$ rpki-client -vvf rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/3138312e3233322e3230302e302f32322d3234203d3e20323731343839.roa File: 3138312e3233322e3230302e302f32322d3234203d3e20323731343839.roa (raw, json) Hash identifier: 4cOfXyVHYsJDDR76i7+rDrxZZ+9x01vqjfGMjszNxxs= Subject key identifier: 32:06:0F:5D:A3:E9:E1:36:0B:B6:5B:A2:46:C4:56:10:AA:2D:D1:63 Certificate issuer: /CN=DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F Certificate serial: 3C825747C6BA497682049EF50BD4F0FFBCFC2B77 Authority key identifier: DC:D7:A1:AD:D4:DE:BD:23:B1:C5:FA:D5:E6:0B:C2:69:D2:AD:10:0F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.cer Subject info access: rsync://rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/3138312e3233322e3230302e302f32322d3234203d3e20323731343839.roa Signing time: Wed 05 Mar 2025 19:00:00 +0000 ROA not before: Wed 05 Mar 2025 18:55:00 +0000 ROA not after: Wed 04 Mar 2026 19:00:00 +0000 asID: 271489 IP address blocks: 181.232.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.crl rsync://rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 11:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:82:57:47:c6:ba:49:76:82:04:9e:f5:0b:d4:f0:ff:bc:fc:2b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F Validity Not Before: Mar 5 18:55:00 2025 GMT Not After : Mar 4 19:00:00 2026 GMT Subject: CN=32060F5DA3E9E1360BB65BA246C45610AA2DD163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5b:1f:c1:92:ff:cb:f0:aa:7f:ed:ca:56:15: fe:38:ae:d3:8f:7a:25:ea:57:4b:69:17:39:4e:23: e2:b1:84:f5:aa:86:60:8e:a2:56:55:30:46:4d:5d: 72:77:e7:98:06:2b:4d:ac:e8:f0:87:b3:39:68:97: 1b:69:88:79:f6:0e:04:0c:2a:09:1c:f8:41:b9:a4: 76:3f:27:cb:bc:7a:b0:f5:69:f4:0d:85:2f:c3:30: 92:db:f4:87:44:32:48:a7:1b:3c:a0:52:39:a3:07: e9:85:69:13:62:a7:4e:20:7e:fa:4a:9d:ef:58:23: a9:de:fa:0d:8c:5b:dc:f8:34:dc:8d:3e:e0:2c:61: 49:21:39:c9:44:4d:ff:1e:7e:20:56:7c:6a:20:7d: 3f:f1:39:e7:49:20:e0:67:2c:f6:a4:65:51:b2:d4: 42:4f:14:44:5c:3e:69:7a:c1:4d:8d:67:83:4a:5c: 9b:86:45:7a:08:6d:d5:aa:3f:22:1d:9a:d0:b5:45: e1:7d:20:34:01:73:e6:b9:c4:3b:45:b3:4a:d9:ac: 64:b0:3f:87:62:4e:67:ea:1f:e7:8e:14:34:30:fe: 41:2f:d6:e5:56:5e:d2:c2:77:3d:25:42:7a:e6:07: bc:70:d0:6a:8e:8d:d8:57:e9:b6:66:33:66:1d:57: 20:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:06:0F:5D:A3:E9:E1:36:0B:B6:5B:A2:46:C4:56:10:AA:2D:D1:63 X509v3 Authority Key Identifier: keyid:DC:D7:A1:AD:D4:DE:BD:23:B1:C5:FA:D5:E6:0B:C2:69:D2:AD:10:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DCD7A1ADD4DEBD23B1C5FAD5E60BC269D2AD100F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3sHkDgcrhfqA53N7opJ2rnPF5cPFuByv223i6QgxrnvZ/1/3138312e3233322e3230302e302f32322d3234203d3e20323731343839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 