$ rpki-client -vvf rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/3133312e3232312e3136312e302f32342d3234203d3e20323634343334.roa File: 3133312e3232312e3136312e302f32342d3234203d3e20323634343334.roa (raw, json) Hash identifier: kDHDc5IYq/3VW2mYkE2K198q34y+Xyx59YwWlH1LDUM= Subject key identifier: 7A:DD:B6:A2:2F:94:0A:53:F8:04:07:60:C0:4E:B6:53:FE:04:8E:A0 Certificate issuer: /CN=37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3 Certificate serial: 4A8A4DA6DDC9F9EAFEC82BE941C9140EC92E95EA Authority key identifier: 37:B0:CE:78:D8:38:B2:0B:91:5D:43:A1:A6:B7:F4:8D:3A:B1:B2:A3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.cer Subject info access: rsync://rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/3133312e3232312e3136312e302f32342d3234203d3e20323634343334.roa Signing time: Thu 06 Mar 2025 04:00:12 +0000 ROA not before: Thu 06 Mar 2025 03:55:12 +0000 ROA not after: Thu 05 Mar 2026 04:00:12 +0000 asID: 264434 IP address blocks: 131.221.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.crl rsync://rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 20:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:8a:4d:a6:dd:c9:f9:ea:fe:c8:2b:e9:41:c9:14:0e:c9:2e:95:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3 Validity Not Before: Mar 6 03:55:12 2025 GMT Not After : Mar 5 04:00:12 2026 GMT Subject: CN=7ADDB6A22F940A53F8040760C04EB653FE048EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ed:40:95:ff:24:56:ed:22:2d:4c:5b:9b:ba: d7:b6:5a:9c:c5:fa:10:cc:c0:dc:4a:d0:bd:b5:a2: ec:db:e2:97:04:3a:90:1a:65:69:85:b7:3d:5b:29: 92:2f:e5:17:3f:9e:e7:e0:ab:b5:bf:19:bb:6a:0d: b9:7f:8c:43:01:95:3c:a1:6a:df:5b:e2:78:68:f5: 35:ac:2d:3f:d0:02:59:62:28:a7:75:c1:c0:a4:e7: 7f:9b:94:4e:2c:2c:5a:0d:50:f9:f2:c7:3b:5c:45: 50:38:56:d0:f7:03:02:c1:5f:f8:f0:f6:9e:59:bc: e9:c5:55:14:a6:70:a2:68:f1:32:34:ba:7c:6a:6f: ea:03:26:ec:70:77:d6:0d:69:4d:d2:e0:bd:df:75: 15:23:e2:a4:96:c3:68:d7:71:33:0c:cf:70:7d:6b: 57:f0:89:9b:7a:9f:f8:62:dd:1e:99:0c:45:e2:a8: 0a:67:dc:dc:2c:2d:59:42:a3:5d:36:8f:03:7d:35: 4b:0b:ec:27:94:31:cd:ec:53:d4:97:c5:f6:03:e1: e9:13:75:5d:4b:d4:aa:ea:f4:46:c9:1f:1b:46:9a: b5:f8:fb:64:ac:77:c5:58:8a:ec:b0:e6:e0:fa:b2: 26:e1:00:c9:a5:ad:69:56:76:6b:38:43:55:81:ef: 45:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DD:B6:A2:2F:94:0A:53:F8:04:07:60:C0:4E:B6:53:FE:04:8E:A0 X509v3 Authority Key Identifier: keyid:37:B0:CE:78:D8:38:B2:0B:91:5D:43:A1:A6:B7:F4:8D:3A:B1:B2:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/37B0CE78D838B20B915D43A1A6B7F48D3AB1B2A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/6FdqBe5cyCX7eqh9b9dRrifyZYu6WqPCrzZw4BLTbCCG/1/3133312e3232312e3136312e302f32342d3234203d3e20323634343334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.221.161.