$ rpki-client -vvf rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e382e302f32322d3232203d3e20323633323536.roa File: 3139382e35382e382e302f32322d3232203d3e20323633323536.roa (raw, json) Hash identifier: p+9Pk1Jqbf1HMcF+ZwusZs1cGG+32elxLKnSBsLt+4w= Subject key identifier: 34:FF:EF:58:BE:C1:B8:29:21:C4:EE:73:9D:04:E6:1D:2E:BA:D6:75 Certificate issuer: /CN=60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011 Certificate serial: 38DFEA9434270E5FCD3C29A901661DAE102C8863 Authority key identifier: 60:F5:CE:DC:60:B1:C9:2A:5A:74:DC:B3:CF:E6:F0:44:F9:46:20:11 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer Subject info access: rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e382e302f32322d3232203d3e20323633323536.roa Signing time: Fri 10 Jan 2025 16:41:54 +0000 ROA not before: Fri 10 Jan 2025 16:36:54 +0000 ROA not after: Fri 09 Jan 2026 16:41:54 +0000 asID: 263256 IP address blocks: 198.58.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.crl rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 13:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:df:ea:94:34:27:0e:5f:cd:3c:29:a9:01:66:1d:ae:10:2c:88:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011 Validity Not Before: Jan 10 16:36:54 2025 GMT Not After : Jan 9 16:41:54 2026 GMT Subject: CN=34FFEF58BEC1B82921C4EE739D04E61D2EBAD675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bc:12:d0:75:03:1b:f4:f5:e9:f2:85:6f:04: d6:b1:85:72:0e:88:75:03:52:e6:e8:19:54:9e:4e: 7a:2c:27:84:85:4c:1c:37:cd:12:24:3c:f9:ae:31: 22:b4:c6:60:6f:84:17:e7:74:fb:6a:dc:6b:eb:f1: 6b:2d:e4:54:6e:04:88:c9:8b:c4:0c:0e:96:e9:8c: 33:55:76:71:13:cf:7a:fe:f2:88:b8:36:c2:0f:d7: 23:fb:f6:83:7a:ac:ef:b0:21:e2:0c:81:0f:b4:3b: 89:27:2b:87:df:ed:8d:b3:a9:2d:67:f0:7d:ca:94: 9c:3f:29:8e:90:31:02:3e:e2:a2:94:73:87:e2:a2: 1d:0c:00:d5:37:94:cf:4a:d0:22:f5:72:6e:a4:90: e2:6b:3d:1d:77:dd:87:af:36:c2:00:c4:09:1c:ab: 12:88:b8:2a:8b:fb:aa:d4:3b:0e:12:8c:cf:01:cb: 60:22:df:e8:b1:c1:ac:4a:a5:20:a3:7a:d0:a8:ed: 04:e8:82:a0:a2:74:66:89:da:5a:63:5e:8c:ed:a9: d5:d7:49:ff:b2:6f:c0:80:2e:4b:c5:eb:85:46:1d: 34:db:2c:3f:6f:cd:48:ba:9f:ca:a5:d9:c8:6a:d9: 7f:f9:7a:43:79:6e:44:9f:79:c8:15:f7:33:b6:90: 28:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FF:EF:58:BE:C1:B8:29:21:C4:EE:73:9D:04:E6:1D:2E:BA:D6:75 X509v3 Authority Key Identifier: keyid:60:F5:CE:DC:60:B1:C9:2A:5A:74:DC:B3:CF:E6:F0:44:F9:46:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e382e302f32322d3232203d3e20323633323536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.58.8.