$ rpki-client -vvf rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32322d3234203d3e203532383732.roa File: 3136382e302e3233362e302f32322d3234203d3e203532383732.roa (raw, json) Hash identifier: Y8HYCiqTqdU0sJiEcoHybWxEWDI70igX2ZYThy0Lpu4= Subject key identifier: 9B:58:FB:1A:E2:8C:69:B0:9E:7B:5A:59:45:B3:01:05:B8:05:27:36 Certificate issuer: /CN=67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44 Certificate serial: 6E199813F88F0604A00C63CE7763ED2992D99249 Authority key identifier: 67:F4:6E:91:95:5D:B6:CC:22:A4:F3:A0:BA:0A:45:DD:EB:AE:0A:44 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer Subject info access: rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32322d3234203d3e203532383732.roa Signing time: Wed 29 Jan 2025 19:01:58 +0000 ROA not before: Wed 29 Jan 2025 18:56:58 +0000 ROA not after: Wed 28 Jan 2026 19:01:58 +0000 asID: 52872 IP address blocks: 168.0.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.crl rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 13:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:19:98:13:f8:8f:06:04:a0:0c:63:ce:77:63:ed:29:92:d9:92:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44 Validity Not Before: Jan 29 18:56:58 2025 GMT Not After : Jan 28 19:01:58 2026 GMT Subject: CN=9B58FB1AE28C69B09E7B5A5945B30105B8052736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:e0:a8:40:2b:8a:3e:dd:e9:2e:73:70:82: 5f:52:62:6a:54:bc:ae:24:7a:11:32:6d:37:20:3c: 86:ef:a8:9a:3a:3f:ea:e9:6c:0e:3c:ee:54:b9:35: d3:6d:06:c8:37:c0:26:d7:99:32:22:19:3b:57:4f: 95:7f:8c:e1:80:3f:78:22:2b:b3:9a:8d:4c:0c:41: 03:21:34:ed:c3:a9:f1:73:18:6e:6f:98:b1:f3:d4: 5e:ed:7a:1c:04:3c:68:41:2f:15:9e:a9:f9:3b:13: e6:46:32:9c:67:d3:bf:66:0a:c7:d2:a5:1f:ed:88: 11:89:32:8f:2f:4f:fd:f1:f8:a7:13:fb:c2:02:40: 04:cc:3d:9d:f7:2f:47:92:cd:61:5e:01:a2:5a:f6: e9:ab:ce:88:f2:ba:3b:42:01:4b:65:65:77:c9:2d: cf:62:f1:4b:ce:a3:f4:39:01:5d:d8:be:20:58:e0: c6:00:90:ab:43:5e:c2:53:15:ca:ec:c8:c3:8f:ec: 8c:ce:44:a0:ba:c5:e0:2a:ac:a2:48:f6:4c:35:04: c5:0c:5e:80:bc:96:fe:7d:e1:81:12:9d:e2:cb:f6: 9b:45:39:50:db:45:3b:34:09:6e:0a:43:87:f6:6d: e8:68:ec:c1:2c:14:09:71:7e:c5:e7:b5:f6:c6:03: e0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:58:FB:1A:E2:8C:69:B0:9E:7B:5A:59:45:B3:01:05:B8:05:27:36 X509v3 Authority Key Identifier: keyid:67:F4:6E:91:95:5D:B6:CC:22:A4:F3:A0:BA:0A:45:DD:EB:AE:0A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3136382e302e3233362e302f32322d3234203d3e203532383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.0.236.0/22 Signature Algorithm: sha256WithRSAEncryption 