$ rpki-client -vvf rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/3138372e3132302e3234302e302f32302d3234203d3e203533313330.roa File: 3138372e3132302e3234302e302f32302d3234203d3e203533313330.roa (raw, json) Hash identifier: BzoyXL30Xsaxt5/GzA+mLV5q6XBxznhdO2qisUbseRg= Subject key identifier: D5:1F:5B:11:28:3A:32:48:F7:83:8F:62:E0:00:76:B2:76:82:CD:5D Certificate issuer: /CN=02CB993E9585A53FC6B40DA762A73EB2821BF6ED Certificate serial: 4BBC0F707DBE3EEE3ED745D05EE97572918C752C Authority key identifier: 02:CB:99:3E:95:85:A5:3F:C6:B4:0D:A7:62:A7:3E:B2:82:1B:F6:ED Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.cer Subject info access: rsync://rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/3138372e3132302e3234302e302f32302d3234203d3e203533313330.roa Signing time: Thu 06 Mar 2025 05:59:43 +0000 ROA not before: Thu 06 Mar 2025 05:54:43 +0000 ROA not after: Thu 05 Mar 2026 05:59:43 +0000 asID: 53130 IP address blocks: 187.120.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.crl rsync://rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sun 13 Apr 2025 16:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bc:0f:70:7d:be:3e:ee:3e:d7:45:d0:5e:e9:75:72:91:8c:75:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02CB993E9585A53FC6B40DA762A73EB2821BF6ED Validity Not Before: Mar 6 05:54:43 2025 GMT Not After : Mar 5 05:59:43 2026 GMT Subject: CN=D51F5B11283A3248F7838F62E00076B27682CD5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fe:48:ec:4a:1c:4a:23:19:69:b2:1a:7f:cc: 74:34:97:3a:15:24:44:1f:61:81:b0:44:2d:ec:da: 90:02:d0:0e:b1:53:ed:1c:7e:51:af:86:59:0f:2f: 8e:15:c1:5a:14:9d:1f:96:86:0d:c6:79:51:09:61: 33:e5:64:a5:71:1b:0b:ad:9c:73:3a:ed:bc:1a:98: dd:44:9e:5f:a5:1e:f2:6b:d2:4b:59:4b:76:a1:ee: b5:ca:06:28:c8:4a:73:27:c2:c7:8b:7d:22:80:6d: 42:ed:bb:a6:b9:d6:94:7d:f1:e9:90:37:45:b1:9d: c4:04:c2:7f:3d:fb:4a:a3:d8:70:7d:17:08:78:78: 36:90:17:07:f2:67:73:0d:0d:59:2f:9e:46:dc:99: 89:8a:76:55:7f:4c:54:22:36:73:7f:ec:df:64:44: d5:4f:03:dc:a1:0e:15:58:df:65:95:de:c1:af:ce: a8:0d:9b:90:bd:09:0b:25:d3:38:ac:72:72:a8:cb: 9a:41:90:c4:0a:de:8e:34:18:9b:e3:f6:d5:74:dc: 42:6c:e1:db:9c:34:cc:96:d4:59:01:5d:ed:98:e3: cc:7a:65:db:f8:3d:a1:70:1c:b1:46:19:30:30:58: 85:9c:a1:a1:d2:c1:08:1d:4d:f8:63:0f:76:ee:ae: dc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1F:5B:11:28:3A:32:48:F7:83:8F:62:E0:00:76:B2:76:82:CD:5D X509v3 Authority Key Identifier: keyid:02:CB:99:3E:95:85:A5:3F:C6:B4:0D:A7:62:A7:3E:B2:82:1B:F6:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/02CB993E9585A53FC6B40DA762A73EB2821BF6ED.