$ rpki-client -vvf rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136352e302f32342d3234203d3e20323730393130.roa File: 3133382e3132312e3136352e302f32342d3234203d3e20323730393130.roa (raw, json) Hash identifier: G/EUL3kssX8WEZjaTF5EUpJSjC/nVYF4x0AQnw3HpSk= Subject key identifier: D9:8A:5D:DC:5E:88:86:F7:FD:C8:BA:30:B7:3B:DF:E1:79:3F:5B:57 Certificate issuer: /CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Certificate serial: 0EEC3E0A3D31A20453756657DB7D66CE4B831376 Authority key identifier: 21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject info access: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136352e302f32342d3234203d3e20323730393130.roa Signing time: Thu 04 Apr 2024 07:17:27 +0000 ROA not before: Thu 04 Apr 2024 07:12:27 +0000 ROA not after: Thu 03 Apr 2025 07:17:27 +0000 asID: 270910 IP address blocks: 138.121.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 20 Feb 2025 17:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ec:3e:0a:3d:31:a2:04:53:75:66:57:db:7d:66:ce:4b:83:13:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Validity Not Before: Apr 4 07:12:27 2024 GMT Not After : Apr 3 07:17:27 2025 GMT Subject: CN=D98A5DDC5E8886F7FDC8BA30B73BDFE1793F5B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c7:4a:46:fd:c1:6a:bb:f2:45:2f:e6:e2:69: 7b:d0:26:0d:b3:6e:9a:f1:f0:9d:11:0f:b9:9e:22: 08:4e:88:61:1e:de:b8:03:b0:38:88:42:e0:ac:e2: c1:99:0a:fb:51:e2:13:7e:e6:13:5c:a2:53:fb:8d: 73:d7:e5:ae:87:f3:78:10:bb:c9:9e:43:81:92:f4: de:01:6d:7e:12:88:36:6f:a4:4c:c1:d8:c2:5a:27: 1f:37:28:da:fe:41:1a:ca:13:8c:81:61:a8:92:85: 3d:12:2e:6d:f9:a0:87:d0:05:17:c2:27:c1:63:a8: 70:19:d6:76:f6:dd:2b:3a:86:2d:87:00:95:06:1f: c9:30:c5:c8:9d:5e:1b:5a:4a:97:11:32:9f:e4:96: f7:95:30:ef:25:a6:97:40:58:78:f6:de:27:9c:98: a5:5f:8d:5a:d5:89:a5:ff:84:90:39:64:52:96:04: 71:47:89:f0:f7:71:10:af:e8:a9:1c:6c:ed:b0:8b: d8:92:17:6b:16:7a:8d:9f:83:aa:01:0f:15:a9:c0: 86:4f:ed:fb:a0:43:de:39:bd:b3:63:89:97:5a:0f: de:38:ad:a3:f4:2b:81:b1:bc:13:7c:19:e7:67:69: 09:e2:02:4e:f5:c0:f6:ee:c1:6c:0a:e6:af:8f:d0: 9b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8A:5D:DC:5E:88:86:F7:FD:C8:BA:30:B7:3B:DF:E1:79:3F:5B:57 X509v3 Authority Key Identifier: keyid:21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136352e302f32342d3234203d3e20323730393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.165.0/24 Signature Algorithm: sha256WithRSAEncryption 12:55:5d:10:bc:dd:45:b2:87:62:e2:30:6d:85:77:49:43:81: 77:9d:cd:14:b8:40:47:b9:88:9f:e6:92:7c:1f:17:74:76:15: 