$ rpki-client -vvf rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/34352e3136342e3130302e302f32322d3332203d3e20323638363639.roa File: 34352e3136342e3130302e302f32322d3332203d3e20323638363639.roa (raw, json) Hash identifier: T1JS+zjLvDOM7tMmdsFJo6IyPZ3zpEOwaFgKcQQNzBE= Subject key identifier: 42:09:01:9F:CF:4B:D8:D2:CC:B3:2E:60:E8:17:25:46:9C:07:8D:81 Certificate issuer: /CN=B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F Certificate serial: 1F8FDC248FD5408C2295D30EAD14B804F2AF1864 Authority key identifier: B0:1C:0A:2D:1B:A3:62:A7:84:73:A2:F4:FC:F2:33:7F:67:AC:B5:8F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.cer Subject info access: rsync://rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/34352e3136342e3130302e302f32322d3332203d3e20323638363639.roa Signing time: Fri 24 Jan 2025 13:42:45 +0000 ROA not before: Fri 24 Jan 2025 13:37:45 +0000 ROA not after: Fri 23 Jan 2026 13:42:45 +0000 asID: 268669 IP address blocks: 45.164.100.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.crl rsync://rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 07:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:8f:dc:24:8f:d5:40:8c:22:95:d3:0e:ad:14:b8:04:f2:af:18:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F Validity Not Before: Jan 24 13:37:45 2025 GMT Not After : Jan 23 13:42:45 2026 GMT Subject: CN=4209019FCF4BD8D2CCB32E60E81725469C078D81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:08:f6:95:f0:1f:e5:d9:17:7e:72:ec:2f: 90:1a:30:cf:c4:0a:f5:59:08:f2:ca:b5:9d:cf:06: ab:60:54:ed:2f:7e:84:d3:f4:04:be:03:5f:d1:b9: cd:b9:68:0c:9c:98:88:b3:e0:92:f1:21:c7:fd:e5: 63:d6:35:9a:2e:7d:03:6b:6c:0b:3f:4b:70:6a:30: d2:2c:2c:51:06:89:c7:48:5d:ea:dd:b5:24:18:13: 05:f6:0d:f7:5d:cc:a3:93:f2:ef:00:98:1e:10:c5: 8e:20:b0:ed:1d:63:d3:17:30:e1:20:6f:ab:60:c2: 19:57:1d:bc:26:60:8c:82:9a:43:13:68:dc:ec:67: 6c:e7:4f:71:39:2c:fe:b5:a3:88:96:13:ea:a1:33: f7:8e:9c:de:a5:87:0f:37:fd:1a:c3:65:57:d3:a7: 0c:b6:b2:80:b8:7c:41:95:c3:94:41:fd:17:d6:47: 73:66:76:19:5c:ec:0f:f2:d6:e1:69:18:b4:36:3b: be:f8:ef:49:5c:0a:43:58:9e:01:cc:8b:48:19:0e: 25:30:5c:62:69:7c:1a:04:74:cb:62:af:81:3d:8a: bd:df:52:22:97:cf:62:36:51:30:6f:f8:0c:22:91: be:b3:56:63:32:b5:81:79:b8:e6:0c:78:29:48:da: b5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:09:01:9F:CF:4B:D8:D2:CC:B3:2E:60:E8:17:25:46:9C:07:8D:81 X509v3 Authority Key Identifier: keyid:B0:1C:0A:2D:1B:A3:62:A7:84:73:A2:F4:FC:F2:33:7F:67:AC:B5:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/B01C0A2D1BA362A78473A2F4FCF2337F67ACB58F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3h7hWFrjYGL9RL7gqkksZFh2ZDFRuhpqZ1U6MVNyVsuC/0/34352e3136342e3130302e302f32322d3332203d3e20323638363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.164.100.0/22 