$ rpki-client -vvf rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/3139312e372e302e302f32332d3332203d3e20323733343331.roa File: 3139312e372e302e302f32332d3332203d3e20323733343331.roa (raw, json) Hash identifier: 4uWIjjkzu/S9R++2NeybgQIf5elNz0cMMX4WwUGI0Zg= Subject key identifier: 5D:14:B3:00:CE:B4:FF:01:25:04:AE:3A:1E:14:64:B6:8D:B9:C0:2F Certificate issuer: /CN=7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6 Certificate serial: 6FE5526D73305319B35BF6497CEAD34069519102 Authority key identifier: 7D:BF:23:D2:D2:FE:1E:5F:87:E0:2D:AA:39:CF:DE:13:BD:6C:79:C6 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.cer Subject info access: rsync://rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/3139312e372e302e302f32332d3332203d3e20323733343331.roa Signing time: Mon 11 Nov 2024 20:33:20 +0000 ROA not before: Mon 11 Nov 2024 20:28:20 +0000 ROA not after: Mon 10 Nov 2025 20:33:20 +0000 asID: 273431 IP address blocks: 191.7.0.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.crl rsync://rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 08:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e5:52:6d:73:30:53:19:b3:5b:f6:49:7c:ea:d3:40:69:51:91:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6 Validity Not Before: Nov 11 20:28:20 2024 GMT Not After : Nov 10 20:33:20 2025 GMT Subject: CN=5D14B300CEB4FF012504AE3A1E1464B68DB9C02F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:89:39:a3:0a:59:e7:73:a7:2a:b5:58:7a: 60:fb:38:58:4a:46:fb:cb:c4:66:d5:03:2d:da:9f: ef:b6:43:89:0b:d9:ab:20:6c:49:b3:2c:f9:69:bc: 86:22:32:8d:1e:d4:54:7b:fd:cd:7b:0d:8f:dd:01: 6e:17:c8:62:4b:12:38:e3:62:7c:95:b9:3c:b3:01: bd:76:51:23:8c:a9:31:c8:ba:de:ac:92:af:bc:64: f5:4c:28:1f:6d:58:27:78:5d:4a:76:53:d6:16:be: 74:82:c6:eb:3e:db:dd:4a:75:84:11:46:f5:3d:22: 6a:78:b3:36:0b:14:5e:56:79:71:ad:0b:29:86:5d: 37:ea:f2:52:db:83:47:0a:e0:2b:55:7e:74:f1:ba: c1:67:88:e9:af:a7:29:f5:a8:5c:50:b7:5c:61:50: 5c:76:3a:35:95:70:1a:2b:c8:83:0b:45:f9:0f:9e: 5a:53:cf:d6:58:94:ec:4e:97:bd:df:d1:71:41:3b: da:d7:b3:49:5d:37:81:79:a1:a0:43:b6:fc:67:3f: db:ad:bc:cf:5c:b3:70:29:14:89:b8:d5:11:77:a8: b3:91:e1:d2:f0:92:d8:f2:7e:42:b1:bb:b8:3d:3e: 81:c8:aa:3a:d9:3d:34:9b:5a:bc:e6:14:be:94:3e: e3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:14:B3:00:CE:B4:FF:01:25:04:AE:3A:1E:14:64:B6:8D:B9:C0:2F X509v3 Authority Key Identifier: keyid:7D:BF:23:D2:D2:FE:1E:5F:87:E0:2D:AA:39:CF:DE:13:BD:6C:79:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7DBF23D2D2FE1E5F87E02DAA39CFDE13BD6C79C6.