$ rpki-client -vvf rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136362e302f32332d3233203d3e20323730393130.roa File: 3133382e3132312e3136362e302f32332d3233203d3e20323730393130.roa (raw, json) Hash identifier: lL3sWcpDBbZjNJudevKuoE9ICP1DM73uG/8oJbBo9Og= Subject key identifier: 7A:AB:F3:B4:0A:C6:03:00:AA:8E:A5:CD:C1:3E:30:D5:84:E6:A1:EE Certificate issuer: /CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Certificate serial: 627F4D785438CC9782DA7B60F9D4B736FAB3B17C Authority key identifier: 21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject info access: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136362e302f32332d3233203d3e20323730393130.roa Signing time: Thu 06 Mar 2025 07:44:37 +0000 ROA not before: Thu 06 Mar 2025 07:39:37 +0000 ROA not after: Thu 05 Mar 2026 07:44:37 +0000 asID: 270910 IP address blocks: 138.121.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:7f:4d:78:54:38:cc:97:82:da:7b:60:f9:d4:b7:36:fa:b3:b1:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21B66D518F6F1EC440896EDEA1C6F9E694CC3B66 Validity Not Before: Mar 6 07:39:37 2025 GMT Not After : Mar 5 07:44:37 2026 GMT Subject: CN=7AABF3B40AC60300AA8EA5CDC13E30D584E6A1EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:23:0f:5b:fd:d8:67:6b:b3:38:55:4a:81:7f: 82:5c:ea:42:4c:c8:8d:8d:60:89:25:f5:c1:0c:d0: f9:aa:e6:fe:12:b0:9d:b7:aa:98:eb:ac:01:a3:7f: d3:e1:6a:35:ff:e8:7a:1c:a8:b8:b3:fb:2b:49:3d: f9:dd:ab:93:e3:95:f5:3d:12:31:27:d4:4f:4d:63: 5a:2b:ce:99:ba:81:9c:7d:e1:94:43:19:aa:4a:26: 5f:52:df:70:f2:06:31:81:c0:b6:e2:98:8e:7c:61: 58:cd:30:77:ba:4a:ca:e8:2a:0e:50:1c:4c:f3:a9: f9:37:2a:f6:af:a0:3f:a0:02:f2:05:14:fc:de:8e: 89:53:4f:dc:2d:49:f8:bb:22:b0:51:4c:96:f8:fe: 22:98:1c:a9:83:6a:21:58:c3:f5:7c:de:60:ed:e4: 5b:5a:96:93:f3:29:ad:0f:92:92:29:35:0c:9e:aa: 3b:05:12:ef:67:91:45:2f:2c:42:81:f7:fc:6a:b6: c0:72:8f:0f:24:fb:a3:57:c3:d3:34:2b:b1:41:8b: 78:00:6e:46:7c:3f:bf:aa:00:01:9e:83:5a:62:3f: 2a:81:2d:c1:84:c0:09:36:bd:c8:6b:4c:52:d7:60: 21:ac:71:3e:20:8f:43:09:d5:c8:cc:9b:ca:81:50: c2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AB:F3:B4:0A:C6:03:00:AA:8E:A5:CD:C1:3E:30:D5:84:E6:A1:EE X509v3 Authority Key Identifier: keyid:21:B6:6D:51:8F:6F:1E:C4:40:89:6E:DE:A1:C6:F9:E6:94:CC:3B:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21B66D518F6F1EC440896EDEA1C6F9E694CC3B66.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D3qE5HsCq8B5HjtJg91pcxQYETrRyHQpBkUGRcDhdTCf/1/3133382e3132312e3136362e302f32332d3233203d3e20323730393130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.121.166.