Signature Algorithm: sha256WithRSAEncryption 98:91:83:19:41:ad:9e:1d:16:3e:93:d4:9c:19:d1:d1:7f:fd: bb:b6:df:ac:9f:46:92:b3:aa:3e:72:50:16:2a:a6:20:16:b1: cb:69:3b:b7:d8:b6:fa:e6:5d:da:aa:f7:85:d5:91:35:98:c6: fc:de:b7:c0:d0:80:fd:8a:2f:07:4d:63:58:f5:1d:c9:85:92: 0f:6f:fe:24:a2:83:7c:d0:93:7b:9d:61:8c:55:82:52:00:aa: 0f:03:84:9c:43:0a:c2:df:f6:b3:d0:61:74:d1:1e:99:0b:b3: ad:11:40:5f:98:82:fe:06:a9:5b:a1:30:70:8c:da:3c:d0:d5: f2:fd:8c:51:62:50:31:d2:90:4a:7e:89:3e:c0:0b:94:f0:e2: 60:84:20:c8:36:6b:cd:06:30:96:3e:22:b2:2b:57:e7:d7:a7: 0c:2d:ff:01:f8:e5:68:75:5b:24:fc:da:1d:00:8a:1f:d5:86: c7:02:01:32:0d:be:1d:58:e7:9a:5e:de:e6:5e:19:42:d1:85: 96:dd:e9:38:72:0e:d2:73:a6:f2:97:a1:f5:8e:01:a9:4e:7f: 64:38:14:36:ca:ae:cc:10:ae:6b:9a:d8:2b:16:fb:d7:1d:61: 3e:ed:24:5f:08:5e:91:a3:e9:fc:13:34:c3:5e:5c:5f:e8:df: c7:39:4c:75 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUH4/cJI/VQIwildMOrRS4BPKvGGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjAxQzBBMkQxQkEzNjJBNzg0NzNBMkY0RkNGMjMzN0Y2 N0FDQjU4RjAeFw0yNTAxMjQxMzM3NDVaFw0yNjAxMjMxMzQyNDVaMDMxMTAvBgNV BAMTKDQyMDkwMTlGQ0Y0QkQ4RDJDQ0IzMkU2MEU4MTcyNTQ2OUMwNzhEODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YAj2lfAf5dkXfnLsL5AaMM/E CvVZCPLKtZ3PBqtgVO0vfoTT9AS+A1/Ruc25aAycmIiz4JLxIcf95WPWNZoufQNr bAs/S3BqMNIsLFEGicdIXerdtSQYEwX2DfddzKOT8u8AmB4QxY4gsO0dY9MXMOEg b6tgwhlXHbwmYIyCmkMTaNzsZ2znT3E5LP61o4iWE+qhM/eOnN6lhw83/RrDZVfT pwy2soC4fEGVw5RB/RfWR3Nmdhlc7A/y1uFpGLQ2O77470lcCkNYngHMi0gZDiUw XGJpfBoEdMtir4E9ir3fUiKXz2I2UTBv+Awikb6zVmMytYF5uOYMeClI2rVjAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUQgkBn89L2NLMsy5g6BclRpwHjYEwHwYDVR0j BBgwFoAUsBwKLRujYqeEc6L0/PIzf2estY8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM2g3aFdGcmpZR0w5Ukw3Z3Fra3NaRmgyWkRGUnVocHFaMVU2TVZOeVZz dUMvMC9CMDFDMEEyRDFCQTM2MkE3ODQ3M0EyRjRGQ0YyMzM3RjY3QUNCNThGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0IwMUMwQTJEMUJBMzYyQTc4 NDczQTJGNEZDRjIzMzdGNjdBQ0I1OEYuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNoN2hXRnJqWUdMOVJMN2dxa2tzWkZoMlpERlJ1aHBxWjFVNk1WTnlWc3VDLzAv MzQzNTJlMzEzNjM0MmUzMTMwMzAyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2 MzgzNjM2Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAItpGQwDQYJKoZIhvcNAQELBQADggEBAJiRgxlB rZ4dFj6T1JwZ0dF//bu236yfRpKzqj5yUBYqpiAWsctpO7fYtvrmXdqq94XVkTWY xvzet8DQgP2KLwdNY1j1HcmFkg9v/iSig3zQk3udYYxVglIAqg8DhJxDCsLf9rPQ YXTRHpkLs60RQF+Ygv4GqVuhMHCM2jzQ1fL9jFFiUDHSkEp+iT7AC5Tw4mCEIMg2 a80GMJY+IrIrV+fXpwwt/wH45Wh1WyT82h0Aih/VhscCATINvh1Y55pe3uZeGULR hZbd6ThyDtJzpvKXofWOAalOf2Q4FDbKrswQrmua2CsW+9cdYT7tJF8IXpGj6fwT NMNeXF/o38c5THU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:42 2025 by rpki-client