$ rpki-client -vvf rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/3133382e35392e34302e302f32322d3232203d3e20323634353936.roa File: 3133382e35392e34302e302f32322d3232203d3e20323634353936.roa (raw, json) Hash identifier: XnVkcTWY1UepTeJFNoHSnfqh5tfoOGO7WDyCyMCDNr0= Subject key identifier: 55:EC:0F:54:0A:9E:1D:16:F6:63:F3:46:96:1C:0C:34:A4:F5:2A:D4 Certificate issuer: /CN=D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7 Certificate serial: 37D77E831E58E6C07A15FDC4664D97F678A0C617 Authority key identifier: D8:3B:D8:1B:DC:0A:01:D1:AE:F1:AF:D4:0B:C6:A4:E7:2C:94:11:F7 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.cer Subject info access: rsync://rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/3133382e35392e34302e302f32322d3232203d3e20323634353936.roa Signing time: Thu 06 Mar 2025 18:33:28 +0000 ROA not before: Thu 06 Mar 2025 18:28:28 +0000 ROA not after: Thu 05 Mar 2026 18:33:28 +0000 asID: 264596 IP address blocks: 138.59.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.crl rsync://rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 18 Apr 2025 13:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d7:7e:83:1e:58:e6:c0:7a:15:fd:c4:66:4d:97:f6:78:a0:c6:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7 Validity Not Before: Mar 6 18:28:28 2025 GMT Not After : Mar 5 18:33:28 2026 GMT Subject: CN=55EC0F540A9E1D16F663F346961C0C34A4F52AD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:37:bb:4b:4b:c1:e1:74:31:54:52:e9:9f:ab: 1c:2f:6e:ba:9a:aa:8c:7b:39:d5:01:17:8d:c0:02: 6a:4d:f7:dd:d2:6a:51:8b:ee:c5:55:67:78:98:e1: cd:15:95:2b:39:fe:9d:cb:7c:3b:1e:52:56:45:eb: ad:ad:d5:7f:95:a6:c2:cc:7c:47:76:fe:a2:24:48: da:75:7d:61:6a:f6:a4:6d:8d:bf:bb:11:97:30:21: 04:b9:d0:de:41:bc:1c:92:2c:bf:5e:83:e2:99:44: f0:1f:46:aa:bb:56:cb:58:b8:f1:53:e5:83:29:c2: 13:af:5e:db:a9:40:0f:0b:74:cb:85:df:d7:b0:17: e3:86:f7:b3:c0:11:6d:25:e2:60:86:1e:e8:5a:69: d5:b8:31:5b:8b:8b:16:d4:d0:62:25:91:f6:2e:82: c6:fb:08:7c:13:a5:91:63:c9:dd:47:be:26:77:be: 46:24:23:f9:0e:54:2f:6f:bb:0a:38:f6:62:12:aa: eb:92:e5:43:6e:ed:c2:a9:f7:4b:41:41:c0:0f:ef: 7b:c9:b4:c8:c3:76:32:b5:a3:84:9e:9c:4c:d5:11: a4:56:db:ec:2e:5a:90:52:0b:80:ad:0a:25:00:55: 46:2d:0c:ed:7b:cb:3f:64:24:02:f7:61:e7:43:42: 1f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EC:0F:54:0A:9E:1D:16:F6:63:F3:46:96:1C:0C:34:A4:F5:2A:D4 X509v3 Authority Key Identifier: keyid:D8:3B:D8:1B:DC:0A:01:D1:AE:F1:AF:D4:0B:C6:A4:E7:2C:94:11:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/D83BD81BDC0A01D1AEF1AFD40BC6A4E72C9411F7.