$ rpki-client -vvf rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e392e302f32342d3234203d3e20323633323536.roa File: 3139382e35382e392e302f32342d3234203d3e20323633323536.roa (raw, json) Hash identifier: Mzx5SzcSaK0NoJ+H7V6nlMvabbWeJkGH7c6YsIHtG4s= Subject key identifier: 6B:ED:54:82:68:01:E3:29:E1:A9:4D:5B:32:89:25:2D:FA:40:14:65 Certificate issuer: /CN=60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011 Certificate serial: 68EACD0AA8008FB677A2FC74A1C137D46A3C1059 Authority key identifier: 60:F5:CE:DC:60:B1:C9:2A:5A:74:DC:B3:CF:E6:F0:44:F9:46:20:11 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer Subject info access: rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e392e302f32342d3234203d3e20323633323536.roa Signing time: Fri 10 Jan 2025 16:41:54 +0000 ROA not before: Fri 10 Jan 2025 16:36:54 +0000 ROA not after: Fri 09 Jan 2026 16:41:54 +0000 asID: 263256 IP address blocks: 198.58.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.crl rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 13:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ea:cd:0a:a8:00:8f:b6:77:a2:fc:74:a1:c1:37:d4:6a:3c:10:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011 Validity Not Before: Jan 10 16:36:54 2025 GMT Not After : Jan 9 16:41:54 2026 GMT Subject: CN=6BED54826801E329E1A94D5B3289252DFA401465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:92:cb:ce:1f:39:e8:f6:f2:d7:58:1e:e8:e2: 11:1b:7e:52:f5:92:d5:e7:b4:a0:c1:1c:92:98:a1: 6d:a4:12:42:fb:4e:4b:78:32:dd:4f:da:3f:6c:e3: 89:ea:52:de:30:bf:f9:3f:b7:40:ad:02:26:f6:53: 41:d6:f2:53:5a:17:29:41:00:37:2a:11:1d:86:3d: b5:05:74:c4:40:38:34:b7:30:3e:10:b2:d8:47:fc: 10:f4:95:b0:66:1f:6c:ee:d7:7b:61:76:6c:fc:66: 9a:3a:f1:da:8a:e8:9d:1b:95:af:26:12:e1:4e:f1: a1:e5:c4:ea:f1:bf:9a:5a:a6:7a:17:9c:18:74:f6: 91:46:a6:22:7c:7f:26:87:a9:c3:4d:cd:1c:f0:41: a3:aa:6e:91:53:39:27:d0:1a:99:e8:fa:2c:3e:fe: 0b:17:11:5c:cf:62:0a:26:c3:02:4b:85:99:51:02: 30:bb:30:24:b1:38:5c:a2:f9:18:24:3c:7a:81:c5: 19:59:3c:17:81:67:ea:50:f9:82:9d:f3:9d:1d:04: 35:fe:9f:be:49:65:17:d7:e2:59:3e:f7:6d:d4:24: e4:a3:97:3c:53:e7:69:61:14:c5:9a:43:b1:1b:48: 2f:ca:23:16:2e:b2:91:26:d7:aa:fb:26:84:84:e8: c3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:ED:54:82:68:01:E3:29:E1:A9:4D:5B:32:89:25:2D:FA:40:14:65 X509v3 Authority Key Identifier: keyid:60:F5:CE:DC:60:B1:C9:2A:5A:74:DC:B3:CF:E6:F0:44:F9:46:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/60F5CEDC60B1C92A5A74DCB3CFE6F044F9462011.