$ rpki-client -vvf rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/3137302e38312e32302e302f32322d3234203d3e20323636333837.roa File: 3137302e38312e32302e302f32322d3234203d3e20323636333837.roa (raw, json) Hash identifier: VJh4yPuPfP8C/QCwSIvi/lNvlfKZSvYgiigNdvjXEGQ= Subject key identifier: 95:B6:1E:7F:10:69:66:11:C3:B1:80:8E:2E:B5:97:C9:80:18:C4:77 Certificate issuer: /CN=A28F0C1ED18F48A669C76BA34CD72F2A1456A418 Certificate serial: 041BB08997386C6BEEB3708FF53084CAAD6A89CC Authority key identifier: A2:8F:0C:1E:D1:8F:48:A6:69:C7:6B:A3:4C:D7:2F:2A:14:56:A4:18 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.cer Subject info access: rsync://rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/3137302e38312e32302e302f32322d3234203d3e20323636333837.roa Signing time: Thu 06 Mar 2025 12:16:59 +0000 ROA not before: Thu 06 Mar 2025 12:11:59 +0000 ROA not after: Thu 05 Mar 2026 12:16:59 +0000 asID: 266387 IP address blocks: 170.81.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.crl rsync://rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 08:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1b:b0:89:97:38:6c:6b:ee:b3:70:8f:f5:30:84:ca:ad:6a:89:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A28F0C1ED18F48A669C76BA34CD72F2A1456A418 Validity Not Before: Mar 6 12:11:59 2025 GMT Not After : Mar 5 12:16:59 2026 GMT Subject: CN=95B61E7F10696611C3B1808E2EB597C98018C477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:21:c1:46:dd:b3:db:8a:21:29:3a:4e:e4:38: 22:68:1f:92:6a:16:b7:ba:53:a8:c0:eb:87:7f:d8: 61:27:d5:a1:29:d6:09:22:89:1f:8b:c2:47:89:9b: 10:a5:58:4c:6c:69:43:49:c1:88:19:b3:16:72:7a: 99:7d:c6:90:de:66:29:7f:be:59:83:5b:5d:c7:29: b8:ea:1d:b2:b6:8a:6f:5d:63:0e:40:0d:f5:1a:92: 4c:18:fe:ec:a2:be:61:76:71:08:34:ff:ef:08:fc: 8c:2b:a7:7a:1e:89:70:30:9d:46:4a:a2:69:a2:98: 6a:d2:46:7c:62:50:61:1b:0e:08:ef:b8:ee:00:f9: 5f:bc:7a:98:ab:b6:19:12:36:8e:b9:84:8b:e4:53: 1f:37:6e:f4:5c:31:02:73:be:b1:66:6e:cb:96:57: 2f:9e:7b:ab:6b:53:e8:02:53:6d:85:f1:59:c8:2a: 6d:e1:81:dc:63:f8:fc:7f:3a:61:b1:96:8a:d9:29: f1:e5:5a:80:b6:55:4f:21:2b:a3:05:25:f0:c2:fa: 49:80:b7:23:ce:7b:67:93:81:f6:f0:1d:3d:49:ed: 0c:26:2a:b8:fa:e8:34:6d:75:69:3f:42:2f:25:29: 80:32:b4:43:c2:39:11:38:ba:cd:e0:97:a2:47:e0: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B6:1E:7F:10:69:66:11:C3:B1:80:8E:2E:B5:97:C9:80:18:C4:77 X509v3 Authority Key Identifier: keyid:A2:8F:0C:1E:D1:8F:48:A6:69:C7:6B:A3:4C:D7:2F:2A:14:56:A4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/A28F0C1ED18F48A669C76BA34CD72F2A1456A418.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/DvGjRXrma7jNGajs6mACSb5kBfYs6kuGt5rTV3exjvH9/1/3137302e38312e32302e302f32322d3234203d3e20323636333837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.81.20.