80:60:9c:c1:95:88:e4:a1:df:03:55:a8:1c:79:f4:48:8e:db: a5:57:18:1f:19:bb:51:15:91:f2:dd:61:9f:93:13:fe:c9:e4: 39:4a:bc:91:fc:58:c3:72:d1:3d:d8:43:e7:05:f7:7e:25:84: 9e:a5:65:d0:0a:d9:e4:25:ad:9f:60:39:5b:b2:0d:f8:f7:a4: 1e:ce:ab:6f:94:12:40:00:f0:8b:88:22:2b:11:f6:54:c8:ef: b0:eb:9b:da:61:da:5d:54:d4:4f:b7:f1:6f:96:db:3a:6c:1e: 00:34:ee:ca:33:d1:e8:12:9c:2a:9f:6e:86:d5:d5:62:b7:98: 23:39:e2:1f:c1:e9:33:44:bd:60:a5:a8:8e:ab:66:be:6e:f2: 3c:3e:86:2a:c2:86:e0:6f:aa:89:8d:f4:a6:5f:24:31:37:76: b7:4e:4e:0f:4a:20:db:c4:5b:2e:35:30:e0:1f:f7:f2:14:5d: 5a:68:72:9d:c3:4c:ec:f8:99:6e:84:ad:4d:12:17:21:ce:ea: 79:c4:69:e4:42:c0:9e:38:a1:54:d4:da:d3:e7:e6:1e:10:bf: 71:ab:c0:08 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUDuw+Cj0xogRTdWZX231mzkuDE3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFCNjZENTE4RjZGMUVDNDQwODk2RURFQTFDNkY5RTY5 NENDM0I2NjAeFw0yNDA0MDQwNzEyMjdaFw0yNTA0MDMwNzE3MjdaMDMxMTAvBgNV BAMTKEQ5OEE1RERDNUU4ODg2RjdGREM4QkEzMEI3M0JERkUxNzkzRjVCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCx0pG/cFqu/JFL+biaXvQJg2z bprx8J0RD7meIghOiGEe3rgDsDiIQuCs4sGZCvtR4hN+5hNcolP7jXPX5a6H83gQ u8meQ4GS9N4BbX4SiDZvpEzB2MJaJx83KNr+QRrKE4yBYaiShT0SLm35oIfQBRfC J8FjqHAZ1nb23Ss6hi2HAJUGH8kwxcidXhtaSpcRMp/klveVMO8lppdAWHj23iec mKVfjVrViaX/hJA5ZFKWBHFHifD3cRCv6KkcbO2wi9iSF2sWeo2fg6oBDxWpwIZP 7fugQ945vbNjiZdaD944raP0K4GxvBN8GednaQniAk71wPbuwWwK5q+P0JtlAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU2Ypd3F6Ihvf9yLowtzvf4Xk/W1cwHwYDVR0j BBgwFoAUIbZtUY9vHsRAiW7eocb55pTMO2YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDNxRTVIc0NxOEI1SGp0Smc5MXBjeFFZRVRyUnlIUXBCa1VHUmNEaGRU Q2YvMS8yMUI2NkQ1MThGNkYxRUM0NDA4OTZFREVBMUM2RjlFNjk0Q0MzQjY2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIxQjY2RDUxOEY2RjFFQzQ0 MDg5NkVERUExQzZGOUU2OTRDQzNCNjYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0QzcUU1SHNDcThCNUhqdEpnOTFwY3hRWUVUclJ5SFFwQmtVR1JjRGhkVENmLzEv MzEzMzM4MmUzMTMyMzEyZTMxMzYzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzczMDM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIp5pTANBgkqhkiG9w0BAQsFAAOCAQEAElVd ELzdRbKHYuIwbYV3SUOBd53NFLhAR7mIn+aSfB8XdHYVgGCcwZWI5KHfA1WoHHn0 SI7bpVcYHxm7URWR8t1hn5MT/snkOUq8kfxYw3LRPdhD5wX3fiWEnqVl0ArZ5CWt n2A5W7IN+PekHs6rb5QSQADwi4giKxH2VMjvsOub2mHaXVTUT7fxb5bbOmweADTu yjPR6BKcKp9uhtXVYreYIzniH8HpM0S9YKWojqtmvm7yPD6GKsKG4G+qiY30pl8k MTd2t05OD0og28RbLjUw4B/38hRdWmhyncNM7PiZboStTRIXIc7qecRp5ELAnjih VNTa0+fmHhC/cavACA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:58 2025 by rpki-client