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/EpwPfswW9NgLeVJuqGCdYNTKEin1zVBT6oGzes9ardSd/0/3139382e35382e392e302f32342d3234203d3e20323633323536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.58.9.0/24 Signature Algorithm: sha256WithRSAEncryption 50:d3:f3:ee:a5:af:85:c7:bd:12:33:7a:a0:82:c8:7f:28:78: c4:25:ef:f5:fb:34:d5:16:ec:fc:d9:ec:73:ca:91:d9:98:fc: 08:33:90:9e:ca:55:85:35:0d:b1:94:dd:bd:da:2e:a5:ce:bb: e1:15:ce:ec:59:53:0d:ca:f9:03:c2:f5:b1:45:aa:d4:0c:da: 35:6c:df:25:37:4a:19:53:35:e1:f8:63:bf:c8:7a:69:83:ef: 67:25:e7:ed:59:67:c0:1d:74:f4:b6:c9:5a:5c:12:bf:83:86: 60:25:cc:26:e5:aa:08:37:b2:60:ec:e6:fe:0b:f9:88:ac:ce: 32:b0:7d:f2:49:fb:b0:2c:bd:14:36:b0:e8:d9:98:57:0a:e5: 9a:28:e7:f1:88:be:77:ba:60:60:ec:19:5f:ff:10:4d:11:ef: b8:81:d1:4f:49:d5:38:27:1e:ea:84:ee:58:0b:01:ec:4b:0c: 3b:fb:8b:dd:83:eb:b0:6c:f5:74:3a:7a:39:61:5e:b0:94:8c: d8:85:bf:22:c7:95:74:d2:1b:32:fc:87:8b:b6:ba:64:da:5c: d3:c5:3f:79:e1:45:f1:69:86:a1:b6:dd:cb:6f:a9:3d:63:c3: 4e:28:94:6e:f0:08:e1:e8:b7:3f:7c:62:45:d0:cc:ce:4b:37: 6d:8f:75:5a -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUaOrNCqgAj7Z3ovx0ocE31Go8EFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBGNUNFREM2MEIxQzkyQTVBNzREQ0IzQ0ZFNkYwNDRG OTQ2MjAxMTAeFw0yNTAxMTAxNjM2NTRaFw0yNjAxMDkxNjQxNTRaMDMxMTAvBgNV BAMTKDZCRUQ1NDgyNjgwMUUzMjlFMUE5NEQ1QjMyODkyNTJERkE0MDE0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcksvOHzno9vLXWB7o4hEbflL1 ktXntKDBHJKYoW2kEkL7Tkt4Mt1P2j9s44nqUt4wv/k/t0CtAib2U0HW8lNaFylB ADcqER2GPbUFdMRAODS3MD4QsthH/BD0lbBmH2zu13thdmz8Zpo68dqK6J0bla8m EuFO8aHlxOrxv5papnoXnBh09pFGpiJ8fyaHqcNNzRzwQaOqbpFTOSfQGpno+iw+ /gsXEVzPYgomwwJLhZlRAjC7MCSxOFyi+RgkPHqBxRlZPBeBZ+pQ+YKd850dBDX+ n75JZRfX4lk+923UJOSjlzxT52lhFMWaQ7EbSC/KIxYuspEm16r7JoSE6MNHAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUa+1UgmgB4ynhqU1bMoklLfpAFGUwHwYDVR0j BBgwFoAUYPXO3GCxySpadNyzz+bwRPlGIBEwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRXB3UGZzd1c5TmdMZVZKdXFHQ2RZTlRLRWluMXpWQlQ2b0d6ZXM5YXJk U2QvMC82MEY1Q0VEQzYwQjFDOTJBNUE3NERDQjNDRkU2RjA0NEY5NDYyMDExLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzYwRjVDRURDNjBCMUM5MkE1 QTc0RENCM0NGRTZGMDQ0Rjk0NjIwMTEuY2VyMIGqBggrBgEFBQcBCwSBnTCBmjCB lwYIKwYBBQUHMAuGgYpyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Vwd1Bmc3dXOU5nTGVWSnVxR0NkWU5US0VpbjF6VkJUNm9HemVzOWFyZFNkLzAv MzEzOTM4MmUzNTM4MmUzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzMzMy MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB /wQQMA4wDAQCAAEwBgMEAMY6CTANBgkqhkiG9w0BAQsFAAOCAQEAUNPz7qWvhce9 EjN6oILIfyh4xCXv9fs01Rbs/Nnsc8qR2Zj8CDOQnspVhTUNsZTdvdoupc674RXO 7FlTDcr5A8L1sUWq1AzaNWzfJTdKGVM14fhjv8h6aYPvZyXn7VlnwB109LbJWlwS v4OGYCXMJuWqCDeyYOzm/gv5iKzOMrB98kn7sCy9FDaw6NmYVwrlmijn8Yi+d7pg YOwZX/8QTRHvuIHRT0nVOCce6oTuWAsB7EsMO/uL3YPrsGz1dDp6OWFesJSM2IW/ IseVdNIbMvyHi7a6ZNpc08U/eeFF8WmGobbdy2+pPWPDTiiUbvAI4ei3P3xiRdDM zks3bY91Wg== -----END CERTIFICATE-----Generated at Tue Apr 8 16:45:01 2025 by rpki-client