181.232.200.0/22 Signature Algorithm: sha256WithRSAEncryption a9:c6:2b:0e:3d:31:70:e4:6a:60:0a:8e:75:8e:b4:82:a1:69: 9e:d9:14:f9:e8:34:aa:fe:0d:d2:08:79:b9:8a:48:db:79:ef: b6:d3:e4:b6:5d:af:a4:2f:62:ef:ee:e4:ec:65:e7:9a:20:c9: 38:97:9e:11:43:b0:be:65:8b:6b:de:de:77:ab:f7:cc:0e:14: 0c:cc:cc:46:53:dc:4c:d1:cc:98:cd:25:6a:5f:cc:ae:30:4f: 75:6a:1f:18:65:12:81:eb:55:e9:d1:79:57:fe:a5:96:f0:62: 30:f5:83:d9:f4:78:d3:ed:78:6a:64:a5:e3:14:a9:ca:a0:b9: f3:cf:28:77:bf:c4:c3:42:aa:99:3d:71:f9:1f:92:5c:db:33: 65:b4:b7:93:dc:f3:97:54:3f:09:d9:2d:c1:31:1a:2e:41:b7: f2:db:9c:f7:7e:da:06:5f:d6:80:6e:f5:ff:a4:92:e8:8e:21: 44:88:80:15:36:d3:1b:3e:0d:59:94:0b:ea:41:a2:1c:fa:e2: 34:96:3c:95:94:cc:60:a8:a0:6f:90:34:d6:cb:e5:93:40:63: cb:ab:73:ed:00:93:b9:99:8a:9a:25:cf:23:fe:ee:c5:b2:56: e1:91:bd:d2:87:78:1c:44:fa:27:f2:73:dc:f6:12:16:7a:a3: 4a:4d:eb:82 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUPIJXR8a6SXaCBJ71C9Tw/7z8K3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENEN0ExQURENERFQkQyM0IxQzVGQUQ1RTYwQkMyNjlE MkFEMTAwRjAeFw0yNTAzMDUxODU1MDBaFw0yNjAzMDQxOTAwMDBaMDMxMTAvBgNV BAMTKDMyMDYwRjVEQTNFOUUxMzYwQkI2NUJBMjQ2QzQ1NjEwQUEyREQxNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWWx/Bkv/L8Kp/7cpWFf44rtOP eiXqV0tpFzlOI+KxhPWqhmCOolZVMEZNXXJ355gGK02s6PCHszlolxtpiHn2DgQM Kgkc+EG5pHY/J8u8erD1afQNhS/DMJLb9IdEMkinGzygUjmjB+mFaRNip04gfvpK ne9YI6ne+g2MW9z4NNyNPuAsYUkhOclETf8efiBWfGogfT/xOedJIOBnLPakZVGy 1EJPFERcPml6wU2NZ4NKXJuGRXoIbdWqPyIdmtC1ReF9IDQBc+a5xDtFs0rZrGSw P4diTmfqH+eOFDQw/kEv1uVWXtLCdz0lQnrmB7xw0GqOjdhX6bZmM2YdVyAfAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUMgYPXaPp4TYLtluiRsRWEKot0WMwHwYDVR0j BBgwFoAU3NehrdTevSOxxfrV5gvCadKtEA8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM3NIa0RnY3JoZnFBNTNON29wSjJyblBGNWNQRnVCeXYyMjNpNlFneHJu dlovMS9EQ0Q3QTFBREQ0REVCRDIzQjFDNUZBRDVFNjBCQzI2OUQyQUQxMDBGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RDRDdBMUFERDRERUJEMjNC MUM1RkFENUU2MEJDMjY5RDJBRDEwMEYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNzSGtEZ2NyaGZxQTUzTjdvcEoycm5QRjVjUEZ1Qnl2MjIzaTZRZ3hybnZaLzEv MzEzODMxMmUzMjMzMzIyZTMyMzAzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzczMTM0MzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEArXoyDANBgkqhkiG9w0BAQsFAAOCAQEAqcYr Dj0xcORqYAqOdY60gqFpntkU+eg0qv4N0gh5uYpI23nvttPktl2vpC9i7+7k7GXn miDJOJeeEUOwvmWLa97ed6v3zA4UDMzMRlPcTNHMmM0lal/MrjBPdWofGGUSgetV 6dF5V/6llvBiMPWD2fR40+14amSl4xSpyqC5888od7/Ew0KqmT1x+R+SXNszZbS3 k9zzl1Q/CdktwTEaLkG38tuc937aBl/WgG71/6SS6I4hRIiAFTbTGz4NWZQL6kGi HPriNJY8lZTMYKigb5A01svlk0Bjy6tz7QCTuZmKmiXPI/7uxbJW4ZG90od4HET6 J/Jz3PYSFnqjSk3rgg== -----END CERTIFICATE-----Generated at Mon Apr 7 04:31:14 2025 by rpki-client