$ rpki-client -vvf rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32372e302f32342d3234203d3e20323638303931.roa File: 34352e3136392e32372e302f32342d3234203d3e20323638303931.roa (raw, json) Hash identifier: QZ1czFjp/KYCDVWwmY9BJJWCgMum9qtWeDXC508grAU= Subject key identifier: C0:68:D1:D7:BF:E4:7E:45:2A:DE:2F:5E:CD:46:DE:91:83:01:36:62 Certificate issuer: /CN=3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF Certificate serial: 28957364BE281C4C23CB31AFFD8EA9C15BB7B03F Authority key identifier: 3C:9F:72:B9:D4:E7:CA:7E:EF:4F:D6:EA:F0:70:32:0A:18:60:9E:FF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.cer Subject info access: rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32372e302f32342d3234203d3e20323638303931.roa Signing time: Fri 14 Feb 2025 17:48:18 +0000 ROA not before: Fri 14 Feb 2025 17:43:18 +0000 ROA not after: Fri 13 Feb 2026 17:48:18 +0000 asID: 268091 IP address blocks: 45.169.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.crl rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 18 Feb 2025 20:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:95:73:64:be:28:1c:4c:23:cb:31:af:fd:8e:a9:c1:5b:b7:b0:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF Validity Not Before: Feb 14 17:43:18 2025 GMT Not After : Feb 13 17:48:18 2026 GMT Subject: CN=C068D1D7BFE47E452ADE2F5ECD46DE9183013662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:69:a8:84:d7:1b:72:fa:a1:fe:a7:6c:07:94: c9:e1:35:64:32:47:17:43:9b:0a:b3:d8:39:cb:21: 76:06:76:7c:46:46:20:ab:ba:85:e2:d8:53:9d:ce: 91:9e:44:19:64:76:50:58:97:6e:9a:39:16:a3:87: 6b:8d:a3:23:df:c6:bb:c4:6d:0a:da:eb:29:d4:5e: c6:9b:f1:4f:a3:03:d2:cb:c4:69:41:4a:56:e9:e7: 38:af:99:dd:33:72:c0:e8:40:68:cd:b3:07:f4:e3: fb:39:6a:91:eb:a3:c1:4b:30:33:94:83:84:54:bb: b6:fe:e7:b7:68:25:30:f1:42:6f:78:c6:7e:89:f9: 37:72:14:11:a7:f2:9f:b1:cc:b2:df:b6:2a:64:09: b9:98:29:23:8a:b1:4e:d0:57:95:c1:5f:20:fa:05: 8f:30:70:c6:78:e7:f2:96:6f:ac:07:05:39:17:77: bd:27:03:25:a1:38:04:4e:6a:2c:81:39:36:bb:a9: c5:ac:02:09:27:9d:c8:b1:4d:c7:dd:a9:d5:5a:2b: e8:e5:8d:20:7e:c9:0e:9b:82:b9:b9:c5:98:d8:3f: 12:10:a8:72:ae:1d:f8:57:91:73:0e:03:0f:13:e9: 35:21:1b:8f:af:7d:cf:e2:26:7a:77:5e:82:43:82: 60:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:68:D1:D7:BF:E4:7E:45:2A:DE:2F:5E:CD:46:DE:91:83:01:36:62 X509v3 Authority Key Identifier: keyid:3C:9F:72:B9:D4:E7:CA:7E:EF:4F:D6:EA:F0:70:32:0A:18:60:9E:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3C9F72B9D4E7CA7EEF4FD6EAF070320A18609EFF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7a8KTNaRLfS1gR9x49puubkt9znfMNhueKh2VeWK5gE8/0/34352e3136392e32372e302f32342d3234203d3e20323638303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.169.27.0/24 