$ rpki-client -vvf rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3137372e3132382e3139322e302f32312d3234203d3e203532383732.roa File: 3137372e3132382e3139322e302f32312d3234203d3e203532383732.roa (raw, json) Hash identifier: q7G9zIWY9ceV26aRdSDMojOq84B5QQvrANGS1smPt38= Subject key identifier: C4:84:96:E5:91:0A:B7:BF:1A:D9:BB:26:D7:01:64:3C:CF:0E:D6:63 Certificate issuer: /CN=67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44 Certificate serial: 60BC9F0591BB6CDA9E3EC7DE65D45D198FD3EF29 Authority key identifier: 67:F4:6E:91:95:5D:B6:CC:22:A4:F3:A0:BA:0A:45:DD:EB:AE:0A:44 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer Subject info access: rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3137372e3132382e3139322e302f32312d3234203d3e203532383732.roa Signing time: Wed 29 Jan 2025 19:02:38 +0000 ROA not before: Wed 29 Jan 2025 18:57:38 +0000 ROA not after: Wed 28 Jan 2026 19:02:38 +0000 asID: 52872 IP address blocks: 177.128.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.crl rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 09:29:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:bc:9f:05:91:bb:6c:da:9e:3e:c7:de:65:d4:5d:19:8f:d3:ef:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44 Validity Not Before: Jan 29 18:57:38 2025 GMT Not After : Jan 28 19:02:38 2026 GMT Subject: CN=C48496E5910AB7BF1AD9BB26D701643CCF0ED663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:c9:75:e2:48:b3:c1:c0:40:55:4d:d8:e2: b3:35:32:71:f5:d4:86:de:25:0d:01:96:b0:09:b1: 7b:b8:b6:3a:2c:46:cf:2c:43:6d:f6:34:d4:2b:0d: 0e:64:ad:48:e9:a9:3c:3a:93:44:83:a2:6a:03:79: a9:3b:2b:e4:86:da:df:c0:fa:2b:45:10:63:24:a9: 5a:27:ec:f0:ec:7b:f1:62:cd:79:5e:f1:a2:3e:ca: 62:75:e3:aa:28:a9:1b:dd:44:6d:f6:67:f8:52:88: b7:af:d0:56:77:00:3f:a3:6e:75:d3:dc:ea:1d:9c: 0e:cf:65:94:53:65:cf:32:9d:56:83:ac:dd:27:b1: 85:ab:98:50:19:16:c2:c8:ab:95:0e:9f:9a:78:d3: 86:38:91:85:58:a2:b9:a4:79:ec:86:7a:e4:9c:60: a1:b3:93:13:72:4a:29:9a:db:19:e6:ce:a5:e5:e6: 09:71:c9:71:70:c1:5a:e8:ff:9a:0c:c6:2d:8e:ae: 21:f2:ff:2c:14:16:e0:5f:31:fb:f1:67:a5:3f:d0: c3:fd:35:c5:38:8e:d0:af:4f:18:ff:1f:85:8f:66: 86:c0:0d:bd:1d:48:41:ba:f0:08:fd:2f:d7:e8:f0: 76:82:15:a3:73:38:1a:0a:b9:8d:e9:e5:43:71:4a: e6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:84:96:E5:91:0A:B7:BF:1A:D9:BB:26:D7:01:64:3C:CF:0E:D6:63 X509v3 Authority Key Identifier: keyid:67:F4:6E:91:95:5D:B6:CC:22:A4:F3:A0:BA:0A:45:DD:EB:AE:0A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/67F46E91955DB6CC22A4F3A0BA0A45DDEBAE0A44.