$ rpki-client -vvf rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234352e302f32342d3330203d3e203238313838.roa File: 3138392e38392e3234352e302f32342d3330203d3e203238313838.roa (raw, json) Hash identifier: 2uGXhTI4D92XAkzdLfDq6ktEjOc6b5dGt+3DYGCNyj0= Subject key identifier: B7:47:93:6C:0B:B5:5D:6E:E5:46:E6:70:2A:82:2F:45:6F:B0:D0:29 Certificate issuer: /CN=E38AC2CFB299715B3B6D5866C15CF353BE48A770 Certificate serial: 232C70BFBF25AACCDF0416F1FEA7288C97D87BE5 Authority key identifier: E3:8A:C2:CF:B2:99:71:5B:3B:6D:58:66:C1:5C:F3:53:BE:48:A7:70 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer Subject info access: rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234352e302f32342d3330203d3e203238313838.roa Signing time: Wed 05 Feb 2025 22:59:52 +0000 ROA not before: Wed 05 Feb 2025 22:54:52 +0000 ROA not after: Wed 04 Feb 2026 22:59:52 +0000 asID: 28188 IP address blocks: 189.89.245.0/24 maxlen: 30 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.crl rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 07 Apr 2025 21:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:2c:70:bf:bf:25:aa:cc:df:04:16:f1:fe:a7:28:8c:97:d8:7b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E38AC2CFB299715B3B6D5866C15CF353BE48A770 Validity Not Before: Feb 5 22:54:52 2025 GMT Not After : Feb 4 22:59:52 2026 GMT Subject: CN=B747936C0BB55D6EE546E6702A822F456FB0D029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cf:95:c2:5a:3b:14:42:84:d1:12:a2:82:0e: 46:c6:ef:ab:0d:79:d1:c1:1a:ea:78:e2:84:34:e4: a1:83:27:f4:42:c6:e5:36:f3:f9:01:e4:2f:11:34: a9:58:c8:37:53:92:00:3c:19:2b:aa:41:42:08:16: 2d:76:94:86:71:fe:63:7b:b1:74:f2:d0:6e:49:81: ea:fc:27:39:87:7d:de:47:93:cf:9e:96:59:d5:bf: 98:d0:1f:a4:e9:56:34:e9:14:d5:f7:3a:26:dc:66: 70:2e:dd:77:bf:8b:68:1d:a0:cf:3e:4a:af:ca:09: 8b:85:93:da:45:28:80:00:2c:32:eb:eb:7e:d2:3f: 6b:9b:e1:c2:e3:71:9d:54:36:6d:81:88:1a:4c:4b: 2e:38:de:2e:96:cf:a1:aa:15:68:01:15:1d:0f:3f: c7:1a:9e:6a:da:35:ea:50:b6:9b:9d:a3:6f:de:48: e4:b3:96:90:7b:c6:48:22:b5:28:fc:67:d1:9f:1b: 0c:5e:cc:32:3f:26:aa:fa:1f:5a:83:78:d2:4a:fa: 63:6b:42:9c:62:5d:4f:ec:27:a6:1d:60:6f:30:5d: e5:c7:8b:e1:2c:ae:e1:01:79:86:03:54:23:a6:60: c2:28:d5:0c:86:6f:16:da:ee:9c:57:b3:d6:93:14: 5a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:47:93:6C:0B:B5:5D:6E:E5:46:E6:70:2A:82:2F:45:6F:B0:D0:29 X509v3 Authority Key Identifier: keyid:E3:8A:C2:CF:B2:99:71:5B:3B:6D:58:66:C1:5C:F3:53:BE:48:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/E38AC2CFB299715B3B6D5866C15CF353BE48A770.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/E38AC2CFB299715B3B6D5866C15CF353BE48A770.