$ rpki-client -vvf rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137342e302f32342d3234203d3e20323633353038.roa File: 3139312e3234332e3137342e302f32342d3234203d3e20323633353038.roa (raw, json) Hash identifier: kp2FFajxMXUe07fT0q4OqZQyDZ9Ekhqb2i39gzqFlTw= Subject key identifier: 53:8B:E9:9D:74:91:FF:90:01:E7:DE:7D:E6:91:FD:FF:B2:0B:21:AB Certificate issuer: /CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Certificate serial: 03B3D985E0455789F7A56EC588A4EC29305043A0 Authority key identifier: 02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject info access: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137342e302f32342d3234203d3e20323633353038.roa Signing time: Thu 27 Feb 2025 15:58:51 +0000 ROA not before: Thu 27 Feb 2025 15:53:51 +0000 ROA not after: Thu 26 Feb 2026 15:58:51 +0000 asID: 263508 IP address blocks: 191.243.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b3:d9:85:e0:45:57:89:f7:a5:6e:c5:88:a4:ec:29:30:50:43:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028CDE0E764AA87F51C83E2608B8562B72B4E204 Validity Not Before: Feb 27 15:53:51 2025 GMT Not After : Feb 26 15:58:51 2026 GMT Subject: CN=538BE99D7491FF9001E7DE7DE691FDFFB20B21AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:49:3b:75:fd:27:d0:bb:88:b4:6f:07:3f:7d: 9a:a9:50:ab:39:1a:37:96:04:85:cb:eb:41:a1:97: d2:3a:f4:a9:e7:1f:f5:59:35:ab:44:87:49:62:a5: e0:74:f1:a0:b1:a9:7d:1e:c6:32:2f:6c:5b:b5:36: 97:e2:8e:aa:bb:c7:91:45:e8:2a:e6:19:6b:c9:90: bf:25:ee:d4:93:42:fc:34:fd:7a:59:77:55:8f:eb: 70:e9:77:c5:f2:14:36:91:ad:9a:36:eb:3a:06:d0: 19:15:97:0a:2a:eb:bb:5a:73:07:df:0b:b2:d9:ec: f6:79:f9:ec:c3:cd:ed:64:97:e6:fd:b0:b1:db:1b: f6:47:bb:a3:dc:cd:fe:b0:65:2b:88:f6:bc:9a:99: ca:df:85:ab:87:fd:3f:66:0b:26:a4:d3:2b:7b:69: af:89:07:e6:66:7f:7e:56:56:77:4d:47:5b:7f:ee: 4d:f7:5f:35:f1:36:76:2d:4a:c6:6c:2f:c2:03:7f: c5:fc:a0:aa:33:ee:ea:3e:b1:a7:d0:2b:f8:ee:20: 94:53:08:5e:a6:40:32:f0:42:7b:2c:75:ae:f6:0c: ff:3d:ab:03:d3:90:c0:f2:20:80:7c:0b:8a:48:65: 44:cb:ec:a7:0f:1c:7d:ad:e0:94:da:3c:89:d5:38: 68:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8B:E9:9D:74:91:FF:90:01:E7:DE:7D:E6:91:FD:FF:B2:0B:21:AB X509v3 Authority Key Identifier: keyid:02:8C:DE:0E:76:4A:A8:7F:51:C8:3E:26:08:B8:56:2B:72:B4:E2:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/028CDE0E764AA87F51C83E2608B8562B72B4E204.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/028CDE0E764AA87F51C83E2608B8562B72B4E204.