$ rpki-client -vvf rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234322e302f32342d3330203d3e203238313838.roa File: 3138392e38392e3234322e302f32342d3330203d3e203238313838.roa (raw, json) Hash identifier: vWet32SW+50uhx/hiMV0jJcxEXCL8k5spf2fpCRseMU= Subject key identifier: 02:0C:F0:FA:E4:DC:7E:6E:85:B7:51:C6:D6:DB:BD:B7:6E:07:6C:42 Certificate issuer: /CN=E38AC2CFB299715B3B6D5866C15CF353BE48A770 Certificate serial: 275089CCEB61C6737F88B3EC38221A910C254AB6 Authority key identifier: E3:8A:C2:CF:B2:99:71:5B:3B:6D:58:66:C1:5C:F3:53:BE:48:A7:70 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer Subject info access: rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234322e302f32342d3330203d3e203238313838.roa Signing time: Wed 05 Feb 2025 22:59:05 +0000 ROA not before: Wed 05 Feb 2025 22:54:05 +0000 ROA not after: Wed 04 Feb 2026 22:59:05 +0000 asID: 28188 IP address blocks: 189.89.242.0/24 maxlen: 30 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.crl rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 21:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:50:89:cc:eb:61:c6:73:7f:88:b3:ec:38:22:1a:91:0c:25:4a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E38AC2CFB299715B3B6D5866C15CF353BE48A770 Validity Not Before: Feb 5 22:54:05 2025 GMT Not After : Feb 4 22:59:05 2026 GMT Subject: CN=020CF0FAE4DC7E6E85B751C6D6DBBDB76E076C42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:29:10:b6:05:77:5c:dc:6d:3d:48:c4:2e:23: fe:f8:fe:11:8b:ce:ed:45:57:35:6d:50:34:bb:56: 93:a8:48:b9:b7:54:be:7a:df:76:1e:17:71:15:43: 3f:e0:8f:d7:a1:db:2c:9f:14:3b:6c:d9:fe:7d:c0: bd:54:86:d2:a3:d8:dd:02:2b:2a:76:58:90:50:77: da:dc:10:93:5a:bc:41:f7:dc:9c:3e:c3:fd:ab:21: db:dc:a0:26:08:00:bb:e5:41:d5:db:63:b4:00:d9: fe:f4:fd:d6:e2:14:95:df:b8:a2:cd:19:78:e0:d1: 3f:7a:d6:0a:32:7f:30:4e:53:9d:44:2c:6a:cf:71: 8c:fb:fa:0a:30:ca:09:a7:f0:42:72:c7:48:45:7e: de:ba:c9:49:e9:23:7b:8e:f3:95:98:6f:4d:30:4d: 13:a4:34:18:da:79:08:d9:90:82:fb:76:b0:0c:ff: 46:4f:66:83:c3:97:d2:15:4c:27:62:c8:77:ee:58: 01:29:b0:9b:84:78:71:00:45:e5:17:aa:fe:75:4e: 59:0b:92:61:6a:fb:d0:82:96:fd:e4:86:5d:d7:21: 35:44:e2:3f:c2:a1:86:f7:dd:54:c2:a3:2b:68:82: 33:2f:08:f1:38:99:2d:67:48:e1:ef:d4:19:51:94: 51:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0C:F0:FA:E4:DC:7E:6E:85:B7:51:C6:D6:DB:BD:B7:6E:07:6C:42 X509v3 Authority Key Identifier: keyid:E3:8A:C2:CF:B2:99:71:5B:3B:6D:58:66:C1:5C:F3:53:BE:48:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234322e302f32342d3330203d3e203238313838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.89.242.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:dc:7a:97:06:4f:b3:d1:54:21:41:5b:8d:ba:4b:8e:75:ed: 63:42:1a:ae:04:b5:c8:98:db:05:04:31:c4:28:41:b3:69:64: b1:9c:02:4b:40:3f:35:7b:1a:35:ad:1a:20:9c:20:63:2f:d8: 26:ab:c8:f1:df:51:b1:f3:19:55:13:f9:05:d5:81:94:14:20: 98:1a:97:04:f5:3b:c4:f4:09:b4:32:b2:42:04:59:27:f4:9a: 36:38:26:89:41:63:26:de:e2:40:d6:5a:82:a5:66:3f:89:33: dc:0d:f3:bf:37:f4:2f:21:5c:fd:e6:6f:52:f5:e7:fd:c7:3d: f4:c1:2c:9b:70:62:68:72:a7:b8:42:d9:b3:d9:87:bd:81:78: df:81:05:ed:1b:d3:49:87:bd:0f:5b:d3:0b:7b:27:95:0f:ab: d7:23:50:88:b3:fb:f3:34:8d:2a:9c:2f:53:1d:02:e0:0b:17: dd:f1:4d:71:a8:91:14:de:a4:aa:28:5a:f0:a0:73:12:3e:51: 3b:d4:c5:ca:8b:53:1c:13:0d:a6:55:84:dc:35:c8:5c:52:2c: 98:06:72:4b:26:81:c7:67:54:49:68:c3:26:c2:fd:da:d9:ef: e6:f6:58:45:80:e1:43:5d:ef:04:4c:5d:6e:a6:48:5a:bb:b3: 94:74:a1:74 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUJ1CJzOthxnN/iLPsOCIakQwlSrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM4QUMyQ0ZCMjk5NzE1QjNCNkQ1ODY2QzE1Q0YzNTNC RTQ4QTc3MDAeFw0yNTAyMDUyMjU0MDVaFw0yNjAyMDQyMjU5MDVaMDMxMTAvBgNV BAMTKDAyMENGMEZBRTREQzdFNkU4NUI3NTFDNkQ2REJCREI3NkUwNzZDNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIKRC2BXdc3G09SMQuI/74/hGL zu1FVzVtUDS7VpOoSLm3VL5633YeF3EVQz/gj9eh2yyfFDts2f59wL1UhtKj2N0C Kyp2WJBQd9rcEJNavEH33Jw+w/2rIdvcoCYIALvlQdXbY7QA2f70/dbiFJXfuKLN GXjg0T961goyfzBOU51ELGrPcYz7+gowygmn8EJyx0hFft66yUnpI3uO85WYb00w TROkNBjaeQjZkIL7drAM/0ZPZoPDl9IVTCdiyHfuWAEpsJuEeHEAReUXqv51TlkL kmFq+9CClv3khl3XITVE4j/CoYb33VTCoytogjMvCPE4mS1nSOHv1BlRlFFjAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUAgzw+uTcfm6Ft1HG1tu9t24HbEIwHwYDVR0j BBgwFoAU44rCz7KZcVs7bVhmwVzzU75Ip3AwDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9ES050R0E3c3BkNGY1UjNRQUNhNTZyY3pZRFF5QWM4MXdxbzVjakJEVTNk LzAvRTM4QUMyQ0ZCMjk5NzE1QjNCNkQ1ODY2QzE1Q0YzNTNCRTQ4QTc3MC5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS9FMzhBQzJDRkIyOTk3MTVCM0I2 RDU4NjZDMTVDRjM1M0JFNDhBNzcwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9E S050R0E3c3BkNGY1UjNRQUNhNTZyY3pZRFF5QWM4MXdxbzVjakJEVTNkLzAvMzEz ODM5MmUzODM5MmUzMjM0MzIyZTMwMmYzMjM0MmQzMzMwMjAzZDNlMjAzMjM4MzEz ODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAvVnyMA0GCSqGSIb3DQEBCwUAA4IBAQBd3HqXBk+z0VQh QVuNukuOde1jQhquBLXImNsFBDHEKEGzaWSxnAJLQD81exo1rRognCBjL9gmq8jx 31Gx8xlVE/kF1YGUFCCYGpcE9TvE9Am0MrJCBFkn9Jo2OCaJQWMm3uJA1lqCpWY/ iTPcDfO/N/QvIVz95m9S9ef9xz30wSybcGJocqe4Qtmz2Ye9gXjfgQXtG9NJh70P W9MLeyeVD6vXI1CIs/vzNI0qnC9THQLgCxfd8U1xqJEU3qSqKFrwoHMSPlE71MXK i1McEw2mVYTcNchcUiyYBnJLJoHHZ1RJaMMmwv3a2e/m9lhFgOFDXe8ETF1upkha u7OUdKF0 -----END CERTIFICATE-----Generated at Mon Apr 7 10:13:21 2025 by rpki-client