46:c9:93:05:f8:57:33:0c:15:69:41:15:f2:a0:5a:67:d3:8e: a2:d1:d6:8a:3b:46:e6:5c:d9:22:7f:36:d7:96:74:f9:18:8f: b5:f6:3f:d1:9e:86:a0:d1:ee:60:e3:2c:1c:98:88:d8:c4:c2: 37:d1:50:3f:f6:4a:4d:15:53:1d:5b:01:9f:12:78:67:44:03: ab:c1:c1:72:85:dd:e0:ae:2f:b0:e4:dd:94:a6:99:64:b2:2f: 6f:a6:9b:c8:77:d3:7a:33:f1:e5:09:1d:fb:c9:b1:c9:e7:50: 12:9f:da:8a:4a:5e:73:38:89:cc:61:33:de:6e:41:28:0a:34: 2a:e1:2c:bb:3e:22:3b:99:56:fb:f9:0b:69:fe:4f:f5:5c:30: 0d:91:46:ca:59:cd:30:76:a2:43:4d:15:6b:71:08:58:39:ca: 21:48:2f:b4:b8:0c:02:05:48:0d:c3:29:7e:b9:b7:6e:8e:8d: 6c:7c:b9:4a:29:98:87:de:31:bb:1c:de:80:c5:e5:39:9c:ac: 4d:00:0c:45:34:40:e3:76:af:6d:61:9c:36:ae:60:d5:4f:99: 1d:1a:d9:54:dc:27:b3:0c:ff:73:06:2e:e7:bd:d3:4e:02:78: 56:54:41:f2:68:ae:df:f2:40:04:06:29:3e:15:c4:a6:dd:98: cd:0d:ee:d4 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUbhmYE/iPBgSgDGPOd2PtKZLZkkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdGNDZFOTE5NTVEQjZDQzIyQTRGM0EwQkEwQTQ1RERF QkFFMEE0NDAeFw0yNTAxMjkxODU2NThaFw0yNjAxMjgxOTAxNThaMDMxMTAvBgNV BAMTKDlCNThGQjFBRTI4QzY5QjA5RTdCNUE1OTQ1QjMwMTA1QjgwNTI3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr3OCoQCuKPt3pLnNwgl9SYmpU vK4kehEybTcgPIbvqJo6P+rpbA487lS5NdNtBsg3wCbXmTIiGTtXT5V/jOGAP3gi K7OajUwMQQMhNO3DqfFzGG5vmLHz1F7tehwEPGhBLxWeqfk7E+ZGMpxn079mCsfS pR/tiBGJMo8vT/3x+KcT+8ICQATMPZ33L0eSzWFeAaJa9umrzojyujtCAUtlZXfJ Lc9i8UvOo/Q5AV3YviBY4MYAkKtDXsJTFcrsyMOP7IzORKC6xeAqrKJI9kw1BMUM XoC8lv594YESneLL9ptFOVDbRTs0CW4KQ4f2beho7MEsFAlxfsXntfbGA+C9AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUm1j7GuKMabCee1pZRbMBBbgFJzYwHwYDVR0j BBgwFoAUZ/RukZVdtswipPOgugpF3euuCkQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNHhjTFdYQzdoZFFUa0pyY2FicFRxUDV3QTFoUnBIWnZmUUdVblhLZEFH M1cvMC82N0Y0NkU5MTk1NURCNkNDMjJBNEYzQTBCQTBBNDVEREVCQUUwQTQ0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY3RjQ2RTkxOTU1REI2Q0My MkE0RjNBMEJBMEE0NURERUJBRTBBNDQuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzR4Y0xXWEM3aGRRVGtKcmNhYnBUcVA1d0ExaFJwSFp2ZlFHVW5YS2RBRzNXLzAv MzEzNjM4MmUzMDJlMzIzMzM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzMjM4 MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAqgA7DANBgkqhkiG9w0BAQsFAAOCAQEARsmTBfhXMwwV aUEV8qBaZ9OOotHWijtG5lzZIn8215Z0+RiPtfY/0Z6GoNHuYOMsHJiI2MTCN9FQ P/ZKTRVTHVsBnxJ4Z0QDq8HBcoXd4K4vsOTdlKaZZLIvb6abyHfTejPx5Qkd+8mx yedQEp/aikpecziJzGEz3m5BKAo0KuEsuz4iO5lW+/kLaf5P9VwwDZFGylnNMHai Q00Va3EIWDnKIUgvtLgMAgVIDcMpfrm3bo6NbHy5SimYh94xuxzegMXlOZysTQAM RTRA43avbWGcNq5g1U+ZHRrZVNwnswz/cwYu573TTgJ4VlRB8miu3/JABAYpPhXE pt2YzQ3u1A== -----END CERTIFICATE-----Generated at Tue Apr 8 15:29:21 2025 by rpki-client