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4xcLWXC7hdQTkJrcabpTqP5wA1hRpHZvfQGUnXKdAG3W/0/3137372e3132382e3139322e302f32312d3234203d3e203532383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.128.192.0/21 Signature Algorithm: sha256WithRSAEncryption c9:27:a0:f7:67:df:8b:81:cc:4a:7b:55:88:e2:1a:8a:68:25: cb:6c:d8:c8:ec:0c:8c:fc:fe:c1:f8:ba:ef:22:7d:bb:18:93: f6:5e:e6:f5:87:2f:7b:27:a6:74:a7:25:04:de:6d:9d:66:a8: 33:64:77:5e:aa:dd:92:00:d5:ec:95:61:4d:76:9c:36:52:43: b0:c5:cf:f0:e8:b8:90:53:30:28:8e:4b:ea:6d:ec:41:0e:d7: 36:b2:8c:a9:c6:34:99:21:17:09:0e:6a:14:d1:0b:bd:e5:90: 3a:8f:87:95:74:6f:7e:6b:2a:83:07:6b:a9:bf:1e:a0:29:c5: d2:93:3b:2f:d7:7f:db:c5:5f:10:f4:5a:a6:2f:14:47:2e:d1: 4f:41:14:47:ab:97:e5:92:f9:06:85:a1:fa:d3:ff:9f:d6:2b: 86:5d:4d:5d:5e:97:f1:e0:73:16:03:56:74:85:f1:0f:93:9e: c7:d6:3b:bb:8d:59:ca:c5:2a:8b:3d:d1:13:7e:32:70:3f:b0: e4:79:24:1e:75:b4:99:4f:6b:64:61:f6:86:fc:13:e6:13:5b: a2:42:12:be:3c:20:8e:e6:77:01:6c:f2:c3:02:77:25:54:d1: 88:b5:a1:f3:1c:6d:16:10:61:f7:1e:36:f8:ba:00:22:16:64: 92:31:57:68 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUYLyfBZG7bNqePsfeZdRdGY/T7ykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdGNDZFOTE5NTVEQjZDQzIyQTRGM0EwQkEwQTQ1RERF QkFFMEE0NDAeFw0yNTAxMjkxODU3MzhaFw0yNjAxMjgxOTAyMzhaMDMxMTAvBgNV BAMTKEM0ODQ5NkU1OTEwQUI3QkYxQUQ5QkIyNkQ3MDE2NDNDQ0YwRUQ2NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBPcl14kizwcBAVU3Y4rM1MnH1 1IbeJQ0BlrAJsXu4tjosRs8sQ232NNQrDQ5krUjpqTw6k0SDomoDeak7K+SG2t/A +itFEGMkqVon7PDse/FizXle8aI+ymJ146ooqRvdRG32Z/hSiLev0FZ3AD+jbnXT 3OodnA7PZZRTZc8ynVaDrN0nsYWrmFAZFsLIq5UOn5p404Y4kYVYormkeeyGeuSc YKGzkxNySima2xnmzqXl5glxyXFwwVro/5oMxi2OriHy/ywUFuBfMfvxZ6U/0MP9 NcU4jtCvTxj/H4WPZobADb0dSEG68Aj9L9fo8HaCFaNzOBoKuY3p5UNxSuaBAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUxISW5ZEKt78a2bsm1wFkPM8O1mMwHwYDVR0j BBgwFoAUZ/RukZVdtswipPOgugpF3euuCkQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNHhjTFdYQzdoZFFUa0pyY2FicFRxUDV3QTFoUnBIWnZmUUdVblhLZEFH M1cvMC82N0Y0NkU5MTk1NURCNkNDMjJBNEYzQTBCQTBBNDVEREVCQUUwQTQ0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY3RjQ2RTkxOTU1REI2Q0My MkE0RjNBMEJBMEE0NURERUJBRTBBNDQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzR4Y0xXWEM3aGRRVGtKcmNhYnBUcVA1d0ExaFJwSFp2ZlFHVW5YS2RBRzNXLzAv MzEzNzM3MmUzMTMyMzgyZTMxMzkzMjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDM1 MzIzODM3MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAOxgMAwDQYJKoZIhvcNAQELBQADggEBAMknoPdn 34uBzEp7VYjiGopoJcts2MjsDIz8/sH4uu8ifbsYk/Ze5vWHL3snpnSnJQTebZ1m qDNkd16q3ZIA1eyVYU12nDZSQ7DFz/DouJBTMCiOS+pt7EEO1zayjKnGNJkhFwkO ahTRC73lkDqPh5V0b35rKoMHa6m/HqApxdKTOy/Xf9vFXxD0WqYvFEcu0U9BFEer l+WS+QaFofrT/5/WK4ZdTV1el/HgcxYDVnSF8Q+TnsfWO7uNWcrFKos90RN+MnA/ sOR5JB51tJlPa2Rh9ob8E+YTW6JCEr48II7mdwFs8sMCdyVU0Yi1ofMcbRYQYfce Nvi6ACIWZJIxV2g= -----END CERTIFICATE-----Generated at Sun Feb 16 21:52:26 2025 by rpki-client