$ rpki-client -vvf rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/3137302e3233392e3235322e302f32322d3234203d3e20323636333630.roa File: 3137302e3233392e3235322e302f32322d3234203d3e20323636333630.roa (raw, json) Hash identifier: N9HuU1W9ryFGU85A3ZfF+Ao4jsgW1hWTRMLA6XPYlk0= Subject key identifier: EE:13:F5:84:FC:E2:CC:86:C1:4B:16:2F:38:5F:FC:61:36:E8:9F:28 Certificate issuer: /CN=CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA Certificate serial: 4CE1198C56DEC63840B555105C2EA31D3F74CFB9 Authority key identifier: CA:1C:4B:54:62:22:EE:15:6A:0D:43:48:D2:AB:00:43:BD:AB:4B:EA Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.cer Subject info access: rsync://rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/3137302e3233392e3235322e302f32322d3234203d3e20323636333630.roa Signing time: Thu 06 Mar 2025 12:33:16 +0000 ROA not before: Thu 06 Mar 2025 12:28:16 +0000 ROA not after: Thu 05 Mar 2026 12:33:16 +0000 asID: 266360 IP address blocks: 170.239.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.crl rsync://rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 05:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e1:19:8c:56:de:c6:38:40:b5:55:10:5c:2e:a3:1d:3f:74:cf:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA Validity Not Before: Mar 6 12:28:16 2025 GMT Not After : Mar 5 12:33:16 2026 GMT Subject: CN=EE13F584FCE2CC86C14B162F385FFC6136E89F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:ea:b7:b8:73:7d:3d:06:db:71:22:78:b7: 55:1c:9c:02:5c:d5:9e:56:35:c0:32:a2:db:33:62: 40:31:cb:fb:e5:d5:0c:52:72:48:f2:86:bf:3a:15: dd:51:44:f4:93:e7:85:80:1c:cf:95:6b:a3:f6:44: 2d:54:51:2c:1e:6a:a2:6a:3a:0e:84:3d:1e:b4:35: 3b:47:cf:bc:d4:91:f2:da:ea:a1:3a:f4:ff:23:14: 8d:1f:1b:49:57:9c:1e:7f:0a:31:30:b0:3c:78:ae: 0c:e0:31:4b:2e:26:48:31:cf:ee:85:62:eb:cc:37: f8:d3:0b:d0:df:ad:8d:57:fd:a2:35:47:52:75:6d: f3:6c:c8:33:a7:74:92:a4:50:86:b9:64:7c:5c:9e: c5:3e:1d:74:25:75:25:d1:78:75:95:a1:c8:9a:ad: ac:cb:ee:96:ed:53:16:43:48:d2:8d:f0:ff:ad:d1: 4c:ec:7c:8b:e9:19:6e:40:46:3d:30:ec:bf:5d:3d: 1e:8f:e2:7c:0e:4b:dd:d9:6b:61:88:1a:a5:d0:fa: 4e:a6:df:75:79:1c:fd:60:31:7d:26:83:ca:c1:af: ab:18:9a:d7:14:c2:4a:ad:0f:ce:12:31:3a:6f:8d: 56:eb:e0:e7:17:4e:1f:67:35:71:09:1e:87:72:57: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:13:F5:84:FC:E2:CC:86:C1:4B:16:2F:38:5F:FC:61:36:E8:9F:28 X509v3 Authority Key Identifier: keyid:CA:1C:4B:54:62:22:EE:15:6A:0D:43:48:D2:AB:00:43:BD:AB:4B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CA1C4B546222EE156A0D4348D2AB0043BDAB4BEA.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4ENYxUXExuSywE8RaV6kDivJURVw2JapMnF1GSZApJSS/1/3137302e3233392e3235322e302f32322d3234203d3e20323636333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.239.