$ rpki-client -vvf rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3231342e302f32332d3234203d3e203532383731.roa File: 3230312e3135372e3231342e302f32332d3234203d3e203532383731.roa (raw, json) Hash identifier: YGH4HTxl7OG1B8VbLDIXyNx+HUhA1VF6faFqxowVDFU= Subject key identifier: DC:B2:4F:9A:7A:99:FF:98:C5:E4:DC:DB:06:1E:EE:4A:5E:84:5C:19 Certificate issuer: /CN=D35AD762F990F266087F46B5C22E9EA9E288BF8E Certificate serial: 0EFCE6B9E3B6EEAD41CB5D845756259B7A2F9F30 Authority key identifier: D3:5A:D7:62:F9:90:F2:66:08:7F:46:B5:C2:2E:9E:A9:E2:88:BF:8E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.cer Subject info access: rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3231342e302f32332d3234203d3e203532383731.roa Signing time: Wed 05 Mar 2025 23:40:24 +0000 ROA not before: Wed 05 Mar 2025 23:35:24 +0000 ROA not after: Wed 04 Mar 2026 23:40:24 +0000 asID: 52871 IP address blocks: 201.157.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.crl rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 19 Apr 2025 07:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fc:e6:b9:e3:b6:ee:ad:41:cb:5d:84:57:56:25:9b:7a:2f:9f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35AD762F990F266087F46B5C22E9EA9E288BF8E Validity Not Before: Mar 5 23:35:24 2025 GMT Not After : Mar 4 23:40:24 2026 GMT Subject: CN=DCB24F9A7A99FF98C5E4DCDB061EEE4A5E845C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:16:f4:25:55:00:a4:17:2e:41:79:75:5a:db: aa:6b:b0:4e:81:47:4c:81:2e:e2:f4:47:a2:8e:21: ca:62:21:60:54:f8:6f:80:d2:e7:64:a0:54:7d:dd: 6d:21:a6:0d:33:b1:be:8d:d4:3a:f8:1e:d0:3b:79: 87:0f:d3:a8:5f:e2:12:eb:66:b2:fe:e9:0f:c0:ec: 25:32:e4:8e:9b:37:cf:5f:5d:87:12:92:eb:08:c5: 3a:3b:2c:4d:ad:01:85:fb:42:e6:84:27:5b:44:2e: be:b1:a3:ef:fc:0e:c0:69:9a:00:2b:d3:96:47:23: 8a:c5:6b:f0:99:05:0c:fc:cf:bd:54:72:c9:a6:07: fc:51:4b:f0:13:07:01:5a:57:14:78:8e:11:4a:8a: ac:c8:4f:6c:ea:9a:da:c5:31:a0:f5:0a:bc:66:98: 1c:c0:44:43:97:db:43:54:11:34:dd:b4:c0:a8:e0: 17:bc:d9:69:b2:90:b4:75:2c:78:90:49:2c:59:04: 28:d6:a4:d2:82:ae:2e:08:06:43:06:60:98:2b:c3: 46:37:f5:95:5a:75:be:9d:cf:14:ca:e2:6a:e5:4e: 30:66:c6:3c:38:6f:08:62:0d:cd:ed:03:d4:7c:59: c3:cd:af:a3:74:9d:76:d5:c0:12:f3:09:76:8c:e1: 82:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B2:4F:9A:7A:99:FF:98:C5:E4:DC:DB:06:1E:EE:4A:5E:84:5C:19 X509v3 Authority Key Identifier: keyid:D3:5A:D7:62:F9:90:F2:66:08:7F:46:B5:C2:2E:9E:A9:E2:88:BF:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D35AD762F990F266087F46B5C22E9EA9E288BF8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5T3NusHEsX3usPU5hhrq19XbYjSfhytrZa5gMGGpbzMG/1/3230312e3135372e3231342e302f32332d3234203d3e203532383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.157.214.0/23 