$ rpki-client -vvf rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa File: 3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa (raw, json) Hash identifier: Xnz3apn38ZPFROVlwP9QbpqchK0malnw4gHttLds+/A= Subject key identifier: 8C:B0:9C:A8:F5:C2:B7:CB:B4:BD:4A:43:9B:61:F2:9D:5E:3D:7D:09 Certificate issuer: /CN=2A9F90A6C0E7A9D2C5E1C1688155365346260685 Certificate serial: 4E5D9B4907888CB6A3AE849CC53A3F438766A4B6 Authority key identifier: 2A:9F:90:A6:C0:E7:A9:D2:C5:E1:C1:68:81:55:36:53:46:26:06:85 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer Subject info access: rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa Signing time: Wed 03 Apr 2024 22:52:40 +0000 ROA not before: Wed 03 Apr 2024 22:47:40 +0000 ROA not after: Wed 02 Apr 2025 22:52:40 +0000 asID: 270891 IP address blocks: 138.121.40.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.crl rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 23 Nov 2024 14:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5d:9b:49:07:88:8c:b6:a3:ae:84:9c:c5:3a:3f:43:87:66:a4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A9F90A6C0E7A9D2C5E1C1688155365346260685 Validity Not Before: Apr 3 22:47:40 2024 GMT Not After : Apr 2 22:52:40 2025 GMT Subject: CN=8CB09CA8F5C2B7CBB4BD4A439B61F29D5E3D7D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:eb:0c:00:56:fc:30:75:79:b5:4a:5b:b3: 0a:67:e9:3c:bd:58:ca:3c:4b:eb:e3:e5:3d:f8:36: 92:06:62:65:1b:71:bf:65:dd:d5:6f:87:f1:e7:49: cc:27:8a:c3:18:9c:c9:22:b9:45:e4:24:02:8e:8e: e5:41:7f:6a:71:f3:e4:af:7c:8c:6c:0d:c2:8f:bc: c5:72:2e:b7:c6:2e:4b:f7:72:6a:36:42:be:4f:bb: ed:eb:e7:05:70:63:6c:56:63:7a:17:39:01:59:cc: 3f:1c:e7:2f:82:b2:45:0d:1a:20:cd:31:05:76:e8: 91:cb:5d:83:f1:a3:f4:ad:03:de:43:1d:7f:a5:63: 8f:9c:fc:dc:fa:c6:7d:79:1d:01:38:8c:06:75:55: 5b:58:4d:a4:e3:3f:f0:87:c8:a7:2f:92:dd:6c:4a: fd:b5:0c:99:77:ad:42:18:b2:0f:3f:82:76:90:47: cc:02:fe:cd:92:c4:2a:13:27:62:44:e0:12:99:de: 86:9a:2d:c7:d0:17:4e:67:8f:b8:30:04:6d:e6:84: 2e:f0:6a:a1:40:70:bc:f8:0d:84:1a:df:ff:ee:7a: 2a:85:0c:8d:15:01:7e:18:f0:da:91:e3:e8:bd:6c: 46:e7:20:ac:cc:84:03:db:8a:91:9b:98:8e:2b:30: c0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B0:9C:A8:F5:C2:B7:CB:B4:BD:4A:43:9B:61:F2:9D:5E:3D:7D:09 X509v3 Authority Key Identifier: keyid:2A:9F:90:A6:C0:E7:A9:D2:C5:E1:C1:68:81:55:36:53:46:26:06:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.40.