$ rpki-client -vvf rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa File: 34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa (raw, json) Hash identifier: 7ef6nIdaFXbXcgLyfcWW/f+FExEtiWