$ rpki-client -vvf rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231332e302f32342d3234203d3e20323633343832.roa File: 3137302e38332e3231332e302f32342d3234203d3e20323633343832.roa (raw, json) Hash identifier: cs42jbFKSklrrj2z03hqjiLdZs2USw12CGQK3Z9IXyM= Subject key identifier: 2E:1B:3B:A8:F1:D1:0F:90:81:E9:11:C9:82:9C:61:8B:05:4E:53:27 Certificate issuer: /CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Certificate serial: 3798A6CCA0EBF902DDD371C592120C6E59FAFB7A Authority key identifier: 20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject info access: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231332e302f32342d3234203d3e20323633343832.roa Signing time: Thu 17 Apr 2025 13:22:22 +0000 ROA not before: Thu 17 Apr 2025 13:17:22 +0000 ROA not after: Thu 16 Apr 2026 13:22:22 +0000 asID: 263482 IP address blocks: 170.83.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 04:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:98:a6:cc:a0:eb:f9:02:dd:d3:71:c5:92:12:0c:6e:59:fa:fb:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Validity Not Before: Apr 17 13:17:22 2025 GMT Not After : Apr 16 13:22:22 2026 GMT Subject: CN=2E1B3BA8F1D10F9081E911C9829C618B054E5327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:95:03:80:8a:10:f3:ae:0a:4f:29:09:80:75: a3:6b:6f:e5:96:64:cc:c6:b9:38:df:0c:2b:a4:26: 4d:11:78:1b:26:39:a8:cb:d0:0d:71:37:95:01:bd: a8:75:97:2d:02:db:85:01:6b:ad:eb:c0:2f:f3:5d: a7:a8:8e:9b:ee:4d:7d:f8:1a:43:7b:8e:b1:50:c9: cf:9d:d4:70:24:48:1e:94:16:5d:76:30:11:3e:2a: 60:e8:15:49:66:c5:97:0a:b4:b8:5a:71:b3:8a:a9: f3:d7:09:a2:9f:23:bc:af:c8:6d:c8:de:87:06:f1: cb:f7:88:65:fb:52:8b:ed:de:60:2f:65:6e:00:1b: 62:93:a6:00:9c:37:ab:91:15:47:9c:1c:6d:e4:ea: 8b:d6:33:11:37:5b:8e:7e:2f:79:23:94:1d:76:8b: fb:10:73:02:ae:ec:3c:30:16:d4:67:01:0a:d4:4b: 12:5e:04:48:66:00:0d:f7:57:1c:c7:4d:07:43:86: 5d:2f:3f:9b:ef:f6:5c:1b:72:9b:b9:aa:38:d7:2e: f6:b1:bd:a5:df:0a:86:dc:ff:43:28:1c:93:9d:9e: 33:11:3c:3e:98:8c:ee:2b:b1:92:7d:f9:ae:c3:cf: bc:e2:92:e6:43:73:b7:e2:07:35:c4:54:af:87:c4: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1B:3B:A8:F1:D1:0F:90:81:E9:11:C9:82:9C:61:8B:05:4E:53:27 X509v3 Authority Key Identifier: keyid:20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231332e302f32342d3234203d3e20323633343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.83.213.0/24 Signature Algorithm: sha256WithRSAEncryption a0:21:05:b7:5f:f6:7a:82:5c:0a:2f:9a:93:88:de:55:40:17: eb:bf:09:c3:27:d3:02:3b:92:7b:48:fb:0b:3f:f4:eb:ad:f3: 