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:cf:93:7b:c8:5a:c5:bc:f2:aa:95:97:ef:1e:53:71:7e:20: ff:39:fa:5f:1f:8a:b2:c3:d4:64:34:44:71:17:cf:a1:0d:64: fc:84:21:51:e1:b9:5e:1f:48:b9:ce:61:56:ba:b1:45:d9:8e: f0:00:44:67:37:26:23:f9:94:d9:9d:e1:56:aa:ac:69:20:70: d4:cb:5d:2a:8d:c7:fa:0a:74:83:99:90:22:5d:95:f4:03:72: 82:c4:eb:a1:48:d3:3c:71:aa:35:c5:1a:de:7f:26:4a:66:98: b0:15:ca:84:3d:33:ca:93:46:cc:d8:40:02:c0:93:a4:b5:a4: 4f:b5:9f:fa:39:b6:f2:67:11:82:12:2f:c2:c3:eb:ce:23:0e: 02:2b:3e:e6:95:ca:5c:02:84:81:7f:56:61:ee:67:f0:93:09: a5:0d:76:c6:d8:df:7c:00:7a:02:3b:7c:88:0b:2a:81:af:19: 9d:0c:d6:3f:39:60:d5:de:98:d8:ca:65:01:a6:bb:db:ac:db: 6f:43:c8:e2:0c:47:51:c1:cb:0e:0d:61:e2:0a:bb:41:08:13: 1a:ed:93:47:5b:30:01:9d:35:e1:cb:e9:2f:eb:2e:e5:c1:8f: 88:8e:06:48:8f:41:6f:8e:c3:ed:86:81:59:99:da:a2:4e:98: 41:ea:e1:9b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUYn9NeFQ4zJeC2ntg+dS3NvqzsXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFCNjZENTE4RjZGMUVDNDQwODk2RURFQTFDNkY5RTY5 NENDM0I2NjAeFw0yNTAzMDYwNzM5MzdaFw0yNjAzMDUwNzQ0MzdaMDMxMTAvBgNV BAMTKDdBQUJGM0I0MEFDNjAzMDBBQThFQTVDREMxM0UzMEQ1ODRFNkExRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYIw9b/dhna7M4VUqBf4Jc6kJM yI2NYIkl9cEM0Pmq5v4SsJ23qpjrrAGjf9PhajX/6HocqLiz+ytJPfndq5PjlfU9 EjEn1E9NY1orzpm6gZx94ZRDGapKJl9S33DyBjGBwLbimI58YVjNMHe6SsroKg5Q HEzzqfk3KvavoD+gAvIFFPzejolTT9wtSfi7IrBRTJb4/iKYHKmDaiFYw/V83mDt 5FtalpPzKa0PkpIpNQyeqjsFEu9nkUUvLEKB9/xqtsByjw8k+6NXw9M0K7FBi3gA bkZ8P7+qAAGeg1piPyqBLcGEwAk2vchrTFLXYCGscT4gj0MJ1cjMm8qBUMJTAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUeqvztArGAwCqjqXNwT4w1YTmoe4wHwYDVR0j BBgwFoAUIbZtUY9vHsRAiW7eocb55pTMO2YwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDNxRTVIc0NxOEI1SGp0Smc5MXBjeFFZRVRyUnlIUXBCa1VHUmNEaGRU Q2YvMS8yMUI2NkQ1MThGNkYxRUM0NDA4OTZFREVBMUM2RjlFNjk0Q0MzQjY2LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIxQjY2RDUxOEY2RjFFQzQ0 MDg5NkVERUExQzZGOUU2OTRDQzNCNjYuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0QzcUU1SHNDcThCNUhqdEpnOTFwY3hRWUVUclJ5SFFwQmtVR1JjRGhkVENmLzEv MzEzMzM4MmUzMTMyMzEyZTMxMzYzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMy MzczMDM5MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAYp5pjANBgkqhkiG9w0BAQsFAAOCAQEAXs+T e8haxbzyqpWX7x5TcX4g/zn6Xx+KssPUZDREcRfPoQ1k/IQhUeG5Xh9Iuc5hVrqx RdmO8ABEZzcmI/mU2Z3hVqqsaSBw1MtdKo3H+gp0g5mQIl2V9ANygsTroUjTPHGq NcUa3n8mSmaYsBXKhD0zypNGzNhAAsCTpLWkT7Wf+jm28mcRghIvwsPrziMOAis+ 5pXKXAKEgX9WYe5n8JMJpQ12xtjffAB6Ajt8iAsqga8ZnQzWPzlg1d6Y2MplAaa7 26zbb0PI4gxHUcHLDg1h4gq7QQgTGu2TR1swAZ014cvpL+su5cGPiI4GSI9Bb47D 7YaBWZnaok6YQerhmw== -----END CERTIFICATE-----Generated at Mon Apr 21 22:38:09 2025 by rpki-client