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:2a:b8:16:ea:2b:f5:8c:9e:53:21:3a:6f:67:4a:e4:ff:c0: ef:fe:86:63:b5:21:d1:11:a6:23:2e:d8:2f:2d:ab:09:e8:b9: a4:08:20:49:61:da:a9:c9:d0:79:fa:e3:65:63:3f:82:c8:bd: e8:cf:dc:43:14:87:18:20:be:ef:2b:23:da:08:00:fe:18:79: d1:cc:2e:c9:80:ee:17:bf:bd:40:88:28:51:c9:e3:98:6b:4b: 53:b0:1c:18:0a:69:de:6e:89:6a:e3:f2:69:49:71:2b:d8:7f: 34:da:94:24:15:8d:bc:54:ac:be:d7:c6:14:51:9d:08:aa:63: 36:7c:3e:a8:5e:f0:ae:44:ca:69:e2:df:01:24:0f:c0:55:5f: e7:ca:b1:b4:7f:c2:14:8e:1b:00:3b:b5:43:1d:03:6b:c6:7b: 47:4c:8d:fc:80:c9:45:99:ff:bf:7a:54:be:59:af:68:a2:7c: 25:c1:99:c5:69:7c:4e:fb:a9:d7:4e:f7:32:12:b1:0a:fc:18: f5:26:03:36:18:1f:1d:62:b7:70:ee:d5:93:24:07:ca:8f:93: b9:d2:35:b3:0a:52:3d:3c:93:80:1f:20:4d:d0:93:5a:9b:4d: 40:dd:b9:fd:cc:09:4b:2a:af:b9:19:74:15:45:fc:9d:fb:91: 3b:05:8c:a8 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUTOEZjFbexjhAtVUQXC6jHT90z7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExQzRCNTQ2MjIyRUUxNTZBMEQ0MzQ4RDJBQjAwNDNC REFCNEJFQTAeFw0yNTAzMDYxMjI4MTZaFw0yNjAzMDUxMjMzMTZaMDMxMTAvBgNV BAMTKEVFMTNGNTg0RkNFMkNDODZDMTRCMTYyRjM4NUZGQzYxMzZFODlGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKI+q3uHN9PQbbcSJ4t1UcnAJc 1Z5WNcAyotszYkAxy/vl1QxSckjyhr86Fd1RRPST54WAHM+Va6P2RC1UUSweaqJq Og6EPR60NTtHz7zUkfLa6qE69P8jFI0fG0lXnB5/CjEwsDx4rgzgMUsuJkgxz+6F YuvMN/jTC9DfrY1X/aI1R1J1bfNsyDOndJKkUIa5ZHxcnsU+HXQldSXReHWVocia razL7pbtUxZDSNKN8P+t0UzsfIvpGW5ARj0w7L9dPR6P4nwOS93Za2GIGqXQ+k6m 33V5HP1gMX0mg8rBr6sYmtcUwkqtD84SMTpvjVbr4OcXTh9nNXEJHodyV1q5AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU7hP1hPzizIbBSxYvOF/8YTbonygwHwYDVR0j BBgwFoAUyhxLVGIi7hVqDUNI0qsAQ72rS+owDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNEVOWXhVWEV4dVN5d0U4UmFWNmtEaXZKVVJWdzJKYXBNbkYxR1NaQXBK U1MvMS9DQTFDNEI1NDYyMjJFRTE1NkEwRDQzNDhEMkFCMDA0M0JEQUI0QkVBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NBMUM0QjU0NjIyMkVFMTU2 QTBENDM0OEQyQUIwMDQzQkRBQjRCRUEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRFTll4VVhFeHVTeXdFOFJhVjZrRGl2SlVSVncySmFwTW5GMUdTWkFwSlNTLzEv MzEzNzMwMmUzMjMzMzkyZTMyMzUzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNjMzMzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrv/DANBgkqhkiG9w0BAQsFAAOCAQEACiq4 Fuor9YyeUyE6b2dK5P/A7/6GY7Uh0RGmIy7YLy2rCei5pAggSWHaqcnQefrjZWM/ gsi96M/cQxSHGCC+7ysj2ggA/hh50cwuyYDuF7+9QIgoUcnjmGtLU7AcGApp3m6J auPyaUlxK9h/NNqUJBWNvFSsvtfGFFGdCKpjNnw+qF7wrkTKaeLfASQPwFVf58qx tH/CFI4bADu1Qx0Da8Z7R0yN/IDJRZn/v3pUvlmvaKJ8JcGZxWl8Tvup1073MhKx CvwY9SYDNhgfHWK3cO7VkyQHyo+TudI1swpSPTyTgB8gTdCTWptNQN25/cwJSyqv uRl0FUX8nfuROwWMqA== -----END CERTIFICATE-----Generated at Mon Apr 21 22:45:08 2025 by rpki-client