49:9b:45:ff:b9:37:c5:9e:a7:fd:f8:e3:9a:32:f7:6a:69:ec: a6:ff:02:a0:f0:a1:40:f2:6d:9f:97:7a:46:29:da:80:a5:8e: 7d:48:3f:c9:4e:4d:c3:13:0a:c2:f8:bf:e3:04:91:c6:31:7c: a0:f4:42:38:e8:b0:1e:cb:2a:fc:fe:b1:38:e9:3d:64:4f:4b: d5:73:42:ad:ba:1c:67:c9:1d:cd:d2:00:3c:63:7d:bf:73:8e: c3:1e:3d:9d:99:d6:73:53:4f:68:41:52:d5:6e:7b:1a:a1:9d: 2e:e7:a3:54:86:18:21:c6:cd:69:99:8f:05:49:f1:05:92:55: 46:31:cc:e8:6c:4a:bd:72:41:d9:f3:8f:47:cf:00:58:e5:0c: f4:b0:02:e6:2f:44:48:fa:fa:58:e5:01:44:c7:ff:5f:c2:ed: 16:fe:00:0c:ce:40:e6:b2:42:24:03:f4:19:0b:01:9c:70:af: 22:5a:39:85:77:4f:89:9d:07:28:07:45:c8:c4:bf:fc:8e:35: 36:33:c2:23:3f:39:1c:f0:74:bf:b0:32:8d:da:19:10:a2:72: ff:f9:56:ce -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUN5imzKDr+QLd03HFkhIMbln6+3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBEQkQzQTBCNTREMTlFMTM1QkE1M0IzMUM0NTg4NDJD ODlENDlGMzAeFw0yNTA0MTcxMzE3MjJaFw0yNjA0MTYxMzIyMjJaMDMxMTAvBgNV BAMTKDJFMUIzQkE4RjFEMTBGOTA4MUU5MTFDOTgyOUM2MThCMDU0RTUzMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVlQOAihDzrgpPKQmAdaNrb+WW ZMzGuTjfDCukJk0ReBsmOajL0A1xN5UBvah1ly0C24UBa63rwC/zXaeojpvuTX34 GkN7jrFQyc+d1HAkSB6UFl12MBE+KmDoFUlmxZcKtLhacbOKqfPXCaKfI7yvyG3I 3ocG8cv3iGX7Uovt3mAvZW4AG2KTpgCcN6uRFUecHG3k6ovWMxE3W45+L3kjlB12 i/sQcwKu7DwwFtRnAQrUSxJeBEhmAA33VxzHTQdDhl0vP5vv9lwbcpu5qjjXLvax vaXfCobc/0MoHJOdnjMRPD6YjO4rsZJ9+a7Dz7zikuZDc7fiBzXEVK+HxDK9AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQULhs7qPHRD5CB6RHJgpxhiwVOUycwHwYDVR0j BBgwFoAUINvToLVNGeE1ulOzHEWIQsidSfMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vREhNUVBCN0tGVEQzUlduUU1RRHprWFNwMmZDUWhrRUZaU0szTllvNVFE VnMvMC8yMERCRDNBMEI1NEQxOUUxMzVCQTUzQjMxQzQ1ODg0MkM4OUQ0OUYzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIwREJEM0EwQjU0RDE5RTEz NUJBNTNCMzFDNDU4ODQyQzg5RDQ5RjMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RITVFQQjdLRlREM1JXblFNUUR6a1hTcDJmQ1Foa0VGWlNLM05ZbzVRRFZzLzAv MzEzNzMwMmUzODMzMmUzMjMxMzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2 MzMzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBACqU9UwDQYJKoZIhvcNAQELBQADggEBAKAhBbdf 9nqCXAovmpOI3lVAF+u/CcMn0wI7kntI+ws/9Out80mbRf+5N8Wep/3445oy92pp 7Kb/AqDwoUDybZ+XekYp2oCljn1IP8lOTcMTCsL4v+MEkcYxfKD0QjjosB7LKvz+ sTjpPWRPS9VzQq26HGfJHc3SADxjfb9zjsMePZ2Z1nNTT2hBUtVuexqhnS7no1SG GCHGzWmZjwVJ8QWSVUYxzOhsSr1yQdnzj0fPAFjlDPSwAuYvREj6+ljlAUTH/1/C 7Rb+AAzOQOayQiQD9BkLAZxwryJaOYV3T4mdBygHRcjEv/yONTYzwiM/ORzwdL+w Mo3aGRCicv/5Vs4= -----END CERTIFICATE-----Generated at Mon Apr 21 15:40:27 2025 by rpki-client