$ rpki-client -vvf rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3234203d3e20323634353235.roa File: 3132382e3230312e3230382e302f32322d3234203d3e20323634353235.roa (raw, json) Hash identifier: Dznk/aDtjd/Xne0TnK3n8HXhpd9hXlGWAzldkVkKyGM= Subject key identifier: 8A:85:43:A0:0D:52:B3:15:2C:A0:60:D2:D0:D4:84:19:86:4F:48:55 Certificate issuer: /CN=4766F3CA43125EDED2BA274155576386D9101EDC Certificate serial: 0479185595C13DD0A98233EDA05E0D5DD47EF818 Authority key identifier: 47:66:F3:CA:43:12:5E:DE:D2:BA:27:41:55:57:63:86:D9:10:1E:DC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4766F3CA43125EDED2BA274155576386D9101EDC.cer Subject info access: rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3234203d3e20323634353235.roa Signing time: Mon 03 Feb 2025 20:34:24 +0000 ROA not before: Mon 03 Feb 2025 20:29:24 +0000 ROA not after: Mon 02 Feb 2026 20:34:24 +0000 asID: 264525 IP address blocks: 128.201.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/4766F3CA43125EDED2BA274155576386D9101EDC.crl rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/4766F3CA43125EDED2BA274155576386D9101EDC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4766F3CA43125EDED2BA274155576386D9101EDC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 10 Apr 2025 03:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:79:18:55:95:c1:3d:d0:a9:82:33:ed:a0:5e:0d:5d:d4:7e:f8:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4766F3CA43125EDED2BA274155576386D9101EDC Validity Not Before: Feb 3 20:29:24 2025 GMT Not After : Feb 2 20:34:24 2026 GMT Subject: CN=8A8543A00D52B3152CA060D2D0D48419864F4855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:63:6a:3f:34:32:3e:54:e9:d9:5a:cc:b7: af:42:9a:15:58:a7:ff:f2:75:b1:52:10:c8:13:f9: 59:b3:e2:75:f2:cc:85:21:c3:c3:07:0f:ae:8d:b8: b4:49:c0:0c:61:77:7b:d1:8f:5a:be:0a:f8:97:9e: 61:c9:61:7a:3d:e5:8e:03:03:0c:5e:42:84:e5:58: 73:aa:80:20:37:c8:dd:03:b8:3d:e5:2b:41:e2:00: 96:7c:d1:b2:37:ba:dd:53:1a:03:8d:4f:2c:58:0f: 95:b9:24:e9:5a:3b:21:cb:84:e1:cd:8e:8a:66:62: 8d:73:c6:93:2b:8f:38:3b:69:b0:80:3c:9c:97:08: c1:48:e6:87:9c:8b:20:5f:39:73:f0:65:65:c7:53: 0a:05:9e:bf:a2:bb:6e:1f:5e:ba:09:9c:7f:9d:e5: 68:94:f3:86:4a:92:52:64:78:d6:f6:fa:f5:d3:7d: a5:5a:c5:e5:63:3f:05:7a:6d:fa:06:01:99:ed:77: c4:24:56:b2:57:b2:01:e3:0c:bd:12:28:4c:e4:7c: 01:8c:6d:c2:db:98:5f:b7:1c:6c:aa:cd:f2:bd:b6: 6d:24:1d:7a:ae:e6:0b:2a:cf:7d:5f:48:1a:ad:45: 73:11:94:b1:ab:11:81:4c:49:b2:62:7d:76:cb:0f: 0a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:85:43:A0:0D:52:B3:15:2C:A0:60:D2:D0:D4:84:19:86:4F:48:55 X509v3 Authority Key Identifier: keyid:47:66:F3:CA:43:12:5E:DE:D2:BA:27:41:55:57:63:86:D9:10:1E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/4766F3CA43125EDED2BA274155576386D9101EDC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4766F3CA43125EDED2BA274155576386D9101EDC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2tRwyEQ5CnFhgRBoLCtm1PRTJTEq3CE7JoGLaBhU48wi/0/3132382e3230312e3230382e302f32322d3234203d3e20323634353235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.208.