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:72:f6:ec:27:ce:0a:d6:91:3b:a5:b7:20:9e:2d:17:bb:31: 48:35:30:51:b5:e3:23:e3:7d:77:23:61:b1:23:80:02:d3:ba: 1f:02:38:d9:ce:cf:62:52:4b:f6:6a:9e:85:f7:08:08:ec:1d: 67:43:0b:e1:3e:f0:64:95:8a:a7:50:31:1d:33:b5:52:97:23: 35:46:32:82:bc:43:19:05:78:39:67:a6:a6:2e:16:d5:61:fa: 16:76:ee:3a:cf:c8:6e:41:20:05:9c:6a:a4:84:a5:54:a1:b2: 58:65:50:f4:0b:7e:74:34:4d:e9:e4:19:84:77:04:4d:d4:6b: 53:4b:08:d2:be:eb:6b:c5:b0:91:b2:b8:2f:3d:04:27:26:a1: 74:3d:4d:19:47:69:74:6c:08:41:06:02:09:43:13:0e:35:23: 22:e1:25:6e:ff:3a:9a:45:51:b3:a0:85:7f:17:80:58:56:2b: a2:ee:f1:1e:c7:d1:55:73:55:0d:32:5a:c9:9a:1a:4a:51:16: 04:1c:d5:78:69:73:eb:30:50:d5:8f:32:87:cf:33:8c:28:04: db:0b:91:b4:a8:4f:cc:04:f4:1a:f6:96:0b:50:dd:38:d2:2c: ca:0c:3e:07:bd:ad:e1:2d:ab:1f:ed:d0:46:67:f7:7c:f5:50: 4b:e5:b3:12 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUTl2bSQeIjLajroScxTo/Q4dmpLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE5RjkwQTZDMEU3QTlEMkM1RTFDMTY4ODE1NTM2NTM0 NjI2MDY4NTAeFw0yNDA0MDMyMjQ3NDBaFw0yNTA0MDIyMjUyNDBaMDMxMTAvBgNV BAMTKDhDQjA5Q0E4RjVDMkI3Q0JCNEJENEE0MzlCNjFGMjlENUUzRDdEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAesMAFb8MHV5tUpbswpn6Ty9 WMo8S+vj5T34NpIGYmUbcb9l3dVvh/HnScwnisMYnMkiuUXkJAKOjuVBf2px8+Sv fIxsDcKPvMVyLrfGLkv3cmo2Qr5Pu+3r5wVwY2xWY3oXOQFZzD8c5y+CskUNGiDN MQV26JHLXYPxo/StA95DHX+lY4+c/Nz6xn15HQE4jAZ1VVtYTaTjP/CHyKcvkt1s Sv21DJl3rUIYsg8/gnaQR8wC/s2SxCoTJ2JE4BKZ3oaaLcfQF05nj7gwBG3mhC7w aqFAcLz4DYQa3//ueiqFDI0VAX4Y8NqR4+i9bEbnIKzMhAPbipGbmI4rMMC7AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUjLCcqPXCt8u0vUpDm2HynV49fQkwHwYDVR0j BBgwFoAUKp+QpsDnqdLF4cFogVU2U0YmBoUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNENmbWN2WTRXcU52enF5cWZUckJ0SkhwZFVGOUtzM2hrRzF0OWZiQktr VnYvMS8yQTlGOTBBNkMwRTdBOUQyQzVFMUMxNjg4MTU1MzY1MzQ2MjYwNjg1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBOUY5MEE2QzBFN0E5RDJD NUUxQzE2ODgxNTUzNjUzNDYyNjA2ODUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRDZm1jdlk0V3FOdnpxeXFmVHJCdEpIcGRVRjlLczNoa0cxdDlmYkJLa1Z2LzEv MzEzMzM4MmUzMTMyMzEyZTM0MzAyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM3 MzAzODM5MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKeSgwDQYJKoZIhvcNAQELBQADggEBAD5y9uwn zgrWkTultyCeLRe7MUg1MFG14yPjfXcjYbEjgALTuh8CONnOz2JSS/ZqnoX3CAjs HWdDC+E+8GSViqdQMR0ztVKXIzVGMoK8QxkFeDlnpqYuFtVh+hZ27jrPyG5BIAWc aqSEpVShslhlUPQLfnQ0TenkGYR3BE3Ua1NLCNK+62vFsJGyuC89BCcmoXQ9TRlH aXRsCEEGAglDEw41IyLhJW7/OppFUbOghX8XgFhWK6Lu8R7H0VVzVQ0yWsmaGkpR FgQc1Xhpc+swUNWPMofPM4woBNsLkbSoT8wE9Br2lgtQ3TjSLMoMPge9reEtqx/t 0EZn93z1UEvlsxI= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:50 2024 by rpki-client on console-fra.rpki-client.org