$ rpki-client -vvf rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa File: 3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa (raw, json) Hash identifier: IRIPnJ75guY+TWPkIi9uLutj2BEVaRmSsjfuqxV31oQ= Subject key identifier: 3E:B6:57:3A:17:17:CC:8C:1B:5D:7E:41:D1:1A:9C:C4:BA:3C:67:AD Certificate issuer: /CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Certificate serial: 670989574758E4C77F906265A7EED7F0C3108A8A Authority key identifier: 20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject info access: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa Signing time: Mon 31 Mar 2025 17:13:31 +0000 ROA not before: Mon 31 Mar 2025 17:08:31 +0000 ROA not after: Mon 30 Mar 2026 17:13:31 +0000 asID: 263482 IP address blocks: 191.242.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 12:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:09:89:57:47:58:e4:c7:7f:90:62:65:a7:ee:d7:f0:c3:10:8a:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20DBD3A0B54D19E135BA53B31C458842C89D49F3 Validity Not Before: Mar 31 17:08:31 2025 GMT Not After : Mar 30 17:13:31 2026 GMT Subject: CN=3EB6573A1717CC8C1B5D7E41D11A9CC4BA3C67AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:50:77:99:4f:84:ed:aa:95:33:f5:4a:4a: e4:d4:87:e2:7c:4e:d9:1c:5a:63:0a:a9:1a:b7:2a: 25:c7:26:a7:b0:cd:ea:2a:de:1c:ae:a7:4b:1b:46: d1:f1:df:5a:65:ab:55:30:e9:18:7f:79:a4:18:77: 3b:26:20:47:71:86:52:74:1d:18:92:7d:10:38:e9: 37:56:b6:cc:f0:d7:77:d3:e6:e2:c9:f0:4c:1a:0f: c5:00:84:e0:54:32:fb:08:03:78:56:87:00:fc:4c: 62:10:ad:8c:d5:e1:e9:70:28:15:ad:0b:1e:cf:c7: 89:62:a3:56:85:c9:25:3b:92:f8:62:70:48:02:e0: bd:f2:91:ae:94:c0:e7:29:6f:33:a0:88:ea:a3:69: 83:8e:86:51:4b:7f:2d:1b:09:f8:2e:9f:7b:cd:a7: 76:16:7c:45:f8:a1:c2:aa:79:58:46:0e:03:53:e2: c7:c0:08:6a:53:25:1d:7c:14:a5:dd:e9:01:3c:2f: 06:af:fe:25:5c:dd:bb:32:8b:a9:be:b2:19:1f:80: 63:7b:78:84:93:05:92:50:01:c3:43:a2:fc:29:65: e2:db:89:19:f1:04:6f:36:8a:a4:26:ba:a6:f4:c0: 6a:21:4a:61:e4:ab:6b:39:c3:5d:51:cf:66:a9:9d: fc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B6:57:3A:17:17:CC:8C:1B:5D:7E:41:D1:1A:9C:C4:BA:3C:67:AD X509v3 Authority Key Identifier: keyid:20:DB:D3:A0:B5:4D:19:E1:35:BA:53:B3:1C:45:88:42:C8:9D:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/20DBD3A0B54D19E135BA53B31C458842C89D49F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/20DBD3A0B54D19E135BA53B31C458842C89D49F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DHMQPB7KFTD3RWnQMQDzkXSp2fCQhkEFZSK3NYo5QDVs/0/3139312e3234322e3231372e302f32342d3234203d3e20323633343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 191.242.217.0/24 