$ rpki-client -vvf rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa File: 3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa (raw, json) Hash identifier: 0TP0X4N5B/kB0sXJtzuafX2ea3uKpmvm4dgyq0U0O6A= Subject key identifier: C6:B3:4E:73:9E:84:9A:77:D2:53:B9:61:74:2B:1C:34:A1:F5:C4:D6 Certificate issuer: /CN=2A9F90A6C0E7A9D2C5E1C1688155365346260685 Certificate serial: 54E6AB527A2112FC8D4698CEEBAAF016247A41C5 Authority key identifier: 2A:9F:90:A6:C0:E7:A9:D2:C5:E1:C1:68:81:55:36:53:46:26:06:85 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer Subject info access: rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa Signing time: Wed 05 Mar 2025 23:36:14 +0000 ROA not before: Wed 05 Mar 2025 23:31:14 +0000 ROA not after: Wed 04 Mar 2026 23:36:14 +0000 asID: 270891 IP address blocks: 138.121.40.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.crl rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 22:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:ab:52:7a:21:12:fc:8d:46:98:ce:eb:aa:f0:16:24:7a:41:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A9F90A6C0E7A9D2C5E1C1688155365346260685 Validity Not Before: Mar 5 23:31:14 2025 GMT Not After : Mar 4 23:36:14 2026 GMT Subject: CN=C6B34E739E849A77D253B961742B1C34A1F5C4D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:66:24:59:b1:fd:b3:a0:ee:81:b3:02:b6:a1: cd:4d:93:48:c0:06:d4:2a:37:4b:4d:7e:1c:a0:51: 92:1f:23:45:c5:3b:2b:5b:50:2d:53:cb:07:de:78: bf:4a:16:1b:93:51:ef:14:2d:9e:62:50:32:f9:f0: 00:db:8e:26:54:17:32:18:76:18:13:61:be:09:15: c6:6a:5e:03:a6:4d:db:f5:9d:8c:08:ae:55:a1:85: eb:e7:08:14:6c:36:0f:0f:44:04:7b:2e:60:da:97: 72:0f:f6:38:a3:26:0d:b0:20:f6:a9:f1:79:e4:8b: 23:ce:1d:50:1a:5c:68:49:f9:1c:0e:66:62:88:6f: 48:73:fe:49:42:db:b4:c9:7d:43:98:64:12:0c:a9: f6:46:77:76:53:6a:22:b4:6c:6b:1b:30:6c:e8:25: 2a:b4:2b:c4:32:a8:36:b3:01:88:04:73:0e:96:64: 52:b1:cc:23:c3:aa:93:3f:63:9b:b0:c7:99:be:3a: 22:b0:77:4a:83:1b:1f:32:d0:97:7a:5e:4d:ed:a6: a0:42:9d:46:0e:ae:cc:d6:ff:36:ba:f8:6d:f0:d1: bf:06:7e:1c:57:17:58:77:e7:5f:5a:4c:3c:b8:26: 90:b1:3b:12:bb:fd:cf:44:00:6d:ae:c7:6b:b7:44: 3c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B3:4E:73:9E:84:9A:77:D2:53:B9:61:74:2B:1C:34:A1:F5:C4:D6 X509v3 Authority Key Identifier: keyid:2A:9F:90:A6:C0:E7:A9:D2:C5:E1:C1:68:81:55:36:53:46:26:06:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2A9F90A6C0E7A9D2C5E1C1688155365346260685.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4CfmcvY4WqNvzqyqfTrBtJHpdUF9Ks3hkG1t9fbBKkVv/1/3133382e3132312e34302e302f32322d3332203d3e20323730383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.40.