$ rpki-client -vvf rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa File: 3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa (raw, json) Hash identifier: 4AtHEp888/iGAmenD1pUO5ZkZo5aUmW8rKsPYcqy0q4= Subject key identifier: BA:D2:C3:CD:AC:63:A7:87:DE:34:13:DF:32:F8:04:0E:02:A7:C2:38 Certificate issuer: /CN=23C2D57C49C7C40A3D2573BC3A41D088A1E86C97 Certificate serial: 387CF659F223BE1F1F5E0C68EE708A1B34C665A4 Authority key identifier: 23:C2:D5:7C:49:C7:C4:0A:3D:25:73:BC:3A:41:D0:88:A1:E8:6C:97 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.cer Subject info access: rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa Signing time: Fri 24 Jan 2025 13:36:43 +0000 ROA not before: Fri 24 Jan 2025 13:31:43 +0000 ROA not after: Fri 23 Jan 2026 13:36:43 +0000 asID: 263252 IP address blocks: 168.197.228.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.crl rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 20:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7c:f6:59:f2:23:be:1f:1f:5e:0c:68:ee:70:8a:1b:34:c6:65:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23C2D57C49C7C40A3D2573BC3A41D088A1E86C97 Validity Not Before: Jan 24 13:31:43 2025 GMT Not After : Jan 23 13:36:43 2026 GMT Subject: CN=BAD2C3CDAC63A787DE3413DF32F8040E02A7C238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:da:bb:32:00:fe:ae:5d:ed:3d:11:20:d9:f8: cf:5f:93:6b:f3:63:09:98:b2:8a:a4:27:c4:26:58: 19:e1:bc:30:d7:72:ef:49:c0:27:6a:6f:0e:bd:ca: c8:63:14:53:81:41:c6:cf:ec:33:d2:e3:30:30:7f: 47:56:91:03:ea:58:44:c8:72:df:ac:66:33:db:70: d4:e8:10:f3:99:14:88:23:29:3a:2c:2a:8c:52:14: 3c:ae:42:77:9d:b9:76:e9:8d:07:93:94:39:96:ed: 20:49:68:75:93:b4:ba:71:9c:c5:79:ca:cb:96:c3: 56:af:da:79:9a:87:54:cb:87:b5:9a:04:02:78:ee: c4:12:e6:2c:af:bc:2a:fb:6c:89:1e:79:35:1a:15: 3b:4d:60:95:15:78:bc:9a:69:a8:68:5d:fe:cf:3d: 3f:0b:b8:e9:7b:4e:c0:15:ec:07:4e:48:69:77:f3: 87:cb:85:3c:64:69:e2:bd:cf:76:25:81:e0:a7:d0: 58:8f:3f:de:52:b4:08:58:b5:bc:05:35:63:04:9f: 54:6e:73:8e:e5:c9:13:0e:a8:4e:1b:56:4d:c1:30: aa:31:c0:a8:d9:6a:d0:a8:6a:c6:e9:de:3e:74:29: da:6a:71:16:6c:76:35:3c:60:b6:10:5a:6c:41:94: 22:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D2:C3:CD:AC:63:A7:87:DE:34:13:DF:32:F8:04:0E:02:A7:C2:38 X509v3 Authority Key Identifier: keyid:23:C2:D5:7C:49:C7:C4:0A:3D:25:73:BC:3A:41:D0:88:A1:E8:6C:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/23C2D57C49C7C40A3D2573BC3A41D088A1E86C97.