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:1b:ba:37:68:27:da:3e:88:52:29:e2:1a:a9:83:9a:d3:13: 67:0b:4d:ab:61:2b:c2:5d:4a:fa:aa:d0:a4:11:ff:e5:12:c5: 14:84:f2:4d:8e:30:23:aa:00:70:19:b0:49:d4:09:6f:90:99: 7e:04:8b:be:6f:98:6a:d6:fe:6a:82:13:5b:8a:98:85:f4:e8: 74:c4:5e:46:6c:f0:52:a5:08:00:b5:6d:12:70:25:3a:54:10: 90:77:68:ef:40:e5:0c:37:5f:17:07:e9:45:ef:31:39:a8:89: 0c:5e:f8:ff:e4:bf:99:be:fa:f4:6e:fd:63:8b:45:1e:58:c7: bd:f0:ee:2d:c1:f2:7a:f1:21:4d:48:26:e8:b4:6d:1f:74:3a: f3:35:d4:4a:8e:ef:4d:c4:d1:36:c8:4a:64:fd:f1:83:af:ea: ac:14:a9:01:1a:31:2b:9a:f2:db:55:3a:0d:17:2c:b4:ec:51: 62:07:79:66:27:d4:62:80:62:01:a7:ce:2b:5d:c5:5a:76:d7: 2f:37:f8:52:7b:2a:f9:92:ff:d7:03:ae:a1:17:e9:b4:0f:6d: 7e:0a:36:4f:30:47:b5:96:eb:b8:f5:b2:be:c0:94:02:92:91: c1:0e:cc:fb:32:fc:b9:d2:c3:fb:3a:3c:3e:e1:38:f6:4a:46: b2:ec:a2:65 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUON/qlDQnDl/NPCmpAWYdrhAsiGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBGNUNFREM2MEIxQzkyQTVBNzREQ0IzQ0ZFNkYwNDRG OTQ2MjAxMTAeFw0yNTAxMTAxNjM2NTRaFw0yNjAxMDkxNjQxNTRaMDMxMTAvBgNV BAMTKDM0RkZFRjU4QkVDMUI4MjkyMUM0RUU3MzlEMDRFNjFEMkVCQUQ2NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZvBLQdQMb9PXp8oVvBNaxhXIO iHUDUuboGVSeTnosJ4SFTBw3zRIkPPmuMSK0xmBvhBfndPtq3Gvr8Wst5FRuBIjJ i8QMDpbpjDNVdnETz3r+8oi4NsIP1yP79oN6rO+wIeIMgQ+0O4knK4ff7Y2zqS1n 8H3KlJw/KY6QMQI+4qKUc4fioh0MANU3lM9K0CL1cm6kkOJrPR133YevNsIAxAkc qxKIuCqL+6rUOw4SjM8By2Ai3+ixwaxKpSCjetCo7QTogqCidGaJ2lpjXoztqdXX Sf+yb8CALkvF64VGHTTbLD9vzUi6n8ql2chq2X/5ekN5bkSfecgV9zO2kChnAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUNP/vWL7BuCkhxO5znQTmHS661nUwHwYDVR0j BBgwFoAUYPXO3GCxySpadNyzz+bwRPlGIBEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRXB3UGZzd1c5TmdMZVZKdXFHQ2RZTlRLRWluMXpWQlQ2b0d6ZXM5YXJk U2QvMC82MEY1Q0VEQzYwQjFDOTJBNUE3NERDQjNDRkU2RjA0NEY5NDYyMDExLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzYwRjVDRURDNjBCMUM5MkE1 QTc0RENCM0NGRTZGMDQ0Rjk0NjIwMTEuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Vwd1Bmc3dXOU5nTGVWSnVxR0NkWU5US0VpbjF6VkJUNm9HemVzOWFyZFNkLzAv MzEzOTM4MmUzNTM4MmUzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMyMzYzMzMy MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAsY6CDANBgkqhkiG9w0BAQsFAAOCAQEAShu6N2gn2j6I UiniGqmDmtMTZwtNq2Erwl1K+qrQpBH/5RLFFITyTY4wI6oAcBmwSdQJb5CZfgSL vm+Yatb+aoITW4qYhfTodMReRmzwUqUIALVtEnAlOlQQkHdo70DlDDdfFwfpRe8x OaiJDF74/+S/mb769G79Y4tFHljHvfDuLcHyevEhTUgm6LRtH3Q68zXUSo7vTcTR NshKZP3xg6/qrBSpARoxK5ry21U6DRcstOxRYgd5ZifUYoBiAafOK13FWnbXLzf4 Unsq+ZL/1wOuoRfptA9tfgo2TzBHtZbruPWyvsCUApKRwQ7M+zL8udLD+zo8PuE4 9kpGsuyiZQ== -----END CERTIFICATE-----Generated at Tue Apr 8 16:40:39 2025 by rpki-client