$ rpki-client -vvf rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/3137302e3234362e3132382e302f32322d3234203d3e203238363432.roa File: 3137302e3234362e3132382e302f32322d3234203d3e203238363432.roa (raw, json) Hash identifier: p2QY/V40D+eIZtIiB9Mj08/mwuLWPUOkeaollMWU7z0= Subject key identifier: 1E:04:6B:74:13:DB:E0:28:87:E0:90:D7:6A:4C:C7:72:25:4D:B4:06 Certificate issuer: /CN=66335F04863CA1159D16D18E655231764F6FB821 Certificate serial: 5B73F70C60515122C57EDA290E50B6D1320F0AD4 Authority key identifier: 66:33:5F:04:86:3C:A1:15:9D:16:D1:8E:65:52:31:76:4F:6F:B8:21 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66335F04863CA1159D16D18E655231764F6FB821.cer Subject info access: rsync://rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/3137302e3234362e3132382e302f32322d3234203d3e203238363432.roa Signing time: Fri 07 Mar 2025 01:25:00 +0000 ROA not before: Fri 07 Mar 2025 01:20:00 +0000 ROA not after: Fri 06 Mar 2026 01:25:00 +0000 asID: 28642 IP address blocks: 170.246.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/66335F04863CA1159D16D18E655231764F6FB821.crl rsync://rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/66335F04863CA1159D16D18E655231764F6FB821.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66335F04863CA1159D16D18E655231764F6FB821.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 12:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:73:f7:0c:60:51:51:22:c5:7e:da:29:0e:50:b6:d1:32:0f:0a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66335F04863CA1159D16D18E655231764F6FB821 Validity Not Before: Mar 7 01:20:00 2025 GMT Not After : Mar 6 01:25:00 2026 GMT Subject: CN=1E046B7413DBE02887E090D76A4CC772254DB406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:06:92:e4:0e:5c:37:ae:bd:68:c8:04:fc: d4:27:b5:1b:25:96:e0:0f:16:d9:c2:9c:02:44:d6: ab:f0:04:73:71:2b:ac:16:ad:e9:9a:f0:72:ee:74: 04:b0:a0:b2:22:01:7b:fa:02:5e:bc:e3:73:e0:0a: be:00:9f:7c:33:55:8e:46:10:20:e2:13:7f:e4:19: d9:24:fa:f7:28:ab:b5:33:d2:bf:47:ed:1c:6f:3e: ce:5a:5d:ec:57:65:eb:41:e2:23:13:47:c9:7b:78: 3b:3a:ab:4e:e9:f2:76:03:cc:aa:e4:22:19:5b:7b: 13:53:44:cb:da:08:08:ef:f4:d6:73:8d:aa:f0:e2: 73:d8:61:a7:a0:28:6e:6d:8d:31:ee:45:0b:41:0b: cf:a0:f2:db:2e:f6:77:18:a0:d3:dd:3a:87:a6:57: 1c:2e:f2:6a:27:f1:eb:0e:19:e0:97:8a:41:c8:f1: 1f:98:a9:92:26:db:c7:a7:a5:99:86:14:9d:ce:67: a6:44:b7:e7:5e:61:68:4d:8c:17:fc:05:bc:a4:f8: 53:72:9a:6e:e3:fb:58:4a:23:25:85:30:94:65:fa: b3:7c:ec:eb:a8:13:9f:05:0a:51:25:be:98:10:f2: 90:93:ac:b2:d6:e8:da:be:8e:42:f8:05:a8:c7:cd: 43:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:04:6B:74:13:DB:E0:28:87:E0:90:D7:6A:4C:C7:72:25:4D:B4:06 X509v3 Authority Key Identifier: keyid:66:33:5F:04:86:3C:A1:15:9D:16:D1:8E:65:52:31:76:4F:6F:B8:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/66335F04863CA1159D16D18E655231764F6FB821.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/66335F04863CA1159D16D18E655231764F6FB821.