A4:95:19:C7:40:F6:3D:C1:0C:B3:DB:F9 X509v3 Authority Key Identifier: keyid:85:CB:83:8E:34:B4:1E:AF:2A:A1:8E:CC:B2:81:28:B7:75:E7:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/85CB838E34B41EAF2AA18ECCB28128B775E7DF08.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138362e3230392e3130382e302f32342d3234203d3e203533313533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 186.209.108.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:43:7c:65:fe:9c:78:85:99:e3:7e:ff:33:8d:8f:ae:ab:a7: a5:6d:98:66:d8:50:9f:32:0b:a5:ba:77:70:38:a3:87:4b:09: b5:d6:c5:6d:8b:e0:0e:17:d9:02:ad:d0:22:b4:ee:6e:67:52: a3:60:cb:92:d0:83:20:ee:c1:31:c9:e5:7d:27:94:25:e1:be: 36:71:da:11:d7:2f:51:41:66:b6:80:77:41:d6:63:64:f9:94: 6b:c0:d8:41:06:3f:2e:90:f0:b7:09:b9:de:9b:56:69:73:8a: 8d:b6:e9:3b:1a:18:c6:68:2c:17:40:6c:4f:7d:84:14:e3:16: d6:16:b5:8a:9f:f4:70:77:68:57:10:d2:41:c4:8b:b9:45:1c: 84:49:ad:95:35:a9:ac:2f:08:b8:cd:66:a0:f1:66:f1:a4:9f: cb:8b:8f:31:17:54:dd:71:56:e9:9c:76:dc:9a:cc:f6:bb:2d: 3c:0c:fc:8c:02:99:80:1c:68:da:ff:25:f0:d9:bc:d0:ff:c9: e3:4e:66:ce:92:32:54:c7:14:9e:1d:db:d4:05:e2:e6:59:c1: ed:63:97:a1:93:51:89:ca:a0:54:98:9e:98:97:f4:79:63:5c: ea:a7:a8:6d:1b:9c:a9:cc:8c:23:79:47:96:d1:2a:c1:88:66: 58:fe:66:18 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUZbbjOFssDV9Fq4rBZcD9t3DSK5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVDQjgzOEUzNEI0MUVBRjJBQTE4RUNDQjI4MTI4Qjc3 NUU3REYwODAeFw0yNDEyMDQxNTM3MDBaFw0yNTEyMDMxNTQyMDBaMDMxMTAvBgNV BAMTKDE0RUMyNzg2NUVCREY4MERBNDk1MTlDNzQwRjYzREMxMENCM0RCRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7vhCj1v37I6YO8vwT+TOeq+Uc bqga0vvsJyXpEXqDq9Bxlo0BvDYLLoja7LVLu3Ok0WHdQRVoy50R9E4J7ekRpX7m ggSfuVOEesagky/5o69u1KdN75CYJDil6Q3JBdOxZHtYmy8IueGk31MytJWmcIQ9 4J13vH0X3xIIwnWbuBPo6INyCPb9R6N/7fUyH24XQR5BzcYU8rRQ+zrnSrKE/f/j QyVN/QYuaIb1HJv+4z4yaBEYwBOaC891htbkoy9pz57BoqDyMQxJtBLPKEIl3ywM ATSH+TjMUMKZWwCNSkGpitNGVTVZkROYygrm49G0OJYX5wNR4FWPZVQnVV1LAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUFOwnhl69+A2klRnHQPY9wQyz2/kwHwYDVR0j BBgwFoAUhcuDjjS0Hq8qoY7MsoEot3Xn3wgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMm5zZHRMdG1xcEgzUFBtYnJzTHNIWGhtN2p4a1ByVHNkSnJudmdOelJC SmgvMC84NUNCODM4RTM0QjQxRUFGMkFBMThFQ0NCMjgxMjhCNzc1RTdERjA4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg1Q0I4MzhFMzRCNDFFQUYy QUExOEVDQ0IyODEyOEI3NzVFN0RGMDguY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJuc2R0THRtcXBIM1BQbWJyc0xzSFhobTdqeGtQclRzZEpybnZnTnpSQkpoLzAv MzEzODM2MmUzMjMwMzkyZTMxMzAzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1 MzMzMTM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAC60WwwDQYJKoZIhvcNAQELBQADggEBAGxDfGX+ nHiFmeN+/zONj66rp6VtmGbYUJ8yC6W6d3A4o4dLCbXWxW2L4A4X2QKt0CK07m5n UqNgy5LQgyDuwTHJ5X0nlCXhvjZx2hHXL1FBZraAd0HWY2T5lGvA2EEGPy6Q8LcJ ud6bVmlzio226TsaGMZoLBdAbE99hBTjFtYWtYqf9HB3aFcQ0kHEi7lFHIRJrZU1 qawvCLjNZqDxZvGkn8uLjzEXVN1xVumcdtyazPa7LTwM/IwCmYAcaNr/JfDZvND/ yeNOZs6SMlTHFJ4d29QF4uZZwe1jl6GTUYnKoFSYnpiX9HljXOqnqG0bnKnMjCN5 R5bRKsGIZlj+Zhg= -----END CERTIFICATE-----Generated at Tue Feb 18 13:28:09 2025 by rpki-client