$ rpki-client -vvf rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/3139302e3132342e3234342e302f32332d3233203d3e20323730383630.roa File: 3139302e3132342e3234342e302f32332d3233203d3e20323730383630.roa (raw, json) Hash identifier: 0eX90yaw+P6ZAxEPr/PJb8WsvDlA//ZNAwA4O0HitxQ= Subject key identifier: 5C:76:6E:2E:CF:A3:7C:5A:F6:E8:CD:B4:76:4D:74:F0:82:62:D5:EA Certificate issuer: /CN=91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0 Certificate serial: 311826238A1557C2CF11C35957FA59D3007E6DE6 Authority key identifier: 91:CB:0D:46:F3:8A:17:C0:F3:AB:C4:9D:94:96:AF:CB:60:EC:C5:C0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.cer Subject info access: rsync://rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/3139302e3132342e3234342e302f32332d3233203d3e20323730383630.roa Signing time: Sat 04 Jan 2025 12:28:08 +0000 ROA not before: Sat 04 Jan 2025 12:23:08 +0000 ROA not after: Sat 03 Jan 2026 12:28:08 +0000 asID: 270860 IP address blocks: 190.124.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.crl rsync://rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 20:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:18:26:23:8a:15:57:c2:cf:11:c3:59:57:fa:59:d3:00:7e:6d:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0 Validity Not Before: Jan 4 12:23:08 2025 GMT Not After : Jan 3 12:28:08 2026 GMT Subject: CN=5C766E2ECFA37C5AF6E8CDB4764D74F08262D5EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d8:b3:05:de:20:4d:c7:51:ee:f2:d1:76:b0: e6:7b:c3:07:80:d7:1e:11:c0:d5:b8:e3:f1:6a:4a: 32:51:e0:8a:8a:c8:8b:a2:75:f0:e5:4a:41:35:6b: 87:76:ac:fa:1b:41:03:6a:54:3e:c5:a5:d4:ba:96: 9c:bd:39:e9:d5:69:dd:65:c2:31:16:dd:55:69:6a: 74:dd:93:ea:ff:c7:5f:4b:b7:c8:0c:a5:30:2e:a0: dd:4a:05:24:c3:77:22:34:02:a9:59:30:21:4e:91: 16:18:5b:c9:69:bd:d6:fd:d5:55:b6:d5:84:5c:34: c8:64:6c:a0:89:66:ae:a4:2d:3b:d9:53:a3:7c:72: 45:a1:82:15:d8:13:8b:2f:a9:af:fa:33:23:2e:f5: 85:6c:66:99:c2:78:4c:a5:6a:3b:8f:10:fd:bf:f7: a3:5a:a4:19:f9:4d:23:32:21:07:6f:ec:80:07:62: 1f:46:9e:ae:08:ff:58:e9:89:99:2e:7f:c0:00:06: 4d:1d:7f:6d:2f:5a:42:43:22:b6:28:f2:35:3f:9e: f5:65:72:ed:73:10:f5:d2:6c:a7:30:b2:22:ee:de: 89:8b:f5:f1:0c:d3:9d:3a:50:45:57:4d:42:80:81: 25:00:74:bc:3d:d6:c8:81:73:37:82:e5:1b:11:6c: e9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:76:6E:2E:CF:A3:7C:5A:F6:E8:CD:B4:76:4D:74:F0:82:62:D5:EA X509v3 Authority Key Identifier: keyid:91:CB:0D:46:F3:8A:17:C0:F3:AB:C4:9D:94:96:AF:CB:60:EC:C5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/91CB0D46F38A17C0F3ABC49D9496AFCB60ECC5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3bNJ2KjrPijeatbPwFrQ1yiPeq2RCw6v9TEintWgHNBL/0/3139302e3132342e3234342e302f32332d3233203d3e20323730383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 