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/5XQvGN2XZmWtoGxkn3sRsnXXCS6SxZHFQrx3hGa69EAd/1/3137302e3234362e3132382e302f32322d3234203d3e203238363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.246.128.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:0c:7d:23:6d:5b:ae:20:00:01:69:89:43:dd:49:ac:80:b2: e3:64:e8:ca:df:d8:c3:97:f0:d2:16:2c:ee:24:a4:46:8a:44: ff:06:69:05:58:96:21:8e:8e:21:a0:cf:7b:cc:12:ae:d5:6d: 47:87:df:3d:a5:57:23:e9:2b:fa:0d:cd:5d:f3:ea:68:17:f7: a3:0c:14:99:a7:24:d2:4c:a5:59:b3:2a:00:07:f7:33:66:bf: 6e:40:b9:b0:4f:ae:2a:54:28:f1:92:d1:2f:f2:37:ca:ac:00: e0:32:01:bb:ec:9d:1a:6c:21:66:ba:57:32:05:71:40:7f:47: b5:d3:0d:e1:51:16:31:1b:af:e5:a5:ef:a3:16:30:67:bd:44: 3e:1d:e0:7b:5f:00:5d:64:c2:8e:ed:95:47:e5:18:ac:9e:96: 11:03:64:1f:2e:08:2a:0f:33:91:ea:91:f7:fb:f1:f6:83:a9: 50:ea:89:31:07:9b:e8:c4:96:4f:60:e9:5e:b0:1e:ad:10:37: 7d:1c:4c:15:0d:08:46:a5:57:ca:5f:3e:f6:b4:5b:a9:c6:7f: 51:99:68:7b:72:fe:34:e0:bc:93:ac:ef:36:43:5a:f1:c3:fc: 40:a3:4e:07:d7:49:83:14:89:21:d3:8e:87:12:32:69:68:17: ae:38:e4:af -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUW3P3DGBRUSLFftopDlC20TIPCtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjYzMzVGMDQ4NjNDQTExNTlEMTZEMThFNjU1MjMxNzY0 RjZGQjgyMTAeFw0yNTAzMDcwMTIwMDBaFw0yNjAzMDYwMTI1MDBaMDMxMTAvBgNV BAMTKDFFMDQ2Qjc0MTNEQkUwMjg4N0UwOTBENzZBNENDNzcyMjU0REI0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKqwaS5A5cN669aMgE/NQntRsl luAPFtnCnAJE1qvwBHNxK6wWrema8HLudASwoLIiAXv6Al6843PgCr4An3wzVY5G ECDiE3/kGdkk+vcoq7Uz0r9H7RxvPs5aXexXZetB4iMTR8l7eDs6q07p8nYDzKrk IhlbexNTRMvaCAjv9NZzjarw4nPYYaegKG5tjTHuRQtBC8+g8tsu9ncYoNPdOoem Vxwu8mon8esOGeCXikHI8R+YqZIm28enpZmGFJ3OZ6ZEt+deYWhNjBf8Bbyk+FNy mm7j+1hKIyWFMJRl+rN87OuoE58FClElvpgQ8pCTrLLW6Nq+jkL4BajHzUNDAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUHgRrdBPb4CiH4JDXakzHciVNtAYwHwYDVR0j BBgwFoAUZjNfBIY8oRWdFtGOZVIxdk9vuCEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNVhRdkdOMlhabVd0b0d4a24zc1JzblhYQ1M2U3haSEZRcngzaEdhNjlF QWQvMS82NjMzNUYwNDg2M0NBMTE1OUQxNkQxOEU2NTUyMzE3NjRGNkZCODIxLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzY2MzM1RjA0ODYzQ0ExMTU5 RDE2RDE4RTY1NTIzMTc2NEY2RkI4MjEuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzVYUXZHTjJYWm1XdG9HeGtuM3NSc25YWENTNlN4WkhGUXJ4M2hHYTY5RUFkLzEv MzEzNzMwMmUzMjM0MzYyZTMxMzIzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzgzNjM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKq9oAwDQYJKoZIhvcNAQELBQADggEBAI0MfSNt W64gAAFpiUPdSayAsuNk6Mrf2MOX8NIWLO4kpEaKRP8GaQVYliGOjiGgz3vMEq7V bUeH3z2lVyPpK/oNzV3z6mgX96MMFJmnJNJMpVmzKgAH9zNmv25AubBPripUKPGS 0S/yN8qsAOAyAbvsnRpsIWa6VzIFcUB/R7XTDeFRFjEbr+Wl76MWMGe9RD4d4Htf AF1kwo7tlUflGKyelhEDZB8uCCoPM5Hqkff78faDqVDqiTEHm+jElk9g6V6wHq0Q N30cTBUNCEalV8pfPva0W6nGf1GZaHty/jTgvJOs7zZDWvHD/ECjTgfXSYMUiSHT jocSMmloF6445K8= -----END CERTIFICATE-----Generated at Sun Apr 13 05:41:11 2025 by rpki-client