Signature Algorithm: sha256WithRSAEncryption 54:d3:f7:23:26:f3:df:cb:6f:62:a5:ab:05:67:df:ca:83:ed: 6b:15:a9:22:a3:af:84:ca:c9:5a:c4:97:6e:7b:09:6c:00:67: e2:5c:1e:29:ec:4a:4b:4e:d2:f2:c7:9d:19:e1:2a:a0:f5:32: 73:ca:11:58:8d:8a:ba:76:80:1c:81:9e:bb:3a:b8:68:94:e8: 96:89:c4:68:df:b4:b5:ee:f8:77:5f:ed:c4:f7:a6:7b:26:29: 5e:41:43:55:17:be:20:92:f6:df:97:2d:34:6f:7f:21:fb:fb: 17:b0:f8:fa:53:d8:54:25:0b:dd:5b:f8:c6:5f:70:93:52:20: 5a:87:f0:b2:2b:58:ea:cc:5a:52:1d:ac:88:4d:6c:9a:8a:fd: 14:06:45:a3:48:f9:c1:13:58:98:eb:1b:ce:7e:af:da:c7:f3: ae:6c:a6:f7:81:77:d3:a0:62:c1:a9:02:d4:70:30:9d:1f:b3: 97:a1:d7:5f:df:63:6d:d1:8b:72:25:4c:7b:11:e0:33:53:41: de:bd:59:11:06:7e:d3:ba:5f:01:50:d0:1e:86:71:c6:86:53: 29:8f:24:17:d8:36:c4:a6:1a:4b:61:91:ab:4b:48:d1:c2:72: 88:06:65:12:84:c6:b4:26:21:6a:d1:f7:f5:90:b0:95:16:59: d6:ad:62:a2 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUKJVzZL4oHEwjyzGv/Y6pwVu3sD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5RjcyQjlENEU3Q0E3RUVGNEZENkVBRjA3MDMyMEEx ODYwOUVGRjAeFw0yNTAyMTQxNzQzMThaFw0yNjAyMTMxNzQ4MThaMDMxMTAvBgNV BAMTKEMwNjhEMUQ3QkZFNDdFNDUyQURFMkY1RUNENDZERTkxODMwMTM2NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpaaiE1xty+qH+p2wHlMnhNWQy RxdDmwqz2DnLIXYGdnxGRiCruoXi2FOdzpGeRBlkdlBYl26aORajh2uNoyPfxrvE bQra6ynUXsab8U+jA9LLxGlBSlbp5zivmd0zcsDoQGjNswf04/s5apHro8FLMDOU g4RUu7b+57doJTDxQm94xn6J+TdyFBGn8p+xzLLftipkCbmYKSOKsU7QV5XBXyD6 BY8wcMZ45/KWb6wHBTkXd70nAyWhOAROaiyBOTa7qcWsAgknncixTcfdqdVaK+jl jSB+yQ6bgrm5xZjYPxIQqHKuHfhXkXMOAw8T6TUhG4+vfc/iJnp3XoJDgmA1AgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUwGjR17/kfkUq3i9ezUbekYMBNmIwHwYDVR0j BBgwFoAUPJ9yudTnyn7vT9bq8HAyChhgnv8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN2E4S1ROYVJMZlMxZ1I5eDQ5cHV1Ymt0OXpuZk1OaHVlS2gyVmVXSzVn RTgvMC8zQzlGNzJCOUQ0RTdDQTdFRUY0RkQ2RUFGMDcwMzIwQTE4NjA5RUZGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNDOUY3MkI5RDRFN0NBN0VF RjRGRDZFQUYwNzAzMjBBMTg2MDlFRkYuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzdhOEtUTmFSTGZTMWdSOXg0OXB1dWJrdDl6bmZNTmh1ZUtoMlZlV0s1Z0U4LzAv MzQzNTJlMzEzNjM5MmUzMjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM4 MzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQALakbMA0GCSqGSIb3DQEBCwUAA4IBAQBU0/cjJvPf y29ipasFZ9/Kg+1rFakio6+EyslaxJduewlsAGfiXB4p7EpLTtLyx50Z4Sqg9TJz yhFYjYq6doAcgZ67OrholOiWicRo37S17vh3X+3E96Z7JileQUNVF74gkvbfly00 b38h+/sXsPj6U9hUJQvdW/jGX3CTUiBah/CyK1jqzFpSHayITWyaiv0UBkWjSPnB E1iY6xvOfq/ax/OubKb3gXfToGLBqQLUcDCdH7OXoddf32Nt0YtyJUx7EeAzU0He vVkRBn7Tul8BUNAehnHGhlMpjyQX2DbEphpLYZGrS0jRwnKIBmUShMa0JiFq0ff1 kLCVFlnWrWKi -----END CERTIFICATE-----Generated at Tue Feb 18 13:28:37 2025 by rpki-client