$ rpki-client -vvf rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/3136382e3138312e3230302e302f32322d3234203d3e20323635333434.roa File: 3136382e3138312e3230302e302f32322d3234203d3e20323635333434.roa (raw, json) Hash identifier: zMA1qZMtxdFHgVD1RtpPHbqRk0ZCBnEGX7PlSSdjefI= Subject key identifier: B0:AA:0F:4E:72:F4:68:7D:23:B7:03:32:94:4B:4D:05:3E:20:F1:B9 Certificate issuer: /CN=71E169D36940CB71A5ADBB76D2764F1539336D84 Certificate serial: 0B6A091C45ECE61E13C1A662853043F206293A91 Authority key identifier: 71:E1:69:D3:69:40:CB:71:A5:AD:BB:76:D2:76:4F:15:39:33:6D:84 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71E169D36940CB71A5ADBB76D2764F1539336D84.cer Subject info access: rsync://rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/3136382e3138312e3230302e302f32322d3234203d3e20323635333434.roa Signing time: Thu 06 Mar 2025 21:41:35 +0000 ROA not before: Thu 06 Mar 2025 21:36:35 +0000 ROA not after: Thu 05 Mar 2026 21:41:35 +0000 asID: 265344 IP address blocks: 168.181.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/71E169D36940CB71A5ADBB76D2764F1539336D84.crl rsync://rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/71E169D36940CB71A5ADBB76D2764F1539336D84.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71E169D36940CB71A5ADBB76D2764F1539336D84.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 14:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6a:09:1c:45:ec:e6:1e:13:c1:a6:62:85:30:43:f2:06:29:3a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71E169D36940CB71A5ADBB76D2764F1539336D84 Validity Not Before: Mar 6 21:36:35 2025 GMT Not After : Mar 5 21:41:35 2026 GMT Subject: CN=B0AA0F4E72F4687D23B70332944B4D053E20F1B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:eb:07:31:9d:c9:3a:e9:48:31:da:e9:2c: 72:c3:c4:b2:78:9e:9d:af:d9:fa:bb:90:be:35:4b: 90:a3:f4:c5:24:d1:8c:c7:4f:34:0a:7b:04:5d:7c: be:85:27:75:19:5a:16:6d:db:f7:4b:2c:8a:80:0a: b6:0a:b6:db:a7:e0:15:26:b6:a9:82:b0:91:ca:d9: 15:26:b7:44:e8:c1:84:43:8d:0f:7b:0e:b3:74:15: 58:a3:94:23:00:e1:eb:74:d4:59:78:4f:1c:b5:30: c2:be:22:0e:32:18:f4:56:90:03:cf:2e:3a:6b:e2: f0:c9:99:f1:0f:fd:9e:54:5d:69:bc:2b:d7:d7:ef: 31:01:9c:1e:3f:91:ab:31:9a:f4:9a:9e:fd:48:d1: 46:6f:c0:64:16:6b:28:7c:d6:d8:a2:be:f4:b0:46: 1d:90:09:82:ab:1e:ea:35:4c:c7:8c:55:51:ee:07: b6:3e:64:d9:ac:4e:46:82:86:1a:0d:fa:c1:2c:1c: a5:e6:38:49:df:6d:cb:1e:de:da:3f:92:65:2a:14: 08:5a:8a:b0:78:aa:51:92:f0:44:bf:e2:12:55:f6: 9b:02:ea:a8:b1:a6:60:ae:6b:01:39:2e:32:e8:99: 4c:0a:a7:ce:f1:b9:4b:11:88:44:e7:bb:de:fe:96: d1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AA:0F:4E:72:F4:68:7D:23:B7:03:32:94:4B:4D:05:3E:20:F1:B9 X509v3 Authority Key Identifier: keyid:71:E1:69:D3:69:40:CB:71:A5:AD:BB:76:D2:76:4F:15:39:33:6D:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/71E169D36940CB71A5ADBB76D2764F1539336D84.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/71E169D36940CB71A5ADBB76D2764F1539336D84.