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:18:55:b0:aa:7e:f4:1c:f1:0e:4d:90:36:05:e6:9f:3a:98: c1:49:f0:2a:2c:ed:b1:63:26:22:e2:91:ef:07:56:8d:18:c2: 9b:c0:82:57:da:1f:2a:9b:ea:b6:28:15:a7:c8:90:30:12:3f: d8:84:e3:a6:bf:4f:af:40:4c:a9:12:fc:49:e1:56:a2:6e:c3: 63:60:ae:8f:a2:f9:f5:40:df:dc:4d:91:ee:d6:cb:11:6a:23: 76:55:b6:3a:f5:94:33:6f:0d:3d:85:57:83:21:46:16:bb:39: fe:a9:05:a1:de:9f:77:71:8c:54:6a:4f:96:31:68:22:cb:bc: 65:68:5b:1a:37:08:49:15:fd:78:e9:49:01:11:d6:29:96:ab: 69:0b:6f:4e:2e:fe:00:d7:d0:d4:40:06:df:90:78:65:ae:69: c2:09:5d:af:a5:ac:30:f9:49:bd:d5:35:1d:10:ce:34:26:dd: 6a:23:d7:d1:d9:81:02:73:cb:c9:d9:7b:1c:f1:bf:09:51:6a: fb:4e:fb:4a:a8:10:3c:21:15:14:73:a5:6e:67:80:b5:c7:51: c7:0e:52:52:01:9b:1a:cc:7e:14:a5:35:47:99:9a:ba:31:7c: 5f:32:8d:a7:ca:c5:10:a6:a9:f1:83:56:a9:d2:77:0f:bc:90: b7:e3:22:9b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUBHkYVZXBPdCpgjPtoF4NXdR++BgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NkYzQ0E0MzEyNUVERUQyQkEyNzQxNTU1NzYzODZE OTEwMUVEQzAeFw0yNTAyMDMyMDI5MjRaFw0yNjAyMDIyMDM0MjRaMDMxMTAvBgNV BAMTKDhBODU0M0EwMEQ1MkIzMTUyQ0EwNjBEMkQwRDQ4NDE5ODY0RjQ4NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGmNqPzQyPlTp2VrMt69CmhVY p//ydbFSEMgT+Vmz4nXyzIUhw8MHD66NuLRJwAxhd3vRj1q+CviXnmHJYXo95Y4D AwxeQoTlWHOqgCA3yN0DuD3lK0HiAJZ80bI3ut1TGgONTyxYD5W5JOlaOyHLhOHN jopmYo1zxpMrjzg7abCAPJyXCMFI5oeciyBfOXPwZWXHUwoFnr+iu24fXroJnH+d 5WiU84ZKklJkeNb2+vXTfaVaxeVjPwV6bfoGAZntd8QkVrJXsgHjDL0SKEzkfAGM bcLbmF+3HGyqzfK9tm0kHXqu5gsqz31fSBqtRXMRlLGrEYFMSbJifXbLDwqlAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUioVDoA1SsxUsoGDS0NSEGYZPSFUwHwYDVR0j BBgwFoAUR2bzykMSXt7SuidBVVdjhtkQHtwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMnRSd3lFUTVDbkZoZ1JCb0xDdG0xUFJUSlRFcTNDRTdKb0dMYUJoVTQ4 d2kvMC80NzY2RjNDQTQzMTI1RURFRDJCQTI3NDE1NTU3NjM4NkQ5MTAxRURDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQ3NjZGM0NBNDMxMjVFREVE MkJBMjc0MTU1NTc2Mzg2RDkxMDFFREMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJ0Und5RVE1Q25GaGdSQm9MQ3RtMVBSVEpURXEzQ0U3Sm9HTGFCaFU0OHdpLzAv MzEzMjM4MmUzMjMwMzEyZTMyMzAzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNDM1MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAoDJ0DANBgkqhkiG9w0BAQsFAAOCAQEAfxhV sKp+9BzxDk2QNgXmnzqYwUnwKiztsWMmIuKR7wdWjRjCm8CCV9ofKpvqtigVp8iQ MBI/2ITjpr9Pr0BMqRL8SeFWom7DY2Cuj6L59UDf3E2R7tbLEWojdlW2OvWUM28N PYVXgyFGFrs5/qkFod6fd3GMVGpPljFoIsu8ZWhbGjcISRX9eOlJARHWKZaraQtv Ti7+ANfQ1EAG35B4Za5pwgldr6WsMPlJvdU1HRDONCbdaiPX0dmBAnPLydl7HPG/ CVFq+077SqgQPCEVFHOlbmeAtcdRxw5SUgGbGsx+FKU1R5maujF8XzKNp8rFEKap 8YNWqdJ3D7yQt+Mimw== -----END CERTIFICATE-----Generated at Wed Apr 9 20:15:32 2025 by rpki-client