$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: GaIG9OWUtk4xo/fOP/Bwcg92Lk0HLbqb+2guy4zZ8fo= Subject key identifier: 58:22:9B:82:1E:FD:3F:F1:B5:AC:C4:82:74:29:9D:74:48:58:65:05 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 5209126B55107A484CD6B7E52F155FE90ABD1A1A Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa Signing time: Thu 06 Mar 2025 14:08:25 +0000 ROA not before: Thu 06 Mar 2025 14:03:25 +0000 ROA not after: Thu 05 Mar 2026 14:08:25 +0000 asID: 265078 IP address blocks: 170.233.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 12 Apr 2025 19:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:09:12:6b:55:10:7a:48:4c:d6:b7:e5:2f:15:5f:e9:0a:bd:1a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Mar 6 14:03:25 2025 GMT Not After : Mar 5 14:08:25 2026 GMT Subject: CN=58229B821EFD3FF1B5ACC48274299D7448586505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5f:03:7f:2a:d1:c1:8f:5f:55:50:ea:4b:3f: 7a:4a:df:87:ee:90:f1:0a:57:eb:fd:a3:ad:f1:4f: a8:bf:d1:5a:ee:29:aa:54:ee:2a:95:4b:c8:75:1c: 00:8d:c8:89:68:eb:5c:83:56:4b:58:2a:2c:82:ba: d1:da:5d:ad:b6:39:f9:ce:ab:1a:24:26:30:b5:df: 6a:36:e0:4f:72:5d:fd:31:70:c6:b9:ea:c7:07:bf: bc:22:df:4a:fe:a6:bc:c5:6e:92:6b:4f:0f:1a:0e: b1:40:58:49:4d:06:05:3d:f7:c2:4c:30:51:2e:68: 65:c5:76:54:6d:78:80:e5:18:b3:09:4e:9e:6e:17: d9:ed:48:a2:1f:12:02:63:3f:2a:d0:3c:4d:37:7d: a8:47:84:c4:e9:25:47:e0:5c:ac:42:ac:c2:ec:c6: 9a:f7:08:f9:18:a5:de:fc:5c:e6:32:9f:26:3e:16: 12:05:0e:50:d6:8e:16:cb:8e:3d:cd:66:cd:98:6e: 75:2f:be:3a:75:e3:68:ba:98:70:90:cc:69:86:09: 4f:08:10:b5:b8:86:fd:fd:4e:aa:6e:2f:52:f3:54: bf:ed:f2:82:a2:2d:ca:99:00:62:56:18:bd:38:82: ad:db:e4:ba:86:0a:e9:8d:14:62:2d:ca:c1:58:2d: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:22:9B:82:1E:FD:3F:F1:B5:AC:C4:82:74:29:9D:74:48:58:65:05 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.114.0/24 Signature Algorithm: sha256WithRSAEncryption 42:dd:d1:3b:fb:a4:0c:1a:e7:79:96:47:af:2d:20:ac:61:eb: c5:3d:c7:88:54:74:8d:f8:e7:0a:95:28:b9:a9:fd:a7:51:5c: 56:22:e1:99:73:48:04:31:16:bb:f8:9b:18:93:0b:87:8d:fc: ee:04:78:d1:46:73:27:33:42:81:c0:b4:56:26:f0:25:a9:1b: 2d:c2:b6:32:ac:4c:3c:65:99:d1:8a:6f:6e:3e:bf:83:aa:ca: 29:d9:a4:3b:25:26:64:e3:86:3a:48:34:3d:54:2f:21:21:fd: 91:51:88:4a:0d:35:d3:af:90:64:71:71:b8:cf:32:31:8c:af: 00:2e:d2:97:b0:83:4d:cb:33:00:63:87:cc:ab:51:3f:8d:5d: 53:cb:7f:1c:13:b7:9f:96:09:7b:97:60:79:a9:6b:7f:2e:50: b1:46:81:19:cd:e9:fc:c9:91:df:1e:7c:9c:4f:51:bd:44:47: 24:d9:89:dd:c4:54:09:10:bb:4e:5a:b6:d9:c9:85:af:c7:23: 68:a6:60:ba:16:ae:29:e0:a7:7e:65:13:82:88:11:d9:b9:8d: 1d:f6:3d:f0:7a:2e:08:d0:e8:46:33:98:7e:5a:e8:d0:16:af: 41:ae:ed:31:4f:2e:e5:ff:bb:a7:aa:bc:09:36:92:69:04:4c: 93:ef:7d:ea -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUUgkSa1UQekhM1rflLxVf6Qq9GhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNTAzMDYxNDAzMjVaFw0yNjAzMDUxNDA4MjVaMDMxMTAvBgNV BAMTKDU4MjI5QjgyMUVGRDNGRjFCNUFDQzQ4Mjc0Mjk5RDc0NDg1ODY1MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1XwN/KtHBj19VUOpLP3pK34fu kPEKV+v9o63xT6i/0VruKapU7iqVS8h1HACNyIlo61yDVktYKiyCutHaXa22OfnO qxokJjC132o24E9yXf0xcMa56scHv7wi30r+przFbpJrTw8aDrFAWElNBgU998JM MFEuaGXFdlRteIDlGLMJTp5uF9ntSKIfEgJjPyrQPE03fahHhMTpJUfgXKxCrMLs xpr3CPkYpd78XOYynyY+FhIFDlDWjhbLjj3NZs2YbnUvvjp142i6mHCQzGmGCU8I ELW4hv39TqpuL1LzVL/t8oKiLcqZAGJWGL04gq3b5LqGCumNFGItysFYLcYLAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUWCKbgh79P/G1rMSCdCmddEhYZQUwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpcjANBgkqhkiG9w0BAQsFAAOCAQEAQt3R O/ukDBrneZZHry0grGHrxT3HiFR0jfjnCpUouan9p1FcViLhmXNIBDEWu/ibGJML h4387gR40UZzJzNCgcC0VibwJakbLcK2MqxMPGWZ0Ypvbj6/g6rKKdmkOyUmZOOG Okg0PVQvISH9kVGISg0106+QZHFxuM8yMYyvAC7Sl7CDTcszAGOHzKtRP41dU8t/ HBO3n5YJe5dgealrfy5QsUaBGc3p/MmR3x58nE9RvURHJNmJ3cRUCRC7Tlq22cmF r8cjaKZguhauKeCnfmUTgogR2bmNHfY98HouCNDoRjOYflro0BavQa7tMU8u5f+7 p6q8CTaSaQRMk+996g== -----END CERTIFICATE-----Generated at Sat Apr 12 05:27:30 2025 by rpki-client