$ rpki-client -vvf rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa File: 3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa (raw, json) Hash identifier: a3crGjfP/oCC+qaTWBUjzu89HhGGkxMCPKghZCoKsFs= Subject key identifier: EE:A8:97:62:A3:A6:76:D1:09:EF:94:43:34:3E:D8:82:9E:E1:B1:F2 Certificate issuer: /CN=FA8D895DEA10C0D11206F62D5BE38EDB0A317794 Certificate serial: 4E34BAD9259597E22DAA4F3FD466A37CA65161EA Authority key identifier: FA:8D:89:5D:EA:10:C0:D1:12:06:F6:2D:5B:E3:8E:DB:0A:31:77:94 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.cer Subject info access: rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa Signing time: Fri 24 Jan 2025 18:25:00 +0000 ROA not before: Fri 24 Jan 2025 18:20:00 +0000 ROA not after: Fri 23 Jan 2026 18:25:00 +0000 asID: 271309 IP address blocks: 207.248.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.crl rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 14 Mar 2025 18:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:34:ba:d9:25:95:97:e2:2d:aa:4f:3f:d4:66:a3:7c:a6:51:61:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA8D895DEA10C0D11206F62D5BE38EDB0A317794 Validity Not Before: Jan 24 18:20:00 2025 GMT Not After : Jan 23 18:25:00 2026 GMT Subject: CN=EEA89762A3A676D109EF9443343ED8829EE1B1F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f8:1d:55:bc:36:0d:5c:dd:b1:d5:4f:cc:fc: 7e:f2:fd:f3:24:4c:9d:13:f0:02:52:dc:2b:96:ca: 47:c0:82:44:3a:b7:ba:f9:55:26:4f:f0:4c:63:04: 52:0a:f0:7a:6c:29:23:d3:4d:4c:aa:79:a9:47:3e: d0:0f:da:4c:64:65:ed:40:d7:c5:fc:1a:2d:b3:7b: 59:ee:2f:9a:b1:d5:b5:eb:a5:ae:9c:16:ec:c1:57: 94:01:d3:ba:f7:72:d3:7e:ff:77:a7:01:84:ad:bf: d8:f8:a6:b0:b2:04:67:e9:a8:59:c6:79:24:5e:cd: c7:7e:34:76:49:87:ff:ab:12:6c:3c:0c:ef:63:62: 7e:16:6e:fd:f7:0b:85:92:3b:3b:0b:7d:fb:96:6e: b0:54:7c:3a:cc:ea:fc:0f:a7:5c:e6:00:9c:d1:b9: d4:ff:f1:48:2a:8b:e2:5e:d9:15:c3:51:d7:c5:8f: 93:7d:e7:17:57:1d:51:43:b0:09:4e:ee:3d:2e:0c: 8d:14:24:48:9f:2c:53:31:d2:74:13:08:27:8c:c8: b1:7e:43:be:70:c2:42:1f:f9:96:00:57:8c:a5:91: ce:2f:25:9a:25:8e:a1:4c:37:ef:d8:4a:05:3f:3b: 84:04:4b:74:b2:c0:c3:05:ca:72:d8:90:91:89:3e: db:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A8:97:62:A3:A6:76:D1:09:EF:94:43:34:3E:D8:82:9E:E1:B1:F2 X509v3 Authority Key Identifier: keyid:FA:8D:89:5D:EA:10:C0:D1:12:06:F6:2D:5B:E3:8E:DB:0A:31:77:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FA8D895DEA10C0D11206F62D5BE38EDB0A317794.