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7jkfUhbhdxHvKqKhW2wND8HmY4sJQz7u27BEYy8EQwL5/1/3136382e3138312e3230302e302f32322d3234203d3e20323635333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.181.200.0/22 Signature Algorithm: sha256WithRSAEncryption 62:7f:d1:10:f4:75:58:06:34:99:17:a7:7a:d1:20:8d:7c:cc: ec:a6:15:d6:17:e9:c5:f1:79:2c:95:aa:ae:51:89:cf:ec:36: 7a:66:29:19:68:41:09:1c:60:4e:13:67:fa:d0:4b:c4:e8:37: 67:d6:87:63:82:ea:2f:2c:52:b7:02:75:19:a9:98:e3:bb:08: 53:87:e8:4d:f6:f8:95:85:73:37:d7:d5:e2:a7:57:e9:95:4a: fc:07:3f:2b:cb:9d:c6:cb:e8:d1:81:77:19:c6:25:ad:94:68: 9f:d0:a6:f1:7e:6d:dc:ad:93:0f:f9:83:d8:2b:62:b1:7a:34: 06:90:a2:5a:99:02:e5:bd:c9:c2:f3:3a:02:6a:09:63:37:cb: 1d:66:73:c1:30:b9:63:6d:36:11:07:26:5b:85:c2:3c:eb:77: 38:67:57:ef:39:f9:0f:f0:da:4c:69:e3:d8:3b:d3:42:c8:9a: 71:f7:20:82:f7:81:d9:c0:a3:ef:2f:75:ae:5c:60:45:32:c4: 03:b7:45:17:b5:80:50:1a:c0:e6:46:49:95:05:f7:ff:39:dc: 31:6f:22:44:e5:f5:aa:74:d7:b8:f2:8d:c2:0a:2b:3a:17:97: 15:93:0e:f7:bb:ff:66:d8:c4:13:cb:5a:c3:01:57:7c:74:f6: 83:e5:a3:81 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUC2oJHEXs5h4TwaZihTBD8gYpOpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFFMTY5RDM2OTQwQ0I3MUE1QURCQjc2RDI3NjRGMTUz OTMzNkQ4NDAeFw0yNTAzMDYyMTM2MzVaFw0yNjAzMDUyMTQxMzVaMDMxMTAvBgNV BAMTKEIwQUEwRjRFNzJGNDY4N0QyM0I3MDMzMjk0NEI0RDA1M0UyMEYxQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqh+sHMZ3JOulIMdrpLHLDxLJ4 np2v2fq7kL41S5Cj9MUk0YzHTzQKewRdfL6FJ3UZWhZt2/dLLIqACrYKttun4BUm tqmCsJHK2RUmt0TowYRDjQ97DrN0FVijlCMA4et01Fl4Txy1MMK+Ig4yGPRWkAPP Ljpr4vDJmfEP/Z5UXWm8K9fX7zEBnB4/kasxmvSanv1I0UZvwGQWayh81tiivvSw Rh2QCYKrHuo1TMeMVVHuB7Y+ZNmsTkaChhoN+sEsHKXmOEnfbcse3to/kmUqFAha irB4qlGS8ES/4hJV9psC6qixpmCuawE5LjLomUwKp87xuUsRiETnu97+ltHzAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUsKoPTnL0aH0jtwMylEtNBT4g8bkwHwYDVR0j BBgwFoAUceFp02lAy3Glrbt20nZPFTkzbYQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN2prZlVoYmhkeEh2S3FLaFcyd05EOEhtWTRzSlF6N3UyN0JFWXk4RVF3 TDUvMS83MUUxNjlEMzY5NDBDQjcxQTVBREJCNzZEMjc2NEYxNTM5MzM2RDg0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxRTE2OUQzNjk0MENCNzFB NUFEQkI3NkQyNzY0RjE1MzkzMzZEODQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzdqa2ZVaGJoZHhIdktxS2hXMndORDhIbVk0c0pRejd1MjdCRVl5OEVRd0w1LzEv MzEzNjM4MmUzMTM4MzEyZTMyMzAzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNTMzMzQzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqi1yDANBgkqhkiG9w0BAQsFAAOCAQEAYn/R EPR1WAY0mRenetEgjXzM7KYV1hfpxfF5LJWqrlGJz+w2emYpGWhBCRxgThNn+tBL xOg3Z9aHY4LqLyxStwJ1GamY47sIU4foTfb4lYVzN9fV4qdX6ZVK/Ac/K8udxsvo 0YF3GcYlrZRon9Cm8X5t3K2TD/mD2CtisXo0BpCiWpkC5b3JwvM6AmoJYzfLHWZz wTC5Y202EQcmW4XCPOt3OGdX7zn5D/DaTGnj2DvTQsiacfcggveB2cCj7y91rlxg RTLEA7dFF7WAUBrA5kZJlQX3/zncMW8iROX1qnTXuPKNwgorOheXFZMO97v/ZtjE E8tawwFXfHT2g+WjgQ== -----END CERTIFICATE-----Generated at Tue Apr 22 03:27:19 2025 by rpki-client