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:06:22:90:69:c1:de:4b:ba:90:88:35:96:7f:f0:2b:0f:ec: 65:08:cf:c6:68:c7:d3:66:b1:0c:4f:9d:be:3f:fb:b1:79:ac: c9:2c:79:1d:13:82:19:54:7f:be:6c:c0:a0:c4:1b:36:a0:35: 3e:a6:c5:83:10:17:29:ff:2a:57:85:77:62:da:0d:e6:69:ca: 9b:f3:51:7f:2e:4d:29:56:bb:05:e3:3f:be:a5:55:74:65:95: 23:20:49:27:ea:0a:5f:80:9c:b8:9e:a0:3f:16:0a:2d:c5:ef: 73:3c:29:d9:8d:07:e9:c9:6e:20:f9:d9:ae:77:8e:a7:f8:a6: 03:e0:50:36:79:9b:a4:f3:21:16:e8:2b:41:02:4e:46:8d:83: bf:90:24:84:87:27:f6:93:5b:8d:58:41:0b:54:f4:07:78:7e: 22:b3:f3:a4:9c:05:0a:fe:af:92:3c:05:70:5a:51:05:c7:a7: 66:a4:2a:a1:94:24:98:a4:f6:1e:9c:0c:05:d0:8c:69:2c:6f: 0f:e4:5a:78:02:68:b7:c3:16:1a:d9:0f:2f:5d:bb:98:4d:de: 6b:2e:9e:f4:9b:a5:e1:17:9a:93:76:a5:fa:ac:8e:3c:ab:1e: 70:56:ca:8c:3a:da:4d:77:de:b9:07:2c:f0:91:49:c2:8b:33: 51:0b:8f:dc -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUBBuwiZc4bGvus3CP9TCEyq1qicwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTI4RjBDMUVEMThGNDhBNjY5Qzc2QkEzNENENzJGMkEx NDU2QTQxODAeFw0yNTAzMDYxMjExNTlaFw0yNjAzMDUxMjE2NTlaMDMxMTAvBgNV BAMTKDk1QjYxRTdGMTA2OTY2MTFDM0IxODA4RTJFQjU5N0M5ODAxOEM0NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyIcFG3bPbiiEpOk7kOCJoH5Jq Fre6U6jA64d/2GEn1aEp1gkiiR+LwkeJmxClWExsaUNJwYgZsxZyepl9xpDeZil/ vlmDW13HKbjqHbK2im9dYw5ADfUakkwY/uyivmF2cQg0/+8I/Iwrp3oeiXAwnUZK ommimGrSRnxiUGEbDgjvuO4A+V+8epirthkSNo65hIvkUx83bvRcMQJzvrFmbsuW Vy+ee6trU+gCU22F8VnIKm3hgdxj+Px/OmGxlorZKfHlWoC2VU8hK6MFJfDC+kmA tyPOe2eTgfbwHT1J7QwmKrj66DRtdWk/Qi8lKYAytEPCORE4us3gl6JH4HDrAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUlbYefxBpZhHDsYCOLrWXyYAYxHcwHwYDVR0j BBgwFoAUoo8MHtGPSKZpx2ujTNcvKhRWpBgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRHZHalJYcm1hN2pOR2FqczZtQUNTYjVrQmZZczZrdUd0NXJUVjNleGp2 SDkvMS9BMjhGMEMxRUQxOEY0OEE2NjlDNzZCQTM0Q0Q3MkYyQTE0NTZBNDE4LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0EyOEYwQzFFRDE4RjQ4QTY2 OUM3NkJBMzRDRDcyRjJBMTQ1NkE0MTguY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0R2R2pSWHJtYTdqTkdhanM2bUFDU2I1a0JmWXM2a3VHdDVyVFYzZXhqdkg5LzEv MzEzNzMwMmUzODMxMmUzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM2 MzMzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCqlEUMA0GCSqGSIb3DQEBCwUAA4IBAQAdBiKQacHe S7qQiDWWf/ArD+xlCM/GaMfTZrEMT52+P/uxeazJLHkdE4IZVH++bMCgxBs2oDU+ psWDEBcp/ypXhXdi2g3macqb81F/Lk0pVrsF4z++pVV0ZZUjIEkn6gpfgJy4nqA/ Fgotxe9zPCnZjQfpyW4g+dmud46n+KYD4FA2eZuk8yEW6CtBAk5GjYO/kCSEhyf2 k1uNWEELVPQHeH4is/OknAUK/q+SPAVwWlEFx6dmpCqhlCSYpPYenAwF0IxpLG8P 5Fp4Ami3wxYa2Q8vXbuYTd5rLp70m6XhF5qTdqX6rI48qx5wVsqMOtpNd965Byzw kUnCizNRC4/c -----END CERTIFICATE-----Generated at Mon Apr 21 23:03:35 2025 by rpki-client