$ rpki-client -vvf rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/3133382e3230342e3132342e302f32322d3234203d3e20323634343131.roa File: 3133382e3230342e3132342e302f32322d3234203d3e20323634343131.roa (raw, json) Hash identifier: uzUgxx5oWbw3KsMb5vfeJgcgzAfj8JVn/VQixWQjHMk= Subject key identifier: C2:BA:3A:A7:C8:0D:4B:35:85:77:7E:89:D4:5E:4D:DB:C6:CB:F0:74 Certificate issuer: /CN=86B86B5CE986FADF5205AFD26561EEEC22B3A359 Certificate serial: 57D285F5031EFE7A3FA1B4200FF96FD55073DE88 Authority key identifier: 86:B8:6B:5C:E9:86:FA:DF:52:05:AF:D2:65:61:EE:EC:22:B3:A3:59 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.cer Subject info access: rsync://rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/3133382e3230342e3132342e302f32322d3234203d3e20323634343131.roa Signing time: Fri 07 Mar 2025 01:33:31 +0000 ROA not before: Fri 07 Mar 2025 01:28:31 +0000 ROA not after: Fri 06 Mar 2026 01:33:31 +0000 asID: 264411 IP address blocks: 138.204.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.crl rsync://rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 20:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d2:85:f5:03:1e:fe:7a:3f:a1:b4:20:0f:f9:6f:d5:50:73:de:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86B86B5CE986FADF5205AFD26561EEEC22B3A359 Validity Not Before: Mar 7 01:28:31 2025 GMT Not After : Mar 6 01:33:31 2026 GMT Subject: CN=C2BA3AA7C80D4B3585777E89D45E4DDBC6CBF074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bf:5c:94:ba:9f:01:19:41:66:c3:39:dd:c4: b0:53:45:37:8d:63:3b:5c:d5:5e:8a:d1:70:c8:ad: 61:4f:81:d1:a9:89:eb:ac:aa:3f:e6:34:84:35:5b: 7d:96:86:3b:d2:b0:83:3a:b3:65:2a:4f:ef:a6:3b: da:00:e9:e8:d8:1c:93:a0:cc:39:d9:88:21:dd:1a: be:5c:8c:22:e9:85:4a:80:23:3c:9d:ce:3a:68:6c: 71:20:85:ec:e5:dc:9e:2b:13:37:65:bc:97:a2:cd: dd:44:05:53:b0:62:bd:99:71:5e:92:f9:aa:28:c7: 90:63:b5:1b:27:5e:ac:23:ca:8f:a4:58:25:3c:bb: 06:63:56:5b:68:8a:b2:5a:a8:c8:9b:e0:2d:9d:ba: f0:f0:93:84:82:80:14:a5:67:9a:49:cf:00:c1:6c: 20:a5:35:94:4a:d1:95:37:81:8f:ee:65:8e:ce:c0: 2f:76:9e:c7:c3:6b:68:42:5c:d6:70:e1:0a:35:25: 03:62:00:5d:97:5f:aa:8e:a7:d3:09:cd:2d:84:26: f5:2c:a5:48:f0:43:5d:46:d8:c2:c2:04:51:1c:7f: 94:f2:1c:66:eb:58:48:e8:f6:a4:cb:b7:87:ee:5f: ca:d4:52:b1:fd:ef:b0:f6:aa:4f:7f:4c:70:4d:1c: 13:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:BA:3A:A7:C8:0D:4B:35:85:77:7E:89:D4:5E:4D:DB:C6:CB:F0:74 X509v3 Authority Key Identifier: keyid:86:B8:6B:5C:E9:86:FA:DF:52:05:AF:D2:65:61:EE:EC:22:B3:A3:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/86B86B5CE986FADF5205AFD26561EEEC22B3A359.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DKDt1F2DTnutSYxRfqhDGvrtB9DfEcqGRPrRLuWQakew/1/3133382e3230342e3132342e302f32322d3234203d3e20323634343131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.204.124.0/22 Signature Algorithm: sha256WithRSAEncryption 49:b9:16:f9:da:3c:6f:36:75:75:4e:75:ee:15:0c:b2:a8:68: c3:ae:1b:8c:5f:ed:86:a6:0f:cb:bd:58:b9:3c:58:80:61:7d: 59:71:d1:33:29:f1:e3:6d:99:f5:34:39:bc:74:77:72:93:da: ea:15:9f:33:0c:87:ff:e5:69:2d:b0:16:47:d2:03:d3:81:bd: 3e:ed:72:98:bd:3e:06:ef:20:81:84:33:21:12:d6:dc:93:f0: 21:83:43:6c:bf:e4:51:6d:77:4f:08:1c:08:64:7d:06:8a:a1: b5:b1:e9:6e:52:77:cf:66:df:0f:45:47:95:10:dc:c3:bf:45: c6:5c:3d:eb:a2:b4:00:55:a1:ea:06:54:7c:cd:63:e9:09:8e: 07:c2:82:2c:4c:22:a7:d0:d7:7a:e7:f9:90:1a:a9:62:30:be: 8d:c4:e1:58:42:13:0c:99:61:20:fd:84:11:13:f4:04:03:e1: 18:23:d8:10:0e:05:b2:1b:c0:5b:38:19:5e:8a:d6:86:3a:01: f4:cf:c0:e4:bb:36:b7:60:5d:0b:1b:4f:96:ab:2c:9b:ee:08: d7:4f:b1:90:e8:c1:ad:36:38:e0:7d:26:72:16:98:b7:db:03: 89:87:c9:eb:92:cc:93:93:4a:c3:c2:2a:b6:f1:a5:a0:27:11: 74:10:0f:bb -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUV9KF9QMe/no/obQgD/lv1VBz3ogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZCODZCNUNFOTg2RkFERjUyMDVBRkQyNjU2MUVFRUMy MkIzQTM1OTAeFw0yNTAzMDcwMTI4MzFaFw0yNjAzMDYwMTMzMzFaMDMxMTAvBgNV BAMTKEMyQkEzQUE3QzgwRDRCMzU4NTc3N0U4OUQ0NUU0RERCQzZDQkYwNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0v1yUup8BGUFmwzndxLBTRTeN Yztc1V6K0XDIrWFPgdGpieusqj/mNIQ1W32WhjvSsIM6s2UqT++mO9oA6ejYHJOg zDnZiCHdGr5cjCLphUqAIzydzjpobHEghezl3J4rEzdlvJeizd1EBVOwYr2ZcV6S +aoox5BjtRsnXqwjyo+kWCU8uwZjVltoirJaqMib4C2duvDwk4SCgBSlZ5pJzwDB bCClNZRK0ZU3gY/uZY7OwC92nsfDa2hCXNZw4Qo1JQNiAF2XX6qOp9MJzS2EJvUs pUjwQ11G2MLCBFEcf5TyHGbrWEjo9qTLt4fuX8rUUrH977D2qk9/THBNHBO3AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUwro6p8gNSzWFd36J1F5N28bL8HQwHwYDVR0j BBgwFoAUhrhrXOmG+t9SBa/SZWHu7CKzo1kwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vREtEdDFGMkRUbnV0U1l4UmZxaERHdnJ0QjlEZkVjcUdSUHJSTHVXUWFr ZXcvMS84NkI4NkI1Q0U5ODZGQURGNTIwNUFGRDI2NTYxRUVFQzIyQjNBMzU5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg2Qjg2QjVDRTk4NkZBREY1 MjA1QUZEMjY1NjFFRUVDMjJCM0EzNTkuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RLRHQxRjJEVG51dFNZeFJmcWhER3ZydEI5RGZFY3FHUlByUkx1V1Fha2V3LzEv MzEzMzM4MmUzMjMwMzQyZTMxMzIzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzNDM0MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAorMfDANBgkqhkiG9w0BAQsFAAOCAQEASbkW +do8bzZ1dU517hUMsqhow64bjF/thqYPy71YuTxYgGF9WXHRMynx422Z9TQ5vHR3 cpPa6hWfMwyH/+VpLbAWR9ID04G9Pu1ymL0+Bu8ggYQzIRLW3JPwIYNDbL/kUW13 TwgcCGR9BoqhtbHpblJ3z2bfD0VHlRDcw79Fxlw966K0AFWh6gZUfM1j6QmOB8KC LEwip9DXeuf5kBqpYjC+jcThWEITDJlhIP2EERP0BAPhGCPYEA4FshvAWzgZXorW hjoB9M/A5Ls2t2BdCxtPlqssm+4I10+xkOjBrTY44H0mchaYt9sDiYfJ65LMk5NK w8IqtvGloCcRdBAPuw== -----END CERTIFICATE-----Generated at Tue Apr 22 05:52:27 2025 by rpki-client