$ rpki-client -vvf rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231352e302f32342d3234203d3e20323633343832.roa File: 3137302e38332e3231352e302f32342d3234203d3e20323633343832.roa (raw, json) Hash identifier: 47fng3SFFp6wieCIbdzggNPehghgS7Iiba59mro4aM8= Subject key identifier: 4B:78:9A:21:96:FA:1D:62:A5:6C:0C:CC:F2:3D:33:B7:B5:B8:FC:9C Certificate issuer: /CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Certificate serial: 284801C166BA9881FBD15FD7087EC1B89DC38B76 Authority key identifier: 20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject info access: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231352e302f32342d3234203d3e20323633343832.roa Signing time: Mon 31 Mar 2025 17:13:32 +0000 ROA not before: Mon 31 Mar 2025 17:08:32 +0000 ROA not after: Mon 30 Mar 2026 17:13:32 +0000 asID: 263482 IP address blocks: 170.83.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 23 Apr 2025 20:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:48:01:c1:66:ba:98:81:fb:d1:5f:d7:08:7e:c1:b8:9d:c3:8b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Validity Not Before: Mar 31 17:08:32 2025 GMT Not After : Mar 30 17:13:32 2026 GMT Subject: CN=4B789A2196FA1D62A56C0CCCF23D33B7B5B8FC9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:bd:c4:d2:2f:17:82:7c:64:51:09:db:57: c5:a1:31:28:03:cd:78:0d:c7:f2:6b:f2:d4:63:aa: 36:37:03:e5:30:cc:0e:2b:19:a2:93:b7:c5:dc:b1: 1e:42:33:4e:9f:1c:05:05:d3:ff:86:f4:a5:a1:fd: 41:aa:56:f8:0d:00:65:90:45:05:e9:ef:a0:80:53: 78:23:b7:9f:89:07:30:c7:29:8a:bf:18:76:ed:d6: 34:e1:cf:2f:9a:c5:b4:55:10:4b:4a:f2:3f:37:ad: f7:17:53:a4:e2:21:4d:79:54:e9:b4:cc:ed:01:3b: 4c:1e:0a:bf:fb:81:76:d9:bc:1e:43:37:5e:21:38: e7:e2:b4:45:fb:9c:b9:09:e1:f3:ed:3c:85:7f:e4: da:ff:d5:60:55:d1:24:8f:13:5a:cc:89:af:01:9d: 19:02:9b:04:76:cc:15:9c:a7:55:de:53:42:46:76: 3a:6f:ce:9b:22:49:a9:59:bf:36:db:21:2f:25:b7: f3:2f:fc:26:2e:96:47:e2:35:5d:cb:3a:44:62:d1: bd:18:6a:29:5c:e1:7c:3c:ec:9f:8f:87:38:c9:f6: 7c:bd:65:01:9d:2c:f4:32:40:0a:aa:c4:5d:15:e4: a2:d1:30:87:87:fb:d2:2e:ae:8b:71:0b:2b:d5:3f: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:78:9A:21:96:FA:1D:62:A5:6C:0C:CC:F2:3D:33:B7:B5:B8:FC:9C X509v3 Authority Key Identifier: keyid:20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3137302e38332e3231352e302f32342d3234203d3e20323633343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.83.215.