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:e1:e0:cb:fd:16:d7:36:d8:01:82:87:cf:43:7b:36:32:47: 3a:d0:43:23:f1:65:69:ac:c4:c9:33:bd:ef:65:58:1c:b4:6e: 77:52:b2:46:8d:28:ed:20:31:8b:f4:4b:25:7b:ca:dc:0f:74: f8:7f:74:18:d0:7f:72:9c:09:c5:fe:8f:4c:29:d9:63:14:b9: 2a:98:ff:9d:1d:73:37:07:c0:b6:64:19:13:a9:8e:57:44:db: de:5e:78:45:ad:70:79:06:5d:f1:3a:d4:48:c7:65:04:15:11: 4b:99:26:c2:2d:d1:0e:de:76:a0:23:2e:86:5c:3a:b3:71:7a: 62:08:4e:a3:b2:a0:da:1c:d1:6f:ac:d5:ab:74:b1:09:c7:14: ac:56:09:c8:eb:a8:3e:b2:5d:74:c9:1b:4d:24:db:70:1b:ba: 26:c2:c7:19:95:51:4c:2b:31:78:8d:e9:b6:e2:03:a3:c5:de: 43:d3:1f:56:61:96:22:59:90:50:d6:89:a5:9a:6f:39:b0:da: d9:e4:cd:45:e7:85:c7:26:16:1a:d1:06:44:5a:d0:b4:15:7f: 48:ba:97:e7:ae:3b:78:69:e0:bf:d0:7b:d3:d4:60:75:cb:d0: 27:ae:a9:78:5c:b1:c1:20:77:d7:20:dc:c7:1d:b4:57:2f:2b: e0:5b:75:db -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUVOarUnohEvyNRpjO66rwFiR6QcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkE5RjkwQTZDMEU3QTlEMkM1RTFDMTY4ODE1NTM2NTM0 NjI2MDY4NTAeFw0yNTAzMDUyMzMxMTRaFw0yNjAzMDQyMzM2MTRaMDMxMTAvBgNV BAMTKEM2QjM0RTczOUU4NDlBNzdEMjUzQjk2MTc0MkIxQzM0QTFGNUM0RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ZiRZsf2zoO6BswK2oc1Nk0jA BtQqN0tNfhygUZIfI0XFOytbUC1TywfeeL9KFhuTUe8ULZ5iUDL58ADbjiZUFzIY dhgTYb4JFcZqXgOmTdv1nYwIrlWhhevnCBRsNg8PRAR7LmDal3IP9jijJg2wIPap 8XnkiyPOHVAaXGhJ+RwOZmKIb0hz/klC27TJfUOYZBIMqfZGd3ZTaiK0bGsbMGzo JSq0K8QyqDazAYgEcw6WZFKxzCPDqpM/Y5uwx5m+OiKwd0qDGx8y0Jd6Xk3tpqBC nUYOrszW/za6+G3w0b8GfhxXF1h3519aTDy4JpCxOxK7/c9EAG2ux2u3RDy9AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUxrNOc56EmnfSU7lhdCscNKH1xNYwHwYDVR0j BBgwFoAUKp+QpsDnqdLF4cFogVU2U0YmBoUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNENmbWN2WTRXcU52enF5cWZUckJ0SkhwZFVGOUtzM2hrRzF0OWZiQktr VnYvMS8yQTlGOTBBNkMwRTdBOUQyQzVFMUMxNjg4MTU1MzY1MzQ2MjYwNjg1LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJBOUY5MEE2QzBFN0E5RDJD NUUxQzE2ODgxNTUzNjUzNDYyNjA2ODUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRDZm1jdlk0V3FOdnpxeXFmVHJCdEpIcGRVRjlLczNoa0cxdDlmYkJLa1Z2LzEv MzEzMzM4MmUzMTMyMzEyZTM0MzAyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM3 MzAzODM5MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKKeSgwDQYJKoZIhvcNAQELBQADggEBAF/h4Mv9 Ftc22AGCh89DezYyRzrQQyPxZWmsxMkzve9lWBy0bndSskaNKO0gMYv0SyV7ytwP dPh/dBjQf3KcCcX+j0wp2WMUuSqY/50dczcHwLZkGROpjldE295eeEWtcHkGXfE6 1EjHZQQVEUuZJsIt0Q7edqAjLoZcOrNxemIITqOyoNoc0W+s1at0sQnHFKxWCcjr qD6yXXTJG00k23AbuibCxxmVUUwrMXiN6bbiA6PF3kPTH1ZhliJZkFDWiaWabzmw 2tnkzUXnhccmFhrRBkRa0LQVf0i6l+euO3hp4L/Qe9PUYHXL0CeuqXhcscEgd9cg 3McdtFcvK+Bbdds= -----END CERTIFICATE-----Generated at Tue Apr 22 13:51:27 2025 by rpki-client