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4ipk4eQd9zUucyExLksCYxyK4SqEdvGQsJLLk9MspmFX/0/3139312e372e302e302f32332d3332203d3e20323733343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.7.0.0/23 Signature Algorithm: sha256WithRSAEncryption 61:c3:cc:94:04:a8:a0:1d:c0:3b:a1:44:aa:27:9a:60:1b:48: e6:5f:46:1c:72:09:30:02:50:94:a2:8f:ed:d4:77:9f:d1:ad: ce:e8:54:11:c3:c2:6e:7c:45:d0:e9:11:c6:72:99:1e:48:a8: 2d:fd:fc:69:2c:cf:01:23:4f:1f:3a:eb:bc:5c:cb:59:81:dc: 8b:11:3d:ac:1c:9f:f7:c9:a7:2b:09:3b:c3:61:f3:c3:f0:9a: 19:05:15:f1:91:9f:10:64:a4:cc:2b:3d:61:b1:7c:fd:7f:c7: ff:50:22:01:6e:5f:6a:54:dd:5f:ae:af:29:53:37:a4:bd:aa: f8:e5:5f:89:48:83:e2:5c:20:1b:e4:3e:77:31:37:74:8f:41: 2d:13:2b:0e:2e:2e:64:ce:55:43:4b:de:8f:ab:6c:3c:2a:fe: 5d:bb:c3:26:6e:a7:82:95:bf:53:fa:a2:17:e3:4f:bc:69:fe: 38:a1:b1:4e:26:c5:a1:bd:76:6f:e1:88:11:d4:07:61:db:40: 2f:90:88:36:8a:82:86:33:d9:f0:ac:8a:ae:74:cd:cb:42:45: c7:4a:78:c7:dd:e0:bd:4b:4a:f0:f5:fd:ac:26:a9:08:40:f8: c9:ae:d0:3d:f5:d2:55:0f:c1:1f:53:87:26:fd:46:b2:33:bd: 7e:20:b2:fc -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIUb+VSbXMwUxmzW/ZJfOrTQGlRkQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RCRjIzRDJEMkZFMUU1Rjg3RTAyREFBMzlDRkRFMTNC RDZDNzlDNjAeFw0yNDExMTEyMDI4MjBaFw0yNTExMTAyMDMzMjBaMDMxMTAvBgNV BAMTKDVEMTRCMzAwQ0VCNEZGMDEyNTA0QUUzQTFFMTQ2NEI2OERCOUMwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6ok5owpZ53OnKrVYemD7OFhK RvvLxGbVAy3an++2Q4kL2asgbEmzLPlpvIYiMo0e1FR7/c17DY/dAW4XyGJLEjjj YnyVuTyzAb12USOMqTHIut6skq+8ZPVMKB9tWCd4XUp2U9YWvnSCxus+291KdYQR RvU9Imp4szYLFF5WeXGtCymGXTfq8lLbg0cK4CtVfnTxusFniOmvpyn1qFxQt1xh UFx2OjWVcBoryIMLRfkPnlpTz9ZYlOxOl73f0XFBO9rXs0ldN4F5oaBDtvxnP9ut vM9cs3ApFIm41RF3qLOR4dLwktjyfkKxu7g9PoHIqjrZPTSbWrzmFL6UPuPVAgMB AAGjggJLMIICRzAdBgNVHQ4EFgQUXRSzAM60/wElBK46HhRkto25wC8wHwYDVR0j BBgwFoAUfb8j0tL+Hl+H4C2qOc/eE71secYwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNGlwazRlUWQ5elV1Y3lFeExrc0NZeHlLNFNxRWR2R1FzSkxMazlNc3Bt RlgvMC83REJGMjNEMkQyRkUxRTVGODdFMDJEQUEzOUNGREUxM0JENkM3OUM2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzdEQkYyM0QyRDJGRTFFNUY4 N0UwMkRBQTM5Q0ZERTEzQkQ2Qzc5QzYuY2VyMIGoBggrBgEFBQcBCwSBmzCBmDCB lQYIKwYBBQUHMAuGgYhyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRpcGs0ZVFkOXpVdWN5RXhMa3NDWXh5SzRTcUVkdkdRc0pMTGs5TXNwbUZYLzAv MzEzOTMxMmUzNzJlMzAyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzMjM3MzMzNDMz MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAG/BwAwDQYJKoZIhvcNAQELBQADggEBAGHDzJQEqKAdwDuh RKonmmAbSOZfRhxyCTACUJSij+3Ud5/Rrc7oVBHDwm58RdDpEcZymR5IqC39/Gks zwEjTx8667xcy1mB3IsRPawcn/fJpysJO8Nh88PwmhkFFfGRnxBkpMwrPWGxfP1/ x/9QIgFuX2pU3V+urylTN6S9qvjlX4lIg+JcIBvkPncxN3SPQS0TKw4uLmTOVUNL 3o+rbDwq/l27wyZup4KVv1P6ohfjT7xp/jihsU4mxaG9dm/hiBHUB2HbQC+QiDaK goYz2fCsiq50zctCRcdKeMfd4L1LSvD1/awmqQhA+Mmu0D310lUPwR9Thyb9RrIz vX4gsvw= -----END CERTIFICATE-----Generated at Sun Feb 16 21:43:49 2025 by rpki-client