Signature Algorithm: sha256WithRSAEncryption 56:b0:0a:9c:68:67:91:ba:8b:f7:70:50:3f:f3:8f:1e:fb:69: 38:0d:77:1b:9d:af:da:30:57:2a:9b:0f:29:3c:40:fa:6b:63: 1a:c2:47:39:9b:bb:19:6a:b5:91:db:0f:b9:b5:a7:e1:40:81: fe:0a:f2:8f:f6:60:8d:2d:51:89:52:dd:aa:d8:a9:be:25:7b: 3a:f5:68:ac:74:45:7d:55:17:c2:c2:dc:72:e3:e9:ab:2e:f4: 27:d4:c9:09:5a:aa:b9:e4:16:e1:a4:ee:ff:93:ba:3c:49:3c: a0:2f:39:67:c6:52:0a:6d:10:7c:f0:8e:e9:ea:9c:a4:74:d9: 89:5d:c7:f5:39:e6:e0:4d:3d:70:2f:99:97:46:65:ae:89:75: a9:65:c7:bf:75:81:51:e8:ec:b0:0e:d8:03:ea:1c:de:9f:7e: ae:d3:9d:b1:4f:3a:98:57:bc:ab:06:34:38:c0:f7:22:d7:e7: a9:fb:79:b0:ee:03:51:b1:51:52:17:6c:9c:2f:9e:1d:7a:f2: de:ca:3c:b6:b9:06:39:75:27:57:37:94:0b:3b:fd:fa:91:a3: 5e:f7:88:5b:e8:ed:76:01:c1:ab:29:5d:c2:38:ea:2f:85:99: 1f:39:c1:38:b0:6a:3e:54:f4:ae:f9:7f:af:eb:22:b1:76:aa: 11:54:df:45 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUDvzmueO27q1By12EV1Ylm3ovnzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1QUQ3NjJGOTkwRjI2NjA4N0Y0NkI1QzIyRTlFQTlF Mjg4QkY4RTAeFw0yNTAzMDUyMzM1MjRaFw0yNjAzMDQyMzQwMjRaMDMxMTAvBgNV BAMTKERDQjI0RjlBN0E5OUZGOThDNUU0RENEQjA2MUVFRTRBNUU4NDVDMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChFvQlVQCkFy5BeXVa26prsE6B R0yBLuL0R6KOIcpiIWBU+G+A0udkoFR93W0hpg0zsb6N1Dr4HtA7eYcP06hf4hLr ZrL+6Q/A7CUy5I6bN89fXYcSkusIxTo7LE2tAYX7QuaEJ1tELr6xo+/8DsBpmgAr 05ZHI4rFa/CZBQz8z71UcsmmB/xRS/ATBwFaVxR4jhFKiqzIT2zqmtrFMaD1Crxm mBzAREOX20NUETTdtMCo4Be82WmykLR1LHiQSSxZBCjWpNKCri4IBkMGYJgrw0Y3 9ZVadb6dzxTK4mrlTjBmxjw4bwhiDc3tA9R8WcPNr6N0nXbVwBLzCXaM4YJbAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU3LJPmnqZ/5jF5NzbBh7uSl6EXBkwHwYDVR0j BBgwFoAU01rXYvmQ8mYIf0a1wi6eqeKIv44wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNVQzTnVzSEVzWDN1c1BVNWhocnExOVhiWWpTZmh5dHJaYTVnTUdHcGJ6 TUcvMS9EMzVBRDc2MkY5OTBGMjY2MDg3RjQ2QjVDMjJFOUVBOUUyODhCRjhFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0QzNUFENzYyRjk5MEYyNjYw ODdGNDZCNUMyMkU5RUE5RTI4OEJGOEUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVUM051c0hFc1gzdXNQVTVoaHJxMTlYYllqU2ZoeXRyWmE1Z01HR3Biek1HLzEv MzIzMDMxMmUzMTM1MzcyZTMyMzEzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM1 MzIzODM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAHJndYwDQYJKoZIhvcNAQELBQADggEBAFawCpxo Z5G6i/dwUD/zjx77aTgNdxudr9owVyqbDyk8QPprYxrCRzmbuxlqtZHbD7m1p+FA gf4K8o/2YI0tUYlS3arYqb4lezr1aKx0RX1VF8LC3HLj6asu9CfUyQlaqrnkFuGk 7v+TujxJPKAvOWfGUgptEHzwjunqnKR02Yldx/U55uBNPXAvmZdGZa6Jdallx791 gVHo7LAO2APqHN6ffq7TnbFPOphXvKsGNDjA9yLX56n7ebDuA1GxUVIXbJwvnh16 8t7KPLa5Bjl1J1c3lAs7/fqRo173iFvo7XYBwaspXcI46i+FmR85wTiwaj5U9K75 f6/rIrF2qhFU30U= -----END CERTIFICATE-----Generated at Fri Apr 18 14:42:54 2025 by rpki-client