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/7ztPn7zcS9DeHykiXPDeRa8M6MEZ6P3x25tsZyVD5CVn/0/3139312e3234332e3137342e302f32342d3234203d3e20323633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.243.174.0/24 Signature Algorithm: sha256WithRSAEncryption 32:81:11:4c:ed:45:f0:0f:c3:42:23:79:b1:5f:1b:92:4e:0b: 37:ab:13:25:f1:c3:e1:f9:8d:87:d2:06:9e:fa:0f:be:7e:00: b3:9b:59:ea:39:6d:32:57:f9:61:21:9c:11:ec:f4:28:d2:b3: a6:7d:02:76:46:d7:c0:53:3f:c9:2b:0c:c2:5e:51:e6:4e:80: cd:29:37:92:63:31:d5:94:51:f5:db:87:99:90:f3:36:65:63: 88:8d:ef:9e:4c:b8:ca:e9:58:b7:fb:1f:37:16:82:34:b8:57: f1:1c:d9:14:e2:12:d4:e9:8c:be:39:01:18:4f:27:22:9f:8d: cf:ae:9a:3d:5d:b2:fd:9c:54:f0:b1:21:3f:6b:ba:be:e9:03: f5:70:15:6d:05:08:ee:15:9f:b2:34:d2:a5:60:25:e9:c1:d4: ac:ae:7d:56:44:a8:43:56:1f:a0:16:81:89:b2:07:ca:bc:04: 23:9e:54:a7:d4:8d:16:93:95:31:c8:f3:34:28:f2:4b:1a:62: 15:53:86:0c:29:da:d6:bc:f3:3c:12:4a:9d:14:69:c9:21:82: 66:89:c4:cd:e9:b7:35:96:5a:e6:22:2c:76:6c:5d:d5:21:cb: f6:28:49:92:b3:b2:77:c0:81:b2:7b:4b:2e:93:65:32:aa:5c: ae:69:b7:e2 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUA7PZheBFV4n3pW7FiKTsKTBQQ6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4Q0RFMEU3NjRBQTg3RjUxQzgzRTI2MDhCODU2MkI3 MkI0RTIwNDAeFw0yNTAyMjcxNTUzNTFaFw0yNjAyMjYxNTU4NTFaMDMxMTAvBgNV BAMTKDUzOEJFOTlENzQ5MUZGOTAwMUU3REU3REU2OTFGREZGQjIwQjIxQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSTt1/SfQu4i0bwc/fZqpUKs5 GjeWBIXL60Ghl9I69KnnH/VZNatEh0lipeB08aCxqX0exjIvbFu1Npfijqq7x5FF 6CrmGWvJkL8l7tSTQvw0/XpZd1WP63Dpd8XyFDaRrZo26zoG0BkVlwoq67tacwff C7LZ7PZ5+ezDze1kl+b9sLHbG/ZHu6Pczf6wZSuI9ryamcrfhauH/T9mCyak0yt7 aa+JB+Zmf35WVndNR1t/7k33XzXxNnYtSsZsL8IDf8X8oKoz7uo+safQK/juIJRT CF6mQDLwQnssda72DP89qwPTkMDyIIB8C4pIZUTL7KcPHH2t4JTaPInVOGhBAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUU4vpnXSR/5AB59595pH9/7ILIaswHwYDVR0j BBgwFoAUAozeDnZKqH9RyD4mCLhWK3K04gQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vN3p0UG43emNTOURlSHlraVhQRGVSYThNNk1FWjZQM3gyNXRzWnlWRDVD Vm4vMC8wMjhDREUwRTc2NEFBODdGNTFDODNFMjYwOEI4NTYyQjcyQjRFMjA0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAyOENERTBFNzY0QUE4N0Y1 MUM4M0UyNjA4Qjg1NjJCNzJCNEUyMDQuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzd6dFBuN3pjUzlEZUh5a2lYUERlUmE4TTZNRVo2UDN4MjV0c1p5VkQ1Q1ZuLzAv MzEzOTMxMmUzMjM0MzMyZTMxMzczNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAL/zrjANBgkqhkiG9w0BAQsFAAOCAQEAMoER TO1F8A/DQiN5sV8bkk4LN6sTJfHD4fmNh9IGnvoPvn4As5tZ6jltMlf5YSGcEez0 KNKzpn0CdkbXwFM/ySsMwl5R5k6AzSk3kmMx1ZRR9duHmZDzNmVjiI3vnky4yulY t/sfNxaCNLhX8RzZFOIS1OmMvjkBGE8nIp+Nz66aPV2y/ZxU8LEhP2u6vukD9XAV bQUI7hWfsjTSpWAl6cHUrK59VkSoQ1YfoBaBibIHyrwEI55Up9SNFpOVMcjzNCjy SxpiFVOGDCna1rzzPBJKnRRpySGCZonEzem3NZZa5iIsdmxd1SHL9ihJkrOyd8CB sntLLpNlMqpcrmm34g== -----END CERTIFICATE-----Generated at Tue Apr 22 02:38:23 2025 by rpki-client