$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: 6qqQly8fj1pIk6aSIlrvnSFvdMYQB2GBvscX+DADI14= Subject key identifier: AC:4A:44:BC:34:B0:EC:24:B2:BA:87:7E:42:90:0B:5B:DA:65:B7:B2 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 7BA27341BD1EAEB30D5DCC02EC4185BC02880626 Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa Signing time: Mon 21 Apr 2025 13:26:48 +0000 ROA not before: Mon 21 Apr 2025 13:21:48 +0000 ROA not after: Mon 20 Apr 2026 13:26:48 +0000 asID: 265078 IP address blocks: 170.233.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 08 Jun 2025 16:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a2:73:41:bd:1e:ae:b3:0d:5d:cc:02:ec:41:85:bc:02:88:06:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Apr 21 13:21:48 2025 GMT Not After : Apr 20 13:26:48 2026 GMT Subject: CN=AC4A44BC34B0EC24B2BA877E42900B5BDA65B7B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c3:5d:64:c8:93:4a:07:5b:6c:90:9f:79:1c: 0b:9c:c0:77:88:17:cf:4a:23:59:95:d9:f5:54:b6: cf:b8:b7:aa:ee:8d:bd:6c:ff:ef:6a:68:76:9c:b5: a4:ca:38:d4:7b:23:15:6b:f7:6d:2e:7f:a1:b8:ab: 1d:0d:d8:00:3b:3c:34:c6:77:58:22:9b:0f:02:f9: 6e:45:d4:5c:6a:14:43:a0:96:67:6a:0f:5d:9c:2f: b8:6e:0d:d0:aa:71:56:a2:fb:8d:e8:7b:65:31:4f: 8b:c3:60:ca:5e:81:10:d2:a7:c8:c1:c0:ff:15:36: f8:e0:34:d3:2e:b2:ca:9d:55:19:c9:de:cf:3b:81: 36:ff:fe:8c:18:5b:62:13:41:f0:84:04:03:d1:f4: 19:e0:54:c8:e3:69:fc:7a:99:fb:7f:73:98:16:46: 2b:e9:28:d6:13:e6:8b:88:78:f7:c4:59:eb:2f:e5: c1:ea:98:5c:de:1e:7d:29:58:d8:eb:d4:54:a2:62: 62:0b:93:6e:2e:b8:2a:4c:27:7d:f3:a8:6b:48:60: 56:e8:8d:41:46:ad:bd:b5:13:fc:0c:4a:d7:b9:e1: 92:71:24:db:7b:71:bf:05:63:0e:08:82:c8:96:b3: 4c:76:00:f7:60:1b:0c:fe:c0:57:88:ca:ea:13:86: d3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:4A:44:BC:34:B0:EC:24:B2:BA:87:7E:42:90:0B:5B:DA:65:B7:B2 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131342e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.114.0/24 Signature Algorithm: sha256WithRSAEncryption ab:34:59:3f:1b:3b:b6:8c:e4:0a:a8:1c:d8:7e:80:e3:c5:63: 8e:b7:c5:e6:98:5d:81:85:03:4d:4d:d0:ac:80:25:ca:35:ce: 36:54:84:81:e5:be:a4:62:fa:3d:e1:42:41:55:98:cd:f1:f7: c3:b3:64:b0:77:97:5b:c3:ad:07:96:ff:08:11:df:50:4a:af: c4:ed:70:e5:73:fc:8e:77:1e:fc:d9:7c:67:db:9c:d3:75:6a: f1:c8:1d:19:4e:76:9d:20:08:e0:87:6e:bc:1a:bf:3e:83:92: bc:c1:9d:b6:ba:71:6c:52:f3:b3:e2:d0:6f:aa:c9:e2:72:4c: 9c:11:85:52:6e:24:bb:14:b5:dc:7f:92:49:7c:48:f0:fc:f3: dd:05:11:a0:08:1e:fe:5e:6f:c6:d4:ff:29:be:b7:9e:5f:b6: 56:b3:1e:cb:3d:2f:95:5d:b5:c4:f9:9a:34:e2:01:2f:86:00: b3:3c:20:4e:a1:e3:e9:5f:e8:e5:7e:61:75:3e:c2:19:f6:3b: aa:89:04:52:0c:64:e6:a4:ad:74:93:af:41:a2:b0:06:97:f4: 09:a9:b6:3e:03:8d:cb:44:c9:f4:2a:f8:26:68:dd:d8:63:cf: bf:69:fd:69:0a:5f:6c:15:e7:f6:33:22:9c:72:8c:db:ef:e8: 9d:42:55:31 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUe6JzQb0errMNXcwC7EGFvAKIBiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNTA0MjExMzIxNDhaFw0yNjA0MjAxMzI2NDhaMDMxMTAvBgNV BAMTKEFDNEE0NEJDMzRCMEVDMjRCMkJBODc3RTQyOTAwQjVCREE2NUI3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrw11kyJNKB1tskJ95HAucwHeI F89KI1mV2fVUts+4t6rujb1s/+9qaHactaTKONR7IxVr920uf6G4qx0N2AA7PDTG d1gimw8C+W5F1FxqFEOglmdqD12cL7huDdCqcVai+43oe2UxT4vDYMpegRDSp8jB wP8VNvjgNNMussqdVRnJ3s87gTb//owYW2ITQfCEBAPR9BngVMjjafx6mft/c5gW RivpKNYT5ouIePfEWesv5cHqmFzeHn0pWNjr1FSiYmILk24uuCpMJ33zqGtIYFbo jUFGrb21E/wMSte54ZJxJNt7cb8FYw4IgsiWs0x2APdgGwz+wFeIyuoThtPNAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUrEpEvDSw7CSyuod+QpALW9plt7IwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpcjANBgkqhkiG9w0BAQsFAAOCAQEAqzRZ Pxs7tozkCqgc2H6A48VjjrfF5phdgYUDTU3QrIAlyjXONlSEgeW+pGL6PeFCQVWY zfH3w7NksHeXW8OtB5b/CBHfUEqvxO1w5XP8jnce/Nl8Z9uc03Vq8cgdGU52nSAI 4IduvBq/PoOSvMGdtrpxbFLzs+LQb6rJ4nJMnBGFUm4kuxS13H+SSXxI8Pzz3QUR oAge/l5vxtT/Kb63nl+2VrMeyz0vlV21xPmaNOIBL4YAszwgTqHj6V/o5X5hdT7C GfY7qokEUgxk5qStdJOvQaKwBpf0Cam2PgONy0TJ9Cr4Jmjd2GPPv2n9aQpfbBXn 9jMinHKM2+/onUJVMQ== -----END CERTIFICATE-----Generated at Sun Jun 8 00:54:26 2025 by rpki-client