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/BKmFDnF6bXvEYbLpbnhZEWEkxjGrZRQppXQK4FnUTNVZ/1/3133382e35392e34302e302f32322d3232203d3e20323634353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.59.40.0/22 Signature Algorithm: sha256WithRSAEncryption 04:05:57:5e:41:42:60:39:78:ff:cc:23:4c:4e:17:e1:19:7a: 07:2d:39:b3:a0:e0:5c:0b:5d:e4:f2:83:f8:37:ab:92:b9:63: 0e:47:f0:57:3a:9d:66:6d:30:cd:f8:a7:c1:6e:c6:da:73:73: a8:bb:ff:cc:c7:30:c0:cb:76:73:95:bb:13:67:a3:e9:0c:3c: 41:b6:9a:f6:31:53:ff:e2:69:c3:83:d3:2f:f1:7d:80:b5:64: 12:b0:73:6c:f0:99:f7:4b:79:32:08:1a:2c:80:fd:04:4f:4d: 34:8d:ef:d8:94:86:13:dc:72:fb:33:51:7f:b6:55:cb:3d:eb: 0e:b2:ff:08:cb:2d:21:cc:25:32:f9:2d:9c:f3:b1:ad:8c:56: 8f:99:ca:21:56:0c:cb:9c:6a:e8:b9:ca:35:b5:7f:ee:72:b7: e0:1d:50:37:bf:45:e5:20:d1:28:e1:01:18:06:c9:c0:49:42: 99:d4:a4:39:d8:6d:69:31:4e:26:63:b0:fc:52:6b:fc:4a:86: 2f:79:7f:1b:4c:7f:4f:82:ca:ba:09:b3:20:cc:34:a2:61:fb: d5:c0:d1:46:46:d7:27:78:e0:1f:13:33:ce:95:f0:9c:70:80: a9:7a:07:43:d0:fa:5d:71:c9:cb:0e:d1:d3:b4:56:9b:51:29: 79:83:74:4b -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUN9d+gx5Y5sB6Ff3EZk2X9nigxhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDgzQkQ4MUJEQzBBMDFEMUFFRjFBRkQ0MEJDNkE0RTcy Qzk0MTFGNzAeFw0yNTAzMDYxODI4MjhaFw0yNjAzMDUxODMzMjhaMDMxMTAvBgNV BAMTKDU1RUMwRjU0MEE5RTFEMTZGNjYzRjM0Njk2MUMwQzM0QTRGNTJBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmN7tLS8HhdDFUUumfqxwvbrqa qox7OdUBF43AAmpN993SalGL7sVVZ3iY4c0VlSs5/p3LfDseUlZF662t1X+VpsLM fEd2/qIkSNp1fWFq9qRtjb+7EZcwIQS50N5BvBySLL9eg+KZRPAfRqq7VstYuPFT 5YMpwhOvXtupQA8LdMuF39ewF+OG97PAEW0l4mCGHuhaadW4MVuLixbU0GIlkfYu gsb7CHwTpZFjyd1HviZ3vkYkI/kOVC9vuwo49mISquuS5UNu7cKp90tBQcAP73vJ tMjDdjK1o4SenEzVEaRW2+wuWpBSC4CtCiUAVUYtDO17yz9kJAL3YedDQh8RAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUVewPVAqeHRb2Y/NGlhwMNKT1KtQwHwYDVR0j BBgwFoAU2DvYG9wKAdGu8a/UC8ak5yyUEfcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQkttRkRuRjZiWHZFWWJMcGJuaFpFV0VreGpHclpSUXBwWFFLNEZuVVRO VlovMS9EODNCRDgxQkRDMEEwMUQxQUVGMUFGRDQwQkM2QTRFNzJDOTQxMUY3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0Q4M0JEODFCREMwQTAxRDFB RUYxQUZENDBCQzZBNEU3MkM5NDExRjcuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0JLbUZEbkY2Ylh2RVliTHBibmhaRVdFa3hqR3JaUlFwcFhRSzRGblVUTlZaLzEv MzEzMzM4MmUzNTM5MmUzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM0 MzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCijsoMA0GCSqGSIb3DQEBCwUAA4IBAQAEBVdeQUJg OXj/zCNMThfhGXoHLTmzoOBcC13k8oP4N6uSuWMOR/BXOp1mbTDN+KfBbsbac3Oo u//MxzDAy3ZzlbsTZ6PpDDxBtpr2MVP/4mnDg9Mv8X2AtWQSsHNs8Jn3S3kyCBos gP0ET000je/YlIYT3HL7M1F/tlXLPesOsv8Iyy0hzCUy+S2c87GtjFaPmcohVgzL nGrouco1tX/ucrfgHVA3v0XlINEo4QEYBsnASUKZ1KQ52G1pMU4mY7D8Umv8SoYv eX8bTH9Pgsq6CbMgzDSiYfvVwNFGRtcneOAfEzPOlfCccICpegdD0PpdccnLDtHT tFabUSl5g3RL -----END CERTIFICATE-----Generated at Thu Apr 17 20:21:24 2025 by rpki-client