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DR8GQ5BUdBH4kqaACcZYQbjnUERKgPYCk2NJi7J4KL6Z/1/3138372e3132302e3234302e302f32302d3234203d3e203533313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 187.120.240.0/20 Signature Algorithm: sha256WithRSAEncryption bb:57:7e:61:9d:04:a0:4c:42:d1:9e:e4:93:27:64:58:42:02: 9a:36:f7:5f:c5:c7:41:ab:e4:e9:2d:f2:2c:1d:1e:57:55:7b: 0e:f5:09:89:22:65:08:80:a3:97:b2:30:4e:f9:7c:e6:cc:cf: a4:dd:6b:ad:73:3c:6d:ae:a5:ff:d2:6c:4e:0b:4b:d9:d3:b2: 3c:a2:94:17:77:df:a8:2e:8f:77:43:1a:2c:20:24:8d:80:66: 61:bd:2a:e5:f8:cc:ce:7b:c8:4a:5c:dd:ec:54:34:19:25:74: c3:6a:a3:bf:7b:d7:ad:8e:c3:55:bc:5f:ed:1f:a0:94:75:72: ac:52:25:44:9a:f7:46:02:b1:25:94:5c:9b:a5:1e:5c:38:d1: df:98:d2:ea:b9:b8:98:30:6a:e3:71:80:b7:35:1c:33:01:15: ec:6d:85:ca:a5:16:e9:74:40:38:01:20:90:e3:6e:6b:09:58: dc:41:c9:c7:21:ba:d6:33:a8:a7:08:68:75:ff:a9:07:52:ac: 98:a6:7a:d4:dc:0b:76:dd:b9:f9:87:0a:cc:59:40:c9:ec:e0: 7f:15:59:9c:e9:54:f1:51:20:c7:cd:06:19:dd:b7:bd:05:2e: 92:ac:03:c1:d0:0f:d4:f2:ff:eb:c4:9d:24:3c:19:63:4d:5d: 7c:90:2e:67 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUS7wPcH2+Pu4+10XQXul1cpGMdSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDJDQjk5M0U5NTg1QTUzRkM2QjQwREE3NjJBNzNFQjI4 MjFCRjZFRDAeFw0yNTAzMDYwNTU0NDNaFw0yNjAzMDUwNTU5NDNaMDMxMTAvBgNV BAMTKEQ1MUY1QjExMjgzQTMyNDhGNzgzOEY2MkUwMDA3NkIyNzY4MkNENUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK/kjsShxKIxlpshp/zHQ0lzoV JEQfYYGwRC3s2pAC0A6xU+0cflGvhlkPL44VwVoUnR+Whg3GeVEJYTPlZKVxGwut nHM67bwamN1Enl+lHvJr0ktZS3ah7rXKBijISnMnwseLfSKAbULtu6a51pR98emQ N0WxncQEwn89+0qj2HB9Fwh4eDaQFwfyZ3MNDVkvnkbcmYmKdlV/TFQiNnN/7N9k RNVPA9yhDhVY32WV3sGvzqgNm5C9CQsl0ziscnKoy5pBkMQK3o40GJvj9tV03EJs 4ducNMyW1FkBXe2Y48x6Zdv4PaFwHLFGGTAwWIWcoaHSwQgdTfhjD3burtynAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU1R9bESg6Mkj3g49i4AB2snaCzV0wHwYDVR0j BBgwFoAUAsuZPpWFpT/GtA2nYqc+soIb9u0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRFI4R1E1QlVkQkg0a3FhQUNjWllRYmpuVUVSS2dQWUNrMk5KaTdKNEtM NlovMS8wMkNCOTkzRTk1ODVBNTNGQzZCNDBEQTc2MkE3M0VCMjgyMUJGNkVELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzAyQ0I5OTNFOTU4NUE1M0ZD NkI0MERBNzYyQTczRUIyODIxQkY2RUQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0RSOEdRNUJVZEJINGtxYUFDY1pZUWJqblVFUktnUFlDazJOSmk3SjRLTDZaLzEv MzEzODM3MmUzMTMyMzAyZTMyMzQzMDJlMzAyZjMyMzAyZDMyMzQyMDNkM2UyMDM1 MzMzMTMzMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAS7ePAwDQYJKoZIhvcNAQELBQADggEBALtXfmGd BKBMQtGe5JMnZFhCApo291/Fx0Gr5Okt8iwdHldVew71CYkiZQiAo5eyME75fObM z6Tda61zPG2upf/SbE4LS9nTsjyilBd336guj3dDGiwgJI2AZmG9KuX4zM57yEpc 3exUNBkldMNqo797162Ow1W8X+0foJR1cqxSJUSa90YCsSWUXJulHlw40d+Y0uq5 uJgwauNxgLc1HDMBFexthcqlFul0QDgBIJDjbmsJWNxBycchutYzqKcIaHX/qQdS rJimetTcC3bdufmHCsxZQMns4H8VWZzpVPFRIMfNBhndt70FLpKsA8HQD9Ty/+vE nSQ8GWNNXXyQLmc= -----END CERTIFICATE-----Generated at Sat Apr 12 21:28:50 2025 by rpki-client