190.124.244.0/23 Signature Algorithm: sha256WithRSAEncryption 37:ed:ce:56:d3:b9:89:74:1f:17:9c:f9:44:51:1b:6a:a3:a8: 16:aa:6f:7a:7f:a7:cf:2d:a2:62:02:bc:24:b0:58:3f:c8:a8: 91:8e:62:3c:ff:52:11:af:f7:f7:23:cf:4b:59:ea:e8:56:ba: 72:0f:cd:61:ce:cc:7a:4a:77:98:9e:33:b0:4f:6e:27:60:a2: 0c:b5:15:c9:9a:80:e2:7d:ce:2e:01:16:97:52:5a:16:12:24: de:7c:0f:72:f7:c7:32:83:10:77:d3:99:61:18:d3:27:fb:c1: bc:79:b2:4e:b0:62:ab:f4:0d:c9:11:7c:3c:fa:11:92:f2:aa: a4:62:83:d2:9e:8c:24:fa:38:c1:da:36:2d:ec:6b:93:84:10: 33:64:ba:a3:7f:f1:2f:e3:94:0f:06:b0:6a:4f:4e:ff:68:82: 49:98:af:7c:b7:44:83:5e:f5:9e:1a:b5:82:5e:a2:aa:c1:c4: 45:d9:49:8e:79:d6:30:2d:3d:e4:bc:f3:9c:f5:10:13:5d:f5: 18:a9:90:dc:fd:f6:3f:99:af:cf:74:8e:e9:82:44:36:82:ad: 33:94:24:2d:bc:8a:f7:c4:58:a9:8c:2f:6e:ab:44:bd:ad:63: 7a:fb:c2:6c:16:c6:26:d4:51:ac:24:98:f6:8c:5f:9e:7f:18: b7:b4:b4:c3 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUMRgmI4oVV8LPEcNZV/pZ0wB+beYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDQjBENDZGMzhBMTdDMEYzQUJDNDlEOTQ5NkFGQ0I2 MEVDQzVDMDAeFw0yNTAxMDQxMjIzMDhaFw0yNjAxMDMxMjI4MDhaMDMxMTAvBgNV BAMTKDVDNzY2RTJFQ0ZBMzdDNUFGNkU4Q0RCNDc2NEQ3NEYwODI2MkQ1RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn2LMF3iBNx1Hu8tF2sOZ7wweA 1x4RwNW44/FqSjJR4IqKyIuidfDlSkE1a4d2rPobQQNqVD7FpdS6lpy9OenVad1l wjEW3VVpanTdk+r/x19Lt8gMpTAuoN1KBSTDdyI0AqlZMCFOkRYYW8lpvdb91VW2 1YRcNMhkbKCJZq6kLTvZU6N8ckWhghXYE4svqa/6MyMu9YVsZpnCeEylajuPEP2/ 96NapBn5TSMyIQdv7IAHYh9Gnq4I/1jpiZkuf8AABk0df20vWkJDIrYo8jU/nvVl cu1zEPXSbKcwsiLu3omL9fEM0506UEVXTUKAgSUAdLw91siBczeC5RsRbOnlAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUXHZuLs+jfFr26M20dk108IJi1eowHwYDVR0j BBgwFoAUkcsNRvOKF8Dzq8SdlJavy2DsxcAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM2JOSjJLanJQaWplYXRiUHdGclExeWlQZXEyUkN3NnY5VEVpbnRXZ0hO QkwvMC85MUNCMEQ0NkYzOEExN0MwRjNBQkM0OUQ5NDk2QUZDQjYwRUNDNUMwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzkxQ0IwRDQ2RjM4QTE3QzBG M0FCQzQ5RDk0OTZBRkNCNjBFQ0M1QzAuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNiTkoyS2pyUGlqZWF0YlB3RnJRMXlpUGVxMlJDdzZ2OVRFaW50V2dITkJMLzAv MzEzOTMwMmUzMTMyMzQyZTMyMzQzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzczMDM4MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAb589DANBgkqhkiG9w0BAQsFAAOCAQEAN+3O VtO5iXQfF5z5RFEbaqOoFqpven+nzy2iYgK8JLBYP8iokY5iPP9SEa/39yPPS1nq 6Fa6cg/NYc7Mekp3mJ4zsE9uJ2CiDLUVyZqA4n3OLgEWl1JaFhIk3nwPcvfHMoMQ d9OZYRjTJ/vBvHmyTrBiq/QNyRF8PPoRkvKqpGKD0p6MJPo4wdo2Lexrk4QQM2S6 o3/xL+OUDwawak9O/2iCSZivfLdEg171nhq1gl6iqsHERdlJjnnWMC095LzznPUQ E131GKmQ3P32P5mvz3SO6YJENoKtM5QkLbyK98RYqYwvbqtEva1jevvCbBbGJtRR rCSY9oxfnn8Yt7S0ww== -----END CERTIFICATE-----Generated at Sun Feb 16 21:33:55 2025 by rpki-client