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4T2YBmaTzzxEGeQCPGw4is8csdKH9o7sNEpBwot6Mnbf/0/3230372e3234382e32352e302f32342d3234203d3e20323731333039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.248.25.0/24 Signature Algorithm: sha256WithRSAEncryption 50:89:ce:ae:97:fe:fd:f7:f3:06:12:19:e3:4a:e9:2b:f9:65: 17:c2:96:b4:a3:ac:c3:c5:51:6f:50:00:7f:f8:77:fa:08:a6: d7:4d:66:5b:36:d4:ad:82:ff:78:71:f8:f9:87:af:ef:5d:96: e7:d3:8e:5c:cd:98:1a:c1:14:69:f2:64:d5:55:9a:c1:2c:3d: bf:de:5c:41:e1:13:11:3c:35:51:a6:9e:bd:47:e7:9d:17:80: a1:85:0e:49:b1:1c:38:ef:42:23:53:ec:9c:b6:7c:e4:23:28: ca:e4:3f:74:f3:48:ce:51:c1:18:da:2a:ed:41:a2:61:d5:ca: 0a:ce:81:9a:f4:9e:2c:33:8e:3e:82:7e:b5:94:4d:c2:88:5a: 92:00:c4:87:43:6a:38:e6:38:a5:bd:16:52:d8:2d:c0:ef:15: e0:a6:a9:2b:e5:d1:e2:0a:b6:17:86:cc:fa:73:c8:99:c9:ac: a7:c1:5f:4a:c4:ed:97:5c:10:05:71:fa:32:45:fb:2b:c8:db: 16:76:dc:fe:25:ec:cd:13:15:51:a7:79:b8:d2:e9:fa:40:79: bb:81:2b:b4:50:91:ca:41:27:82:45:31:2d:0b:b0:81:86:8a: 90:dd:1f:3d:fa:95:07:76:ac:4a:a4:16:3b:fc:e5:c4:6c:11: 1d:d1:7c:93 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUTjS62SWVl+Itqk8/1GajfKZRYeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4RDg5NURFQTEwQzBEMTEyMDZGNjJENUJFMzhFREIw QTMxNzc5NDAeFw0yNTAxMjQxODIwMDBaFw0yNjAxMjMxODI1MDBaMDMxMTAvBgNV BAMTKEVFQTg5NzYyQTNBNjc2RDEwOUVGOTQ0MzM0M0VEODgyOUVFMUIxRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+B1VvDYNXN2x1U/M/H7y/fMk TJ0T8AJS3CuWykfAgkQ6t7r5VSZP8ExjBFIK8HpsKSPTTUyqealHPtAP2kxkZe1A 18X8Gi2ze1nuL5qx1bXrpa6cFuzBV5QB07r3ctN+/3enAYStv9j4prCyBGfpqFnG eSRezcd+NHZJh/+rEmw8DO9jYn4Wbv33C4WSOzsLffuWbrBUfDrM6vwPp1zmAJzR udT/8Ugqi+Je2RXDUdfFj5N95xdXHVFDsAlO7j0uDI0UJEifLFMx0nQTCCeMyLF+ Q75wwkIf+ZYAV4ylkc4vJZoljqFMN+/YSgU/O4QES3SywMMFynLYkJGJPtv7AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU7qiXYqOmdtEJ75RDND7Ygp7hsfIwHwYDVR0j BBgwFoAU+o2JXeoQwNESBvYtW+OO2woxd5QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNFQyWUJtYVR6enhFR2VRQ1BHdzRpczhjc2RLSDlvN3NORXBCd290Nk1u YmYvMC9GQThEODk1REVBMTBDMEQxMTIwNkY2MkQ1QkUzOEVEQjBBMzE3Nzk0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0ZBOEQ4OTVERUExMEMwRDEx MjA2RjYyRDVCRTM4RURCMEEzMTc3OTQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRUMllCbWFUenp4RUdlUUNQR3c0aXM4Y3NkS0g5bzdzTkVwQndvdDZNbmJmLzAv MzIzMDM3MmUzMjM0MzgyZTMyMzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3 MzEzMzMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBADP+BkwDQYJKoZIhvcNAQELBQADggEBAFCJzq6X /v338wYSGeNK6Sv5ZRfClrSjrMPFUW9QAH/4d/oIptdNZls21K2C/3hx+PmHr+9d lufTjlzNmBrBFGnyZNVVmsEsPb/eXEHhExE8NVGmnr1H550XgKGFDkmxHDjvQiNT 7Jy2fOQjKMrkP3TzSM5RwRjaKu1BomHVygrOgZr0niwzjj6CfrWUTcKIWpIAxIdD ajjmOKW9FlLYLcDvFeCmqSvl0eIKtheGzPpzyJnJrKfBX0rE7ZdcEAVx+jJF+yvI 2xZ23P4l7M0TFVGnebjS6fpAebuBK7RQkcpBJ4JFMS0LsIGGipDdHz36lQd2rEqk Fjv85cRsER3RfJM= -----END CERTIFICATE-----Generated at Fri Mar 14 02:41:11 2025 by rpki-client