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.197.228.0/22 Signature Algorithm: sha256WithRSAEncryption 91:a1:6b:30:3e:fd:c0:e2:1a:2f:0d:38:d3:74:4c:62:f3:f5: a7:01:69:da:4d:fb:84:5b:f0:80:d1:8a:aa:88:22:8a:c5:77: fe:6d:95:d8:1c:3f:80:b8:d9:45:25:c3:4c:af:dd:0c:76:de: 20:db:17:43:c3:dc:40:8e:2a:1a:ff:70:93:15:2a:75:22:1a: c7:37:7c:c2:09:5e:4b:dc:d9:3f:1c:74:88:6e:a8:a8:d9:6b: 60:49:aa:88:89:95:33:80:bc:6a:d8:d9:21:2b:47:e0:35:41: ff:e5:de:fc:1d:27:dd:c5:fe:86:70:57:1f:2b:f9:a2:ec:2f: 00:3b:bb:95:cc:12:97:de:f2:dd:55:62:37:e6:31:8d:24:42: ca:62:51:d0:22:65:19:0f:33:3d:9c:17:9c:43:0f:a8:91:01: 37:cf:58:35:d2:ca:7c:1c:08:de:e2:8c:b9:e3:6c:3f:72:3a: 7a:73:79:aa:19:ac:23:61:91:74:6a:8f:61:38:f4:89:11:71: 96:0f:72:6e:e4:65:7e:8a:b2:7e:e5:6d:6d:e9:34:0f:9d:a0: 3e:91:a0:16:1b:20:1c:db:4c:09:53:fd:ef:d5:b1:23:63:84: 0f:06:69:48:b0:a6:f0:4e:5b:9f:cc:04:a8:3f:44:49:7f:18: 18:97:8c:3b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUOHz2WfIjvh8fXgxo7nCKGzTGZaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNDMkQ1N0M0OUM3QzQwQTNEMjU3M0JDM0E0MUQwODhB MUU4NkM5NzAeFw0yNTAxMjQxMzMxNDNaFw0yNjAxMjMxMzM2NDNaMDMxMTAvBgNV BAMTKEJBRDJDM0NEQUM2M0E3ODdERTM0MTNERjMyRjgwNDBFMDJBN0MyMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2rsyAP6uXe09ESDZ+M9fk2vz YwmYsoqkJ8QmWBnhvDDXcu9JwCdqbw69yshjFFOBQcbP7DPS4zAwf0dWkQPqWETI ct+sZjPbcNToEPOZFIgjKTosKoxSFDyuQneduXbpjQeTlDmW7SBJaHWTtLpxnMV5 ysuWw1av2nmah1TLh7WaBAJ47sQS5iyvvCr7bIkeeTUaFTtNYJUVeLyaaahoXf7P PT8LuOl7TsAV7AdOSGl384fLhTxkaeK9z3YlgeCn0FiPP95StAhYtbwFNWMEn1Ru c47lyRMOqE4bVk3BMKoxwKjZatCoasbp3j50KdpqcRZsdjU8YLYQWmxBlCKfAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUutLDzaxjp4feNBPfMvgEDgKnwjgwHwYDVR0j BBgwFoAUI8LVfEnHxAo9JXO8OkHQiKHobJcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMnFvc0VGSFZRYmVRdnk4aWt0ZE56cFdOSEtjQjF6ZVY0bVNkNkYxZWEx V04vMC8yM0MyRDU3QzQ5QzdDNDBBM0QyNTczQkMzQTQxRDA4OEExRTg2Qzk3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIzQzJENTdDNDlDN0M0MEEz RDI1NzNCQzNBNDFEMDg4QTFFODZDOTcuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJxb3NFRkhWUWJlUXZ5OGlrdGROenBXTkhLY0IxemVWNG1TZDZGMWVhMVdOLzAv MzEzNjM4MmUzMTM5MzcyZTMyMzIzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMy MzYzMzMyMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqjF5DANBgkqhkiG9w0BAQsFAAOCAQEAkaFr MD79wOIaLw0403RMYvP1pwFp2k37hFvwgNGKqogiisV3/m2V2Bw/gLjZRSXDTK/d DHbeINsXQ8PcQI4qGv9wkxUqdSIaxzd8wgleS9zZPxx0iG6oqNlrYEmqiImVM4C8 atjZIStH4DVB/+Xe/B0n3cX+hnBXHyv5ouwvADu7lcwSl97y3VViN+YxjSRCymJR 0CJlGQ8zPZwXnEMPqJEBN89YNdLKfBwI3uKMueNsP3I6enN5qhmsI2GRdGqPYTj0 iRFxlg9ybuRlfoqyfuVtbek0D52gPpGgFhsgHNtMCVP979WxI2OEDwZpSLCm8E5b n8wEqD9ESX8YGJeMOw== -----END CERTIFICATE-----Generated at Sun Apr 13 06:45:41 2025 by rpki-client