Signature Algorithm: sha256WithRSAEncryption 54:73:9b:c0:4c:db:08:5f:8a:28:a1:b2:d7:bc:93:57:ee:e7: 0f:f0:99:0b:f0:cf:2a:2c:67:83:c2:e5:a7:ca:81:40:28:a4: ee:8d:44:99:62:9f:c6:4b:54:08:b2:53:9b:2a:e5:23:99:22: a3:a2:dd:e1:21:61:cf:34:cd:68:37:6c:aa:73:51:58:c6:14: 46:eb:a2:41:f0:51:b0:8e:5c:1b:1b:af:60:6d:f0:a4:fa:d6: 9a:46:4f:08:6b:bc:30:bf:f3:84:68:31:ab:ab:4a:37:8a:78: 3d:e9:0c:ae:4b:b7:8b:bf:1a:7b:63:fb:92:5f:97:07:3e:aa: a9:a3:42:c0:b9:47:aa:f3:ec:81:57:2f:04:9c:9e:92:a0:38: ba:5d:98:42:95:3a:c7:3c:41:81:fb:b3:9c:61:d2:50:0e:fe: 03:85:96:2b:06:2a:5e:08:8e:5f:62:69:72:ab:fd:26:d5:86: 9b:e7:a1:06:70:8e:8f:81:6f:6f:fe:15:21:7c:96:2c:cb:3a: 82:8e:40:44:b7:5d:a4:fc:60:5c:a0:ee:7b:3f:65:8e:c9:37: 7d:49:e2:82:17:52:22:d0:e0:32:6a:5c:64:e1:a3:11:62:10: c4:21:1d:c9:42:3d:66:96:61:03:96:ec:37:17:8f:e2:97:c2: 9a:e2:bb:8e -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUZwmJV0dY5Md/kGJlp+7X8MMQioowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBEQkQzQTBCNTREMTlFMTM1QkE1M0IzMUM0NTg4NDJD ODlENDlGMzAeFw0yNTAzMzExNzA4MzFaFw0yNjAzMzAxNzEzMzFaMDMxMTAvBgNV BAMTKDNFQjY1NzNBMTcxN0NDOEMxQjVEN0U0MUQxMUE5Q0M0QkEzQzY3QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBj1B3mU+E7aqVM/VKSuTUh+J8 TtkcWmMKqRq3KiXHJqewzeoq3hyup0sbRtHx31plq1Uw6Rh/eaQYdzsmIEdxhlJ0 HRiSfRA46TdWtszw13fT5uLJ8EwaD8UAhOBUMvsIA3hWhwD8TGIQrYzV4elwKBWt Cx7Px4lio1aFySU7kvhicEgC4L3yka6UwOcpbzOgiOqjaYOOhlFLfy0bCfgun3vN p3YWfEX4ocKqeVhGDgNT4sfACGpTJR18FKXd6QE8Lwav/iVc3bsyi6m+shkfgGN7 eISTBZJQAcNDovwpZeLbiRnxBG82iqQmuqb0wGohSmHkq2s5w11Rz2apnfwDAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUPrZXOhcXzIwbXX5B0RqcxLo8Z60wHwYDVR0j BBgwFoAUINvToLVNGeE1ulOzHEWIQsidSfMwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vREhNUVBCN0tGVEQzUlduUU1RRHprWFNwMmZDUWhrRUZaU0szTllvNVFE VnMvMC8yMERCRDNBMEI1NEQxOUUxMzVCQTUzQjMxQzQ1ODg0MkM4OUQ0OUYzLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIwREJEM0EwQjU0RDE5RTEz NUJBNTNCMzFDNDU4ODQyQzg5RDQ5RjMuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RITVFQQjdLRlREM1JXblFNUUR6a1hTcDJmQ1Foa0VGWlNLM05ZbzVRRFZzLzAv MzEzOTMxMmUzMjM0MzIyZTMyMzEzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAL/y2TANBgkqhkiG9w0BAQsFAAOCAQEAVHOb wEzbCF+KKKGy17yTV+7nD/CZC/DPKixng8Llp8qBQCik7o1EmWKfxktUCLJTmyrl I5kio6Ld4SFhzzTNaDdsqnNRWMYURuuiQfBRsI5cGxuvYG3wpPrWmkZPCGu8ML/z hGgxq6tKN4p4PekMrku3i78ae2P7kl+XBz6qqaNCwLlHqvPsgVcvBJyekqA4ul2Y QpU6xzxBgfuznGHSUA7+A4WWKwYqXgiOX2Jpcqv9JtWGm+ehBnCOj4Fvb/4VIXyW LMs6go5ARLddpPxgXKDuez9ljsk3fUnighdSItDgMmpcZOGjEWIQxCEdyUI9ZpZh A5bsNxeP4pfCmuK7jg== -----END CERTIFICATE-----Generated at Sun Apr 20 22:11:10 2025 by rpki-client