$ rpki-client -vvf rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/3230312e3134382e3131322e302f32322d3234203d3e20323634353532.roa File: 3230312e3134382e3131322e302f32322d3234203d3e20323634353532.roa (raw, json) Hash identifier: 0ZZEuQrrPfiHaMrIh9+0kxAuBjT9ZSwkAb3GoL//XvY= Subject key identifier: 5D:27:48:55:03:2F:21:40:1B:89:D7:AD:07:D1:CD:BA:21:29:D5:30 Certificate issuer: /CN=42E0C742D5DC5A6C41753F73202F41323E27436C Certificate serial: 293FFBFBAC5C493A6181E54A927709D3845B4FF2 Authority key identifier: 42:E0:C7:42:D5:DC:5A:6C:41:75:3F:73:20:2F:41:32:3E:27:43:6C Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42E0C742D5DC5A6C41753F73202F41323E27436C.cer Subject info access: rsync://rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/3230312e3134382e3131322e302f32322d3234203d3e20323634353532.roa Signing time: Thu 06 Mar 2025 04:31:20 +0000 ROA not before: Thu 06 Mar 2025 04:26:20 +0000 ROA not after: Thu 05 Mar 2026 04:31:20 +0000 asID: 264552 IP address blocks: 201.148.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/42E0C742D5DC5A6C41753F73202F41323E27436C.crl rsync://rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/42E0C742D5DC5A6C41753F73202F41323E27436C.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42E0C742D5DC5A6C41753F73202F41323E27436C.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 10 Apr 2025 11:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:3f:fb:fb:ac:5c:49:3a:61:81:e5:4a:92:77:09:d3:84:5b:4f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E0C742D5DC5A6C41753F73202F41323E27436C Validity Not Before: Mar 6 04:26:20 2025 GMT Not After : Mar 5 04:31:20 2026 GMT Subject: CN=5D274855032F21401B89D7AD07D1CDBA2129D530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:51:25:9d:54:53:36:e5:09:e0:1e:3b:af:88: 50:3f:01:31:93:e8:84:fb:26:64:ac:93:10:08:5d: dd:79:2f:b6:76:4e:1e:83:89:7b:ae:f9:37:36:5d: 7c:64:1c:35:55:d5:94:10:e2:35:dc:8f:79:ed:71: 44:76:48:ef:a9:ba:e6:5b:db:a2:7e:bf:06:75:be: 63:ba:cc:bc:e3:62:6f:a5:73:4c:fd:49:d7:52:cc: c0:04:c2:c1:89:d1:48:66:eb:0d:90:48:d2:5e:27: 5a:b2:74:b9:3e:6d:36:65:d6:df:72:8a:f6:b9:8c: e7:9e:a8:77:cb:75:0a:eb:1d:1b:d2:90:14:ac:a4: a5:3c:0a:be:71:7f:78:47:7e:f0:5a:3b:30:0f:5a: 02:a2:e1:5c:9b:a6:de:21:4a:d4:29:78:f8:90:ae: 32:2d:63:c1:1c:3b:5b:6f:64:5f:04:e6:7e:46:55: 69:5c:25:df:55:eb:80:29:67:af:7b:71:ab:ed:d2: c7:f2:1d:a7:21:78:24:3d:12:be:4f:4f:ba:5a:74: d9:12:51:23:8f:3b:a8:ec:e3:f1:1e:f7:04:b0:85: a0:e0:9b:0c:10:82:71:4d:40:85:36:ba:74:aa:57: 81:6b:1a:43:b2:5c:e6:5d:8e:b7:8f:f3:44:8b:79: 77:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:27:48:55:03:2F:21:40:1B:89:D7:AD:07:D1:CD:BA:21:29:D5:30 X509v3 Authority Key Identifier: keyid:42:E0:C7:42:D5:DC:5A:6C:41:75:3F:73:20:2F:41:32:3E:27:43:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/42E0C742D5DC5A6C41753F73202F41323E27436C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42E0C742D5DC5A6C41753F73202F41323E27436C.