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:fa:3f:8d:5f:3c:34:65:6d:b3:42:6e:b9:d1:fc:8d:64:17: 34:8c:08:19:66:db:4a:a9:6c:fe:d3:96:c3:08:9b:53:82:9c: 4d:ab:50:01:50:71:73:26:a9:41:50:30:60:3d:54:0c:db:9b: 75:af:02:58:ed:d2:6c:2a:0c:c4:d3:be:d6:66:bb:16:cd:ab: 82:3f:01:61:01:60:dc:91:18:eb:d0:fa:49:12:bb:2f:83:f3: 3e:8d:94:4f:62:e2:2c:31:33:77:80:1c:58:97:fb:63:23:ab: e2:ef:e4:a0:6f:57:db:a0:d3:f0:62:69:36:ba:d3:7f:1b:03: 43:26:f6:58:2f:e6:67:2f:7c:b4:3e:57:00:9c:87:80:88:e5: 29:55:c9:11:f0:f6:bf:6a:c9:c9:e8:41:75:84:36:54:d5:f9: a1:c0:fc:f3:3f:1b:b3:2e:4d:f4:7a:61:cc:1a:3a:ca:24:7f: 3e:3f:0b:ee:da:0f:76:27:d6:04:84:fd:24:f4:8c:c6:f3:57: 20:6d:49:8c:ad:91:a5:7e:57:9b:29:ad:88:41:ff:45:0a:69: 01:38:5d:6a:f2:c5:7f:7d:f9:e7:ea:f8:0e:0d:38:47:c3:f6: bf:94:2d:55:8f:55:76:1c:29:b2:76:4a:f6:9a:31:a4:59:d6: ae:62:51:e0 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUKEgBwWa6mIH70V/XCH7BuJ3Di3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBEQkQzQTBCNTREMTlFMTM1QkE1M0IzMUM0NTg4NDJD ODlENDlGMzAeFw0yNTAzMzExNzA4MzJaFw0yNjAzMzAxNzEzMzJaMDMxMTAvBgNV BAMTKDRCNzg5QTIxOTZGQTFENjJBNTZDMENDQ0YyM0QzM0I3QjVCOEZDOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Vr3E0i8XgnxkUQnbV8WhMSgD zXgNx/Jr8tRjqjY3A+UwzA4rGaKTt8XcsR5CM06fHAUF0/+G9KWh/UGqVvgNAGWQ RQXp76CAU3gjt5+JBzDHKYq/GHbt1jThzy+axbRVEEtK8j83rfcXU6TiIU15VOm0 zO0BO0weCr/7gXbZvB5DN14hOOfitEX7nLkJ4fPtPIV/5Nr/1WBV0SSPE1rMia8B nRkCmwR2zBWcp1XeU0JGdjpvzpsiSalZvzbbIS8lt/Mv/CYulkfiNV3LOkRi0b0Y ailc4Xw87J+PhzjJ9ny9ZQGdLPQyQAqqxF0V5KLRMIeH+9IurotxCyvVPwTBAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUS3iaIZb6HWKlbAzM8j0zt7W4/JwwHwYDVR0j BBgwFoAUINvToLVNGeE1ulOzHEWIQsidSfMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vREhNUVBCN0tGVEQzUlduUU1RRHprWFNwMmZDUWhrRUZaU0szTllvNVFE VnMvMC8yMERCRDNBMEI1NEQxOUUxMzVCQTUzQjMxQzQ1ODg0MkM4OUQ0OUYzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIwREJEM0EwQjU0RDE5RTEz NUJBNTNCMzFDNDU4ODQyQzg5RDQ5RjMuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RITVFQQjdLRlREM1JXblFNUUR6a1hTcDJmQ1Foa0VGWlNLM05ZbzVRRFZzLzAv MzEzNzMwMmUzODMzMmUzMjMxMzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2 MzMzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBACqU9cwDQYJKoZIhvcNAQELBQADggEBAIr6P41f PDRlbbNCbrnR/I1kFzSMCBlm20qpbP7TlsMIm1OCnE2rUAFQcXMmqUFQMGA9VAzb m3WvAljt0mwqDMTTvtZmuxbNq4I/AWEBYNyRGOvQ+kkSuy+D8z6NlE9i4iwxM3eA HFiX+2Mjq+Lv5KBvV9ug0/BiaTa6038bA0Mm9lgv5mcvfLQ+VwCch4CI5SlVyRHw 9r9qycnoQXWENlTV+aHA/PM/G7MuTfR6YcwaOsokfz4/C+7aD3Yn1gSE/ST0jMbz VyBtSYytkaV+V5sprYhB/0UKaQE4XWryxX99+efq+A4NOEfD9r+ULVWPVXYcKbJ2 SvaaMaRZ1q5iUeA= -----END CERTIFICATE-----Generated at Wed Apr 23 06:39:34 2025 by rpki-client