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:b0:64:3b:82:7e:9f:80:01:c6:e2:1d:19:2c:4c:c6:60:af: 49:ee:95:4e:ed:21:df:a7:de:05:d6:77:33:e6:7b:12:99:d2: f8:ed:6b:d7:93:fa:93:a9:48:99:36:30:35:80:ce:18:2e:c9: c0:7f:85:c4:b7:14:21:ff:60:c1:5b:84:39:c2:6d:ad:76:c6: a9:6d:27:bb:a9:df:ea:fd:47:9e:8a:f0:fe:45:23:26:96:91: e1:34:cb:11:80:c5:f5:98:2a:74:90:81:07:13:22:df:11:9f: 26:42:da:eb:0d:db:2c:5f:63:59:aa:f6:35:af:68:b1:73:c4: 18:55:af:51:42:21:2a:c8:4c:8b:e0:14:45:0a:3b:84:5c:0d: a6:6b:fd:73:bf:95:aa:96:83:ae:b8:f3:eb:0b:d2:a7:fc:eb: 87:8a:aa:3d:b5:41:11:e9:8d:fe:c1:44:57:e9:1f:45:c7:cc: 9e:26:d1:4a:f4:44:87:38:25:dc:9d:55:4a:19:2c:2a:af:8d: c0:dc:17:fe:9d:86:8e:de:82:e2:d3:eb:7e:75:1c:71:f6:19: 9e:97:e1:8a:5a:1c:8b:f4:de:01:b3:9a:83:f7:cc:1a:24:51: 28:e4:6f:71:de:e9:87:74:c4:cc:5b:5b:2f:01:05:de:68:a0: 3c:2e:b4:f4 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUSopNpt3J+er+yCvpQckUDskuleowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdCMENFNzhEODM4QjIwQjkxNUQ0M0ExQTZCN0Y0OEQz QUIxQjJBMzAeFw0yNTAzMDYwMzU1MTJaFw0yNjAzMDUwNDAwMTJaMDMxMTAvBgNV BAMTKDdBRERCNkEyMkY5NDBBNTNGODA0MDc2MEMwNEVCNjUzRkUwNDhFQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7UCV/yRW7SItTFubute2WpzF +hDMwNxK0L21ouzb4pcEOpAaZWmFtz1bKZIv5Rc/nufgq7W/GbtqDbl/jEMBlTyh at9b4nho9TWsLT/QAlliKKd1wcCk53+blE4sLFoNUPnyxztcRVA4VtD3AwLBX/jw 9p5ZvOnFVRSmcKJo8TI0unxqb+oDJuxwd9YNaU3S4L3fdRUj4qSWw2jXcTMMz3B9 a1fwiZt6n/hi3R6ZDEXiqApn3NwsLVlCo102jwN9NUsL7CeUMc3sU9SXxfYD4ekT dV1L1Krq9EbJHxtGmrX4+2Ssd8VYiuyw5uD6sibhAMmlrWlWdms4Q1WB70XfAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUet22oi+UClP4BAdgwE62U/4EjqAwHwYDVR0j BBgwFoAUN7DOeNg4sguRXUOhprf0jTqxsqMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNkZkcUJlNWN5Q1g3ZXFoOWI5ZFJyaWZ5Wll1NldxUENyelp3NEJMVGJD Q0cvMS8zN0IwQ0U3OEQ4MzhCMjBCOTE1RDQzQTFBNkI3RjQ4RDNBQjFCMkEzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzM3QjBDRTc4RDgzOEIyMEI5 MTVENDNBMUE2QjdGNDhEM0FCMUIyQTMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzZGZHFCZTVjeUNYN2VxaDliOWRScmlmeVpZdTZXcVBDcnpadzRCTFRiQ0NHLzEv MzEzMzMxMmUzMjMyMzEyZTMxMzYzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNDM0MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIPdoTANBgkqhkiG9w0BAQsFAAOCAQEAO7Bk O4J+n4ABxuIdGSxMxmCvSe6VTu0h36feBdZ3M+Z7EpnS+O1r15P6k6lImTYwNYDO GC7JwH+FxLcUIf9gwVuEOcJtrXbGqW0nu6nf6v1Hnorw/kUjJpaR4TTLEYDF9Zgq dJCBBxMi3xGfJkLa6w3bLF9jWar2Na9osXPEGFWvUUIhKshMi+AURQo7hFwNpmv9 c7+VqpaDrrjz6wvSp/zrh4qqPbVBEemN/sFEV+kfRcfMnibRSvREhzgl3J1VShks Kq+NwNwX/p2Gjt6C4tPrfnUccfYZnpfhiloci/TeAbOag/fMGiRRKORvcd7ph3TE zFtbLwEF3migPC609A== -----END CERTIFICATE-----Generated at Mon Apr 14 02:43:58 2025 by rpki-client