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/8vNEkNEnWwzqXfjTo9inRz8xy3ZTFnXTs1j2Pit1dJwV/1/3230312e3134382e3131322e302f32322d3234203d3e20323634353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.148.112.0/22 Signature Algorithm: sha256WithRSAEncryption 34:c8:90:e0:44:de:6b:b6:54:b3:90:ff:b8:88:8a:72:0c:4b: ef:28:a9:b6:45:66:65:47:3c:f9:77:7f:24:21:f9:f7:8f:69: bf:5b:13:20:a5:c6:ec:03:35:cb:36:5b:e9:08:41:13:ea:b8: 6d:f5:fa:6a:69:d5:1b:aa:53:3e:c2:61:37:0c:66:06:b1:a7: d8:f2:7a:fc:a3:70:3c:2e:c3:c5:8e:36:72:e1:12:62:e6:8f: 5e:45:f5:8b:ef:95:85:87:57:e1:4c:b0:f5:2d:07:b5:6d:b2: cb:11:24:33:50:51:02:44:6c:13:b2:2f:9f:54:aa:1a:17:1d: 02:63:77:33:ef:cb:2c:51:31:9d:6c:4d:0f:78:f0:c0:9a:69: 5c:86:58:c7:f9:a4:a1:8b:4d:19:3f:ec:87:e9:c7:56:b5:a4: f6:84:33:69:22:ae:eb:86:9a:15:d1:79:ef:16:81:fa:c3:52: 5d:54:5e:e2:6e:af:11:f5:ea:22:bb:26:99:7e:0e:6d:c6:f4: 6c:83:36:22:4f:3a:64:61:35:10:86:63:07:c0:69:bf:03:1e: 82:c5:e5:06:62:25:8f:26:c1:40:2d:cc:93:19:35:02:90:ba: 42:55:75:ad:34:dd:54:38:c1:c7:94:25:81:5e:75:93:b6:b6: 68:88:9c:fd -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUKT/7+6xcSTphgeVKkncJ04RbT/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJFMEM3NDJENURDNUE2QzQxNzUzRjczMjAyRjQxMzIz RTI3NDM2QzAeFw0yNTAzMDYwNDI2MjBaFw0yNjAzMDUwNDMxMjBaMDMxMTAvBgNV BAMTKDVEMjc0ODU1MDMyRjIxNDAxQjg5RDdBRDA3RDFDREJBMjEyOUQ1MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvUSWdVFM25QngHjuviFA/ATGT 6IT7JmSskxAIXd15L7Z2Th6DiXuu+Tc2XXxkHDVV1ZQQ4jXcj3ntcUR2SO+puuZb 26J+vwZ1vmO6zLzjYm+lc0z9SddSzMAEwsGJ0Uhm6w2QSNJeJ1qydLk+bTZl1t9y iva5jOeeqHfLdQrrHRvSkBSspKU8Cr5xf3hHfvBaOzAPWgKi4Vybpt4hStQpePiQ rjItY8EcO1tvZF8E5n5GVWlcJd9V64ApZ697cavt0sfyHacheCQ9Er5PT7padNkS USOPO6js4/Ee9wSwhaDgmwwQgnFNQIU2unSqV4FrGkOyXOZdjreP80SLeXeBAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUXSdIVQMvIUAbidetB9HNuiEp1TAwHwYDVR0j BBgwFoAUQuDHQtXcWmxBdT9zIC9BMj4nQ2wwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vOHZORWtORW5Xd3pxWGZqVG85aW5Sejh4eTNaVEZuWFRzMWoyUGl0MWRK d1YvMS80MkUwQzc0MkQ1REM1QTZDNDE3NTNGNzMyMDJGNDEzMjNFMjc0MzZDLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQyRTBDNzQyRDVEQzVBNkM0 MTc1M0Y3MzIwMkY0MTMyM0UyNzQzNkMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv Lzh2TkVrTkVuV3d6cVhmalRvOWluUno4eHkzWlRGblhUczFqMlBpdDFkSndWLzEv MzIzMDMxMmUzMTM0MzgyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNDM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAsmUcDANBgkqhkiG9w0BAQsFAAOCAQEANMiQ 4ETea7ZUs5D/uIiKcgxL7yiptkVmZUc8+Xd/JCH5949pv1sTIKXG7AM1yzZb6QhB E+q4bfX6amnVG6pTPsJhNwxmBrGn2PJ6/KNwPC7DxY42cuESYuaPXkX1i++VhYdX 4Uyw9S0HtW2yyxEkM1BRAkRsE7Ivn1SqGhcdAmN3M+/LLFExnWxND3jwwJppXIZY x/mkoYtNGT/sh+nHVrWk9oQzaSKu64aaFdF57xaB+sNSXVRe4m6vEfXqIrsmmX4O bcb0bIM2Ik86ZGE1EIZjB8BpvwMegsXlBmIljybBQC3Mkxk1ApC6QlV1rTTdVDjB x5QlgV51k7a2aIic/Q== -----END CERTIFICATE-----Generated at Wed Apr 9 17:39:35 2025 by rpki-client