$ rpki-client -vvf rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/3132382e3230312e35322e302f32322d3232203d3e20323636363238.roa File: 3132382e3230312e35322e302f32322d3232203d3e20323636363238.roa (raw, json) Hash identifier: GAYQNYQ+EJ7m4nBAAGtD6GrlyRzCCO3eoWY9GXWCVQE= Subject key identifier: E4:8F:BD:9B:42:88:70:AC:F4:28:28:1C:85:AB:AC:3F:10:4E:F1:D5 Certificate issuer: /CN=9CFB76D20D558F08024B5656A94D7209D3BD1F09 Certificate serial: 4BD7A26C03E0121DAE5BA83C15D58D5786490618 Authority key identifier: 9C:FB:76:D2:0D:55:8F:08:02:4B:56:56:A9:4D:72:09:D3:BD:1F:09 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.cer Subject info access: rsync://rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/3132382e3230312e35322e302f32322d3232203d3e20323636363238.roa Signing time: Wed 05 Mar 2025 19:00:07 +0000 ROA not before: Wed 05 Mar 2025 18:55:07 +0000 ROA not after: Wed 04 Mar 2026 19:00:07 +0000 asID: 266628 IP address blocks: 128.201.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.crl rsync://rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 22:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d7:a2:6c:03:e0:12:1d:ae:5b:a8:3c:15:d5:8d:57:86:49:06:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CFB76D20D558F08024B5656A94D7209D3BD1F09 Validity Not Before: Mar 5 18:55:07 2025 GMT Not After : Mar 4 19:00:07 2026 GMT Subject: CN=E48FBD9B428870ACF428281C85ABAC3F104EF1D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f6:af:51:c3:8f:ea:57:93:c7:2c:5b:90:92: 0e:a2:0a:52:84:bd:07:94:2e:2c:3d:6c:27:42:04: 57:8f:8a:1f:cd:a1:f5:a7:d3:92:f8:86:7c:a6:af: ea:00:28:45:1a:21:78:ee:0f:2f:f0:40:8d:30:f2: 13:05:91:ad:51:d4:d4:52:c3:de:47:a9:96:df:49: cf:fe:2f:bc:da:7a:bb:c4:40:d7:b5:e8:be:84:96: 8e:49:72:43:1a:cf:b2:96:ff:1f:96:f4:04:6f:6c: 27:79:25:52:2c:c5:5e:52:a7:68:fc:c5:ad:2e:14: 0b:34:55:fb:2d:e4:13:ff:03:a1:04:3c:fd:78:5f: f0:32:95:18:65:a5:51:43:a2:2b:45:af:dc:69:fd: 98:e2:00:8b:68:51:02:82:05:aa:03:3d:a2:41:27: 13:09:87:65:ec:79:8c:53:9a:44:e4:7f:41:c3:0f: e7:6a:6f:3d:48:3c:1c:b2:d3:dd:11:a3:b0:24:55: e2:a6:58:b3:88:22:b6:20:c3:f7:be:d4:7c:63:6c: 85:16:93:07:ba:20:9f:1b:88:e0:a4:07:02:a4:89: ca:36:16:1b:f3:7e:51:1c:0f:18:d3:f1:7b:ae:1c: 32:ac:dc:e6:02:4b:3d:f6:51:6a:5c:af:d4:55:3c: 8c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8F:BD:9B:42:88:70:AC:F4:28:28:1C:85:AB:AC:3F:10:4E:F1:D5 X509v3 Authority Key Identifier: keyid:9C:FB:76:D2:0D:55:8F:08:02:4B:56:56:A9:4D:72:09:D3:BD:1F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9CFB76D20D558F08024B5656A94D7209D3BD1F09.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7uf5smC91d3vaox2z1Lw7v2TUSDf5K7bkggvEzF4NePA/1/3132382e3230312e35322e302f32322d3232203d3e20323636363238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.201.52.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:e1:e6:79:99:30:67:ba:d7:da:87:27:9d:0e:70:d0:a8:5a: f0:e0:53:d4:39:c9:e5:3e:59:e9:2a:fe:aa:8b:85:fe:3a:19: 33:80:38:d3:3f:a0:fc:b2:02:7a:da:cb:6e:7b:90:29:fb:9e: 09:fb:51:02:41:ae:34:b7:77:c3:1b:a6:f9:57:3c:d0:d3:62: 8f:d1:53:b2:68:cb:0a:ae:29:93:8e:fb:a8:93:f6:2d:60:3a: 2a:e2:af:90:0e:2d:b7:77:13:6f:df:4c:6b:f1:72:f3:09:38: 3d:d6:5c:da:e7:77:ce:89:7f:7a:0d:8f:8c:bb:5f:93:08:d4: a4:e5:2b:4a:fe:fd:a2:d7:89:24:3d:d2:ec:8f:9e:79:da:2a: 7a:51:33:fd:ea:f7:b3:8d:55:2d:c6:c4:dc:bc:37:7c:65:6b: 43:75:e9:2e:3e:aa:9b:61:9f:fa:46:25:2c:cd:9e:8b:74:3d: bc:1f:6a:34:fa:32:ed:0e:c9:29:11:12:f3:19:12:11:7f:f8: 50:9f:0c:5d:24:3e:17:8e:4f:8b:24:a8:ec:73:66:73:7f:0b: ce:02:f0:6a:ad:0f:1c:64:38:7c:b6:78:d1:2a:00:eb:8b:da: 09:d9:0c:b7:47:c0:85:9e:74:ad:07:95:30:a0:00:3d:4b:d0: f5:85:b1:85 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUS9eibAPgEh2uW6g8FdWNV4ZJBhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNGQjc2RDIwRDU1OEYwODAyNEI1NjU2QTk0RDcyMDlE M0JEMUYwOTAeFw0yNTAzMDUxODU1MDdaFw0yNjAzMDQxOTAwMDdaMDMxMTAvBgNV BAMTKEU0OEZCRDlCNDI4ODcwQUNGNDI4MjgxQzg1QUJBQzNGMTA0RUYxRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL9q9Rw4/qV5PHLFuQkg6iClKE vQeULiw9bCdCBFePih/NofWn05L4hnymr+oAKEUaIXjuDy/wQI0w8hMFka1R1NRS w95HqZbfSc/+L7zaervEQNe16L6Elo5JckMaz7KW/x+W9ARvbCd5JVIsxV5Sp2j8 xa0uFAs0Vfst5BP/A6EEPP14X/AylRhlpVFDoitFr9xp/ZjiAItoUQKCBaoDPaJB JxMJh2XseYxTmkTkf0HDD+dqbz1IPByy090Ro7AkVeKmWLOIIrYgw/e+1HxjbIUW kwe6IJ8biOCkBwKkico2FhvzflEcDxjT8XuuHDKs3OYCSz32UWpcr9RVPIzlAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU5I+9m0KIcKz0KCgchausPxBO8dUwHwYDVR0j BBgwFoAUnPt20g1VjwgCS1ZWqU1yCdO9HwkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN3VmNXNtQzkxZDN2YW94MnoxTHc3djJUVVNEZjVLN2JrZ2d2RXpGNE5l UEEvMS85Q0ZCNzZEMjBENTU4RjA4MDI0QjU2NTZBOTRENzIwOUQzQkQxRjA5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzlDRkI3NkQyMEQ1NThGMDgw MjRCNTY1NkE5NEQ3MjA5RDNCRDFGMDkuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzd1ZjVzbUM5MWQzdmFveDJ6MUx3N3YyVFVTRGY1Szdia2dndkV6RjROZVBBLzEv MzEzMjM4MmUzMjMwMzEyZTM1MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM2 MzYzNjMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKAyTQwDQYJKoZIhvcNAQELBQADggEBABvh5nmZ MGe619qHJ50OcNCoWvDgU9Q5yeU+Wekq/qqLhf46GTOAONM/oPyyAnray257kCn7 ngn7UQJBrjS3d8MbpvlXPNDTYo/RU7JoywquKZOO+6iT9i1gOirir5AOLbd3E2/f TGvxcvMJOD3WXNrnd86Jf3oNj4y7X5MI1KTlK0r+/aLXiSQ90uyPnnnaKnpRM/3q 97ONVS3GxNy8N3xla0N16S4+qpthn/pGJSzNnot0PbwfajT6Mu0OySkREvMZEhF/ +FCfDF0kPheOT4skqOxzZnN/C84C8GqtDxxkOHy2eNEqAOuL2gnZDLdHwIWedK0H lTCgAD1L0PWFsYU= -----END CERTIFICATE-----Generated at Fri Apr 18 08:25:04 2025 by rpki-client