$ rpki-client -vvf rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/3137302e3233332e32302e302f32322d3234203d3e20323638323839.roa File: 3137302e3233332e32302e302f32322d3234203d3e20323638323839.roa (raw, json) Hash identifier: 5XwCvfaoU64ymtIslXprTesI7aefy6dxcTH7KYUOQ3U= Subject key identifier: 2F:43:7B:D3:20:C6:53:31:74:A7:F7:43:A8:74:2F:B9:EA:8D:D4:4A Certificate issuer: /CN=D8BA7C35A5C2420589B30C33D9CF1374505F3DBC Certificate serial: 28E6B8DDE5B89A2DDC016846007B66D73CF9A14E Authority key identifier: D8:BA:7C:35:A5:C2:42:05:89:B3:0C:33:D9:CF:13:74:50:5F:3D:BC Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.cer Subject info access: rsync://rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/3137302e3233332e32302e302f32322d3234203d3e20323638323839.roa Signing time: Mon 10 Feb 2025 11:13:50 +0000 ROA not before: Mon 10 Feb 2025 11:08:50 +0000 ROA not after: Mon 09 Feb 2026 11:13:50 +0000 asID: 268289 IP address blocks: 170.233.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.crl rsync://rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e6:b8:dd:e5:b8:9a:2d:dc:01:68:46:00:7b:66:d7:3c:f9:a1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8BA7C35A5C2420589B30C33D9CF1374505F3DBC Validity Not Before: Feb 10 11:08:50 2025 GMT Not After : Feb 9 11:13:50 2026 GMT Subject: CN=2F437BD320C6533174A7F743A8742FB9EA8DD44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:6d:ca:9b:0d:e5:dd:7b:fd:e7:ae:ae:ba: 95:15:7f:9f:42:11:6b:6f:68:3d:d1:80:b2:7f:23: e8:3e:ab:d3:f3:1a:26:b5:18:89:b2:0e:01:9b:84: 14:a0:8d:85:0b:d3:93:0c:75:4d:30:f4:16:57:cc: 63:47:cd:1a:c2:d3:f6:08:d2:16:68:90:0d:fe:32: 5c:5f:3d:c2:c7:ee:41:a5:d2:e9:bf:ec:a5:4b:84: 9f:1f:8c:df:0b:cc:40:2f:f4:1f:28:92:39:24:6c: a3:f0:98:48:b3:5d:58:de:e5:16:ce:69:4b:b2:43: b4:9d:ab:b7:c3:92:f4:dd:a4:56:14:59:78:e5:ab: 1b:3a:11:46:8a:d5:56:2e:a7:63:af:6b:df:5c:f9: f2:de:20:16:7c:7f:dd:a7:8f:c3:a1:56:fb:4e:08: 18:65:c5:9c:62:82:40:d3:5d:8a:e6:31:6b:01:d8: ae:a6:44:56:11:4f:56:e8:4b:8b:d3:7f:be:f2:27: be:f9:39:33:e4:ad:cf:5c:7d:4c:c1:0b:3d:f6:e7: 17:7f:ac:37:73:a5:ec:30:77:77:84:d7:7c:ba:d3: fa:85:97:73:95:f0:4c:19:57:11:76:7e:9b:df:4b: 56:80:fd:13:8a:65:d4:55:c5:76:9d:f2:20:d1:52: 5b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:43:7B:D3:20:C6:53:31:74:A7:F7:43:A8:74:2F:B9:EA:8D:D4:4A X509v3 Authority Key Identifier: keyid:D8:BA:7C:35:A5:C2:42:05:89:B3:0C:33:D9:CF:13:74:50:5F:3D:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D8BA7C35A5C2420589B30C33D9CF1374505F3DBC.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5NWgGTnyPJTvvhBYW48ViTn1WKh8icyStVecxq7yTzVt/0/3137302e3233332e32302e302f32322d3234203d3e20323638323839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:11:d9:2e:2b:86:8b:af:3a:c1:08:fe:96:34:cf:c1:52:c8: 37:a5:6e:1b:9c:08:2c:e1:3b:f7:ee:84:15:87:43:c3:c0:26: 4c:c0:19:9f:c1:4d:60:49:77:6a:32:f9:9c:7f:80:18:69:dd: a5:ef:f1:fd:7b:d0:92:dd:ec:a3:36:3e:cc:61:b3:5d:3b:69: 02:b2:6e:f6:09:60:98:60:34:81:a8:09:83:de:a8:9a:ee:eb: e4:52:18:cc:6c:c6:18:5c:37:82:b7:74:f0:eb:8b:6f:ba:f9: 66:0b:1b:4c:47:2b:0f:57:a9:2f:48:0e:b7:52:07:39:76:e6: 78:c7:17:25:80:75:8c:7d:41:d3:ce:64:08:a9:b2:a9:76:e9: 0d:ec:43:69:84:b3:17:e1:d8:ed:88:29:0e:dc:ad:15:f3:79: 09:3c:18:e6:99:6a:53:f7:e3:e3:d1:73:a2:39:dc:a4:9f:56: 8a:36:04:d5:ff:de:db:06:ef:10:e8:0a:35:7e:95:b1:17:f1: 5f:22:00:3f:75:de:94:a9:b2:c8:4b:12:ad:b8:e8:d4:9a:94: 9c:c5:72:bc:20:20:e1:87:38:2a:89:bc:d0:ce:8f:d2:80:3e: 5a:0d:78:33:0e:ed:bd:03:d8:a2:36:b7:ce:bc:85:d9:73:4f: 83:e8:b0:54 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKOa43eW4mi3cAWhGAHtm1zz5oU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhCQTdDMzVBNUMyNDIwNTg5QjMwQzMzRDlDRjEzNzQ1 MDVGM0RCQzAeFw0yNTAyMTAxMTA4NTBaFw0yNjAyMDkxMTEzNTBaMDMxMTAvBgNV BAMTKDJGNDM3QkQzMjBDNjUzMzE3NEE3Rjc0M0E4NzQyRkI5RUE4REQ0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsZm3Kmw3l3Xv9566uupUVf59C EWtvaD3RgLJ/I+g+q9PzGia1GImyDgGbhBSgjYUL05MMdU0w9BZXzGNHzRrC0/YI 0hZokA3+MlxfPcLH7kGl0um/7KVLhJ8fjN8LzEAv9B8okjkkbKPwmEizXVje5RbO aUuyQ7Sdq7fDkvTdpFYUWXjlqxs6EUaK1VYup2Ova99c+fLeIBZ8f92nj8OhVvtO CBhlxZxigkDTXYrmMWsB2K6mRFYRT1boS4vTf77yJ775OTPkrc9cfUzBCz325xd/ rDdzpewwd3eE13y60/qFl3OV8EwZVxF2fpvfS1aA/ROKZdRVxXad8iDRUlvPAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUL0N70yDGUzF0p/dDqHQvueqN1EowHwYDVR0j BBgwFoAU2Lp8NaXCQgWJswwz2c8TdFBfPbwwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNU5XZ0dUbnlQSlR2dmhCWVc0OFZpVG4xV0toOGljeVN0VmVjeHE3eVR6 VnQvMC9EOEJBN0MzNUE1QzI0MjA1ODlCMzBDMzNEOUNGMTM3NDUwNUYzREJDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q4QkE3QzM1QTVDMjQyMDU4 OUIzMEMzM0Q5Q0YxMzc0NTA1RjNEQkMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVOV2dHVG55UEpUdnZoQllXNDhWaVRuMVdLaDhpY3lTdFZlY3hxN3lUelZ0LzAv MzEzNzMwMmUzMjMzMzMyZTMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2 MzgzMjM4Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKq6RQwDQYJKoZIhvcNAQELBQADggEBAJsR2S4r houvOsEI/pY0z8FSyDelbhucCCzhO/fuhBWHQ8PAJkzAGZ/BTWBJd2oy+Zx/gBhp 3aXv8f170JLd7KM2Psxhs107aQKybvYJYJhgNIGoCYPeqJru6+RSGMxsxhhcN4K3 dPDri2+6+WYLG0xHKw9XqS9IDrdSBzl25njHFyWAdYx9QdPOZAipsql26Q3sQ2mE sxfh2O2IKQ7crRXzeQk8GOaZalP34+PRc6I53KSfVoo2BNX/3tsG7xDoCjV+lbEX 8V8iAD913pSpsshLEq246NSalJzFcrwgIOGHOCqJvNDOj9KAPloNeDMO7b0D2KI2 t868hdlzT4PosFQ= -----END CERTIFICATE-----Generated at Mon Apr 7 20:42:06 2025 by rpki-client