$ rpki-client -vvf rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/3136302e31392e3234342e302f32322d3332203d3e20323636313638.roa File: 3136302e31392e3234342e302f32322d3332203d3e20323636313638.roa (raw, json) Hash identifier: +xOfTPOyg3oZBW1SRivjN46hBESQU5WWrM4vrLYmFGA= Subject key identifier: 6F:66:38:8E:52:63:5D:D5:96:12:CC:6E:D8:A1:92:83:50:8C:2B:B4 Certificate issuer: /CN=085A4379FC02066399A7BABE986F2B930711F0E0 Certificate serial: 6A69BDA2680539E98DB30FB0CF9BEAD7F3BFC71E Authority key identifier: 08:5A:43:79:FC:02:06:63:99:A7:BA:BE:98:6F:2B:93:07:11:F0:E0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/085A4379FC02066399A7BABE986F2B930711F0E0.cer Subject info access: rsync://rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/3136302e31392e3234342e302f32322d3332203d3e20323636313638.roa Signing time: Fri 21 Feb 2025 14:55:13 +0000 ROA not before: Fri 21 Feb 2025 14:50:13 +0000 ROA not after: Fri 20 Feb 2026 14:55:13 +0000 asID: 266168 IP address blocks: 160.19.244.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/085A4379FC02066399A7BABE986F2B930711F0E0.crl rsync://rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/085A4379FC02066399A7BABE986F2B930711F0E0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/085A4379FC02066399A7BABE986F2B930711F0E0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 21:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:69:bd:a2:68:05:39:e9:8d:b3:0f:b0:cf:9b:ea:d7:f3:bf:c7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=085A4379FC02066399A7BABE986F2B930711F0E0 Validity Not Before: Feb 21 14:50:13 2025 GMT Not After : Feb 20 14:55:13 2026 GMT Subject: CN=6F66388E52635DD59612CC6ED8A19283508C2BB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d1:89:88:92:f2:05:a2:18:b9:92:aa:b2:82: 31:01:10:9b:b9:d4:f2:37:66:ec:c2:9e:72:34:03: 01:2c:5c:73:1b:74:e0:48:15:04:44:64:a3:fe:83: fc:62:b1:d8:88:b0:c0:1d:79:2d:5c:50:d6:bb:6b: d3:6e:a3:7c:64:f8:8f:33:4d:fa:b3:13:a9:5b:5f: 5e:29:8f:b0:7b:42:41:7c:b9:6f:25:77:a6:cf:17: cf:83:9d:b7:ce:2b:66:46:99:5c:1d:75:00:7c:8d: 39:4b:a9:0e:cc:b1:3f:61:f4:de:aa:ac:e1:32:d2: 16:f1:a3:45:b4:3c:3f:7a:71:a7:4c:8f:7e:c2:ff: 7e:69:88:e7:8e:3b:2e:2a:99:cb:82:dd:52:97:a4: 6e:5d:74:60:56:ee:3a:9d:ae:e0:c8:54:c2:03:3f: 8e:2f:98:42:f8:13:e9:7d:d9:52:ea:6a:d7:e7:d2: 97:c7:de:51:d6:db:68:de:35:f0:c0:96:7d:c4:fc: 80:89:c6:58:4b:3d:ee:5e:a5:14:1a:9c:bb:53:a3: f1:57:ad:8e:15:f2:63:14:55:7e:3b:d0:19:67:97: a1:6f:cb:af:13:72:48:36:4c:a4:1a:5b:a3:df:22: 01:78:80:b0:18:2e:b9:7d:fd:8a:ca:3b:d3:39:9b: 86:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:66:38:8E:52:63:5D:D5:96:12:CC:6E:D8:A1:92:83:50:8C:2B:B4 X509v3 Authority Key Identifier: keyid:08:5A:43:79:FC:02:06:63:99:A7:BA:BE:98:6F:2B:93:07:11:F0:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/085A4379FC02066399A7BABE986F2B930711F0E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/085A4379FC02066399A7BABE986F2B930711F0E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3hZndVs1SVsAepdyPw2uiEDXQWS5M6z4yeYRx6FZg4WS/0/3136302e31392e3234342e302f32322d3332203d3e20323636313638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.244.0/22 Signature Algorithm: sha256WithRSAEncryption 19:42:04:30:36:54:36:b1:4e:51:2b:12:2f:58:aa:8a:ab:a2: 68:2f:77:81:52:db:9f:a2:03:4e:e0:3a:97:98:f8:ec:b0:12: aa:ea:e1:58:55:ac:ef:f9:39:ef:72:0d:16:22:f5:6b:18:20: 6e:c0:56:ae:7e:d7:f8:06:ec:f3:91:6c:76:54:04:79:ac:2e: 3e:35:70:2f:ae:94:11:20:2f:52:7b:31:4d:fd:2c:25:aa:98: 90:0f:2b:53:18:f7:57:aa:9a:cc:3f:63:55:b7:bf:41:32:50: 9a:4f:2e:e8:d7:22:a6:a2:b3:11:4c:23:d0:57:72:43:13:b7: 5b:14:6c:1a:99:a2:d8:5b:4f:77:c0:96:76:8f:f5:b9:a4:09: 12:9b:0a:f0:d1:5c:fa:66:ba:bf:21:4e:52:cf:b8:09:6f:95: 5d:c5:12:c6:38:08:76:22:c3:e1:46:00:28:da:9d:4a:33:20: f2:e6:4f:33:55:19:c2:e0:d7:60:51:9c:5a:b2:c0:6d:16:b2: 7e:20:7f:84:d6:93:b5:6e:86:d0:2d:52:d6:6c:89:0c:01:7c: b5:a8:35:84:99:0b:c5:59:ed:74:b9:d4:26:6b:71:66:fa:6c: e9:ab:78:ad:fb:4c:2d:af:26:cc:61:f0:7f:a3:14:bc:b1:3e: 0c:2a:47:08 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUamm9omgFOemNsw+wz5vq1/O/xx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg1QTQzNzlGQzAyMDY2Mzk5QTdCQUJFOTg2RjJCOTMw NzExRjBFMDAeFw0yNTAyMjExNDUwMTNaFw0yNjAyMjAxNDU1MTNaMDMxMTAvBgNV BAMTKDZGNjYzODhFNTI2MzVERDU5NjEyQ0M2RUQ4QTE5MjgzNTA4QzJCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV0YmIkvIFohi5kqqygjEBEJu5 1PI3ZuzCnnI0AwEsXHMbdOBIFQREZKP+g/xisdiIsMAdeS1cUNa7a9Nuo3xk+I8z TfqzE6lbX14pj7B7QkF8uW8ld6bPF8+DnbfOK2ZGmVwddQB8jTlLqQ7MsT9h9N6q rOEy0hbxo0W0PD96cadMj37C/35piOeOOy4qmcuC3VKXpG5ddGBW7jqdruDIVMID P44vmEL4E+l92VLqatfn0pfH3lHW22jeNfDAln3E/ICJxlhLPe5epRQanLtTo/FX rY4V8mMUVX470Blnl6Fvy68Tckg2TKQaW6PfIgF4gLAYLrl9/YrKO9M5m4b9AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUb2Y4jlJjXdWWEsxu2KGSg1CMK7QwHwYDVR0j BBgwFoAUCFpDefwCBmOZp7q+mG8rkwcR8OAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM2habmRWczFTVnNBZXBkeVB3MnVpRURYUVdTNU02ejR5ZVlSeDZGWmc0 V1MvMC8wODVBNDM3OUZDMDIwNjYzOTlBN0JBQkU5ODZGMkI5MzA3MTFGMEUwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzA4NUE0Mzc5RkMwMjA2NjM5 OUE3QkFCRTk4NkYyQjkzMDcxMUYwRTAuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNoWm5kVnMxU1ZzQWVwZHlQdzJ1aUVEWFFXUzVNNno0eWVZUng2RlpnNFdTLzAv MzEzNjMwMmUzMTM5MmUzMjM0MzQyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2 MzYzMTM2Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKgE/QwDQYJKoZIhvcNAQELBQADggEBABlCBDA2 VDaxTlErEi9Yqoqromgvd4FS25+iA07gOpeY+OywEqrq4VhVrO/5Oe9yDRYi9WsY IG7AVq5+1/gG7PORbHZUBHmsLj41cC+ulBEgL1J7MU39LCWqmJAPK1MY91eqmsw/ Y1W3v0EyUJpPLujXIqaisxFMI9BXckMTt1sUbBqZothbT3fAlnaP9bmkCRKbCvDR XPpmur8hTlLPuAlvlV3FEsY4CHYiw+FGACjanUozIPLmTzNVGcLg12BRnFqywG0W sn4gf4TWk7VuhtAtUtZsiQwBfLWoNYSZC8VZ7XS51CZrcWb6bOmreK37TC2vJsxh 8H+jFLyxPgwqRwg= -----END CERTIFICATE-----Generated at Mon Apr 7 09:47:19 2025 by rpki-client