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DKNtGA7spd4f5R3QACa56rczYDQyAc81wqo5cjBDU3d/0/3138392e38392e3234352e302f32342d3330203d3e203238313838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 189.89.245.0/24 Signature Algorithm: sha256WithRSAEncryption 53:96:0c:49:1d:fd:48:7b:50:ae:41:af:47:9f:c4:09:eb:84: 12:da:eb:20:81:a1:7e:da:87:fb:bd:8f:13:ad:5e:88:96:c4: 07:b7:3c:25:87:8d:2e:61:7f:a0:b0:58:bc:9e:d6:1b:da:d0: af:0d:0f:c6:a4:e9:71:34:58:2b:0b:6d:8f:9e:d6:8d:4a:24: 19:cb:0a:ab:b8:77:a8:f5:d8:ec:a8:eb:9c:83:47:a4:75:7a: 45:38:e6:0a:af:79:d7:3c:d7:f5:b9:fd:ad:07:a1:a2:a7:45: bd:e0:22:59:5e:f9:d3:fe:80:8b:94:9e:48:da:09:4c:b0:66: 92:d5:d9:57:05:db:f4:e9:f2:3f:49:94:83:c4:60:4a:4c:d8: 57:13:5e:e8:73:1a:63:98:a7:ff:0c:b7:c0:9a:97:c6:3b:d2: 01:c0:72:ad:9b:24:c3:58:c4:62:66:f5:27:84:49:6f:7d:91: 0a:b5:06:16:d7:b9:62:d0:9d:7d:c9:4a:7a:73:03:17:b6:73: cc:89:f6:ea:de:0f:ea:3c:6d:e3:20:7b:77:4b:14:8b:10:3d: 84:de:71:d4:af:1d:b4:17:42:ce:19:ac:48:c5:96:0d:ea:2c: c0:46:cd:c6:e1:94:eb:0c:4b:19:66:b1:40:97:3f:dc:0b:0b: 46:59:69:5c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUIyxwv78lqszfBBbx/qcojJfYe+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM4QUMyQ0ZCMjk5NzE1QjNCNkQ1ODY2QzE1Q0YzNTNC RTQ4QTc3MDAeFw0yNTAyMDUyMjU0NTJaFw0yNjAyMDQyMjU5NTJaMDMxMTAvBgNV BAMTKEI3NDc5MzZDMEJCNTVENkVFNTQ2RTY3MDJBODIyRjQ1NkZCMEQwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYz5XCWjsUQoTREqKCDkbG76sN edHBGup44oQ05KGDJ/RCxuU28/kB5C8RNKlYyDdTkgA8GSuqQUIIFi12lIZx/mN7 sXTy0G5Jger8JzmHfd5Hk8+ellnVv5jQH6TpVjTpFNX3OibcZnAu3Xe/i2gdoM8+ Sq/KCYuFk9pFKIAALDLr637SP2ub4cLjcZ1UNm2BiBpMSy443i6Wz6GqFWgBFR0P P8canmraNepQtpudo2/eSOSzlpB7xkgitSj8Z9GfGwxezDI/Jqr6H1qDeNJK+mNr QpxiXU/sJ6YdYG8wXeXHi+EsruEBeYYDVCOmYMIo1QyGbxba7pxXs9aTFFo5AgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUt0eTbAu1XW7lRuZwKoIvRW+w0CkwHwYDVR0j BBgwFoAU44rCz7KZcVs7bVhmwVzzU75Ip3AwDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9ES050R0E3c3BkNGY1UjNRQUNhNTZyY3pZRFF5QWM4MXdxbzVjakJEVTNk LzAvRTM4QUMyQ0ZCMjk5NzE1QjNCNkQ1ODY2QzE1Q0YzNTNCRTQ4QTc3MC5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS9FMzhBQzJDRkIyOTk3MTVCM0I2 RDU4NjZDMTVDRjM1M0JFNDhBNzcwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9E S050R0E3c3BkNGY1UjNRQUNhNTZyY3pZRFF5QWM4MXdxbzVjakJEVTNkLzAvMzEz ODM5MmUzODM5MmUzMjM0MzUyZTMwMmYzMjM0MmQzMzMwMjAzZDNlMjAzMjM4MzEz ODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAvVn1MA0GCSqGSIb3DQEBCwUAA4IBAQBTlgxJHf1Ie1Cu Qa9Hn8QJ64QS2usggaF+2of7vY8TrV6IlsQHtzwlh40uYX+gsFi8ntYb2tCvDQ/G pOlxNFgrC22PntaNSiQZywqruHeo9djsqOucg0ekdXpFOOYKr3nXPNf1uf2tB6Gi p0W94CJZXvnT/oCLlJ5I2glMsGaS1dlXBdv06fI/SZSDxGBKTNhXE17ocxpjmKf/ DLfAmpfGO9IBwHKtmyTDWMRiZvUnhElvfZEKtQYW17li0J19yUp6cwMXtnPMifbq 3g/qPG3jIHt3SxSLED2E3nHUrx20F0LOGaxIxZYN6izARs3G4ZTrDEsZZrFAlz/c CwtGWWlc -----END CERTIFICATE-----Generated at Mon Apr 7 10:19:06 2025 by rpki-client