$ rpki-client -vvf rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137312e302f32342d3234203d3e20323633353038.roa File: 3139312e3234332e3137312e302f32342d3234203d3e20323633353038.roa (raw, json) Hash identifier: Y26mSbhdZV5hA4TVKXezd3nwZMtVkiF0zAvynXcZT5A= Subject key identifier: 00:76:87:A2:AD:2C:08:3F:08:69:73:29:1B:BF:47:EC:9C:E3:16:74 Certificate issuer: /CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Certificate serial: 302A1F5E47E33782D2DE1AF8B5E7EE9082EDCE40 Authority key identifier: 02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject info access: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137312e302f32342d3234203d3e20323633353038.roa Signing time: Thu 27 Feb 2025 15:57:32 +0000 ROA not before: Thu 27 Feb 2025 15:52:32 +0000 ROA not after: Thu 26 Feb 2026 15:57:32 +0000 asID: 263508 IP address blocks: 191.243.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 16:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:2a:1f:5e:47:e3:37:82:d2:de:1a:f8:b5:e7:ee:90:82:ed:ce:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Validity Not Before: Feb 27 15:52:32 2025 GMT Not After : Feb 26 15:57:32 2026 GMT Subject: CN=007687A2AD2C083F086973291BBF47EC9CE31674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d3:7f:37:4e:e2:1c:42:d0:47:a1:5d:ff:64: 98:41:f6:c1:1f:08:46:f1:ab:a3:aa:8e:39:83:52: 30:3c:21:0e:d5:9a:db:cd:83:8b:cc:5f:7c:c9:66: 06:f7:e9:16:6f:7a:cd:af:d0:b8:c0:2d:fc:98:ee: cc:9f:cb:bb:71:36:e9:28:57:e1:61:9b:78:0f:75: 78:e4:71:cc:ae:a9:e7:08:05:fc:dd:c0:82:42:d8: ee:85:19:a1:35:1f:f5:5a:fc:ec:11:38:4c:ca:aa: 0f:4e:13:46:3d:f7:2b:56:32:be:f8:1f:3a:9b:22: 09:39:88:f3:31:49:e8:91:aa:71:30:fd:8d:0e:93: 3a:43:8b:93:ea:ca:65:c9:23:ab:12:89:a8:78:6d: 69:cd:ae:f7:9a:96:55:94:a5:09:0a:14:f8:fe:ba: c4:d4:59:4c:93:aa:9e:5e:1b:93:75:63:1a:93:53: 99:01:d8:d8:55:91:72:77:39:08:cd:ed:fd:bf:b4: ab:02:48:67:f0:82:c3:47:e4:cc:92:68:b9:ac:3a: 1b:8a:0e:da:a3:ac:16:70:91:17:e8:4e:6c:13:79: 6b:c6:e8:48:92:b8:df:75:c3:69:6b:c5:f3:f5:47: d1:ad:8a:60:07:21:22:54:b1:6d:2c:c6:9c:7f:f1: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:76:87:A2:AD:2C:08:3F:08:69:73:29:1B:BF:47:EC:9C:E3:16:74 X509v3 Authority Key Identifier: keyid:02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137312e302f32342d3234203d3e20323633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.243.171.0/24 Signature Algorithm: sha256WithRSAEncryption 67:4c:dd:dd:aa:bd:81:65:7c:e6:e8:46:c6:4c:14:a1:d1:eb: 53:6d:5c:18:00:92:b1:c3:e9:8e:b5:19:2d:b4:b2:9f:d5:73: b8:37:0e:ca:f2:b2:1b:d7:d2:29:80:54:54:1c:89:96:9f:9e: ae:c8:e9:67:41:d2:12:a9:24:37:57:aa:13:9c:23:cf:9d:f1: 53:07:be:ef:19:a9:b6:44:3c:3f:ae:b1:ca:71:62:2b:2e:f0: 0d:b9:16:2c:53:7d:dd:6d:ce:c9:b3:7e:9d:6a:9f:38:7f:f1: 06:fd:33:a4:57:1e:90:57:b2:9b:17:2f:3a:24:9f:e7:76:4d: 17:e2:f9:bd:2b:86:f4:b2:e8:8a:97:78:a3:17:e1:df:1f:e2: 6a:35:56:ce:9e:36:36:63:42:ab:81:fd:29:35:3c:86:0e:f8: b0:a3:d7:61:e9:42:11:13:22:59:86:f0:f1:a7:96:e7:75:0c: 56:ab:4a:a1:b0:a9:1a:df:c0:ec:2e:68:b3:a3:b6:e1:9e:f4: 91:1c:33:8e:da:42:65:e3:3c:e7:25:0d:15:75:e0:15:ab:87: 59:00:e4:a1:9e:ef:b6:f5:cc:a1:8a:d4:0e:0a:c1:81:ce:8a: 4a:0e:5a:cc:46:1e:3d:28:22:91:0a:40:76:3f:1c:5b:ce:f5: 4c:f2:c8:e9 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUMCofXkfjN4LS3hr4tefukILtzkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4Q0RFMEU3NjRBQTg3RjUxQzgzRTI2MDhCODU2MkI3 MkI0RTIwNDAeFw0yNTAyMjcxNTUyMzJaFw0yNjAyMjYxNTU3MzJaMDMxMTAvBgNV BAMTKDAwNzY4N0EyQUQyQzA4M0YwODY5NzMyOTFCQkY0N0VDOUNFMzE2NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC20383TuIcQtBHoV3/ZJhB9sEf CEbxq6OqjjmDUjA8IQ7VmtvNg4vMX3zJZgb36RZves2v0LjALfyY7syfy7txNuko V+Fhm3gPdXjkccyuqecIBfzdwIJC2O6FGaE1H/Va/OwROEzKqg9OE0Y99ytWMr74 HzqbIgk5iPMxSeiRqnEw/Y0OkzpDi5PqymXJI6sSiah4bWnNrveallWUpQkKFPj+ usTUWUyTqp5eG5N1YxqTU5kB2NhVkXJ3OQjN7f2/tKsCSGfwgsNH5MySaLmsOhuK DtqjrBZwkRfoTmwTeWvG6EiSuN91w2lrxfP1R9GtimAHISJUsW0sxpx/8QOTAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUAHaHoq0sCD8IaXMpG79H7JzjFnQwHwYDVR0j BBgwFoAUAozeDnZKqH9RyD4mCLhWK3K04gQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN3p0UG43emNTOURlSHlraVhQRGVSYThNNk1FWjZQM3gyNXRzWnlWRDVD Vm4vMC8wMjhDREUwRTc2NEFBODdGNTFDODNFMjYwOEI4NTYyQjcyQjRFMjA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAyOENERTBFNzY0QUE4N0Y1 MUM4M0UyNjA4Qjg1NjJCNzJCNEUyMDQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzd6dFBuN3pjUzlEZUh5a2lYUERlUmE4TTZNRVo2UDN4MjV0c1p5VkQ1Q1ZuLzAv MzEzOTMxMmUzMjM0MzMyZTMxMzczMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAL/zqzANBgkqhkiG9w0BAQsFAAOCAQEAZ0zd 3aq9gWV85uhGxkwUodHrU21cGACSscPpjrUZLbSyn9VzuDcOyvKyG9fSKYBUVByJ lp+ersjpZ0HSEqkkN1eqE5wjz53xUwe+7xmptkQ8P66xynFiKy7wDbkWLFN93W3O ybN+nWqfOH/xBv0zpFcekFeymxcvOiSf53ZNF+L5vSuG9LLoipd4oxfh3x/iajVW zp42NmNCq4H9KTU8hg74sKPXYelCERMiWYbw8aeW53UMVqtKobCpGt/A7C5os6O2 4Z70kRwzjtpCZeM85yUNFXXgFauHWQDkoZ7vtvXMoYrUDgrBgc6KSg5azEYePSgi kQpAdj8cW871TPLI6Q== -----END CERTIFICATE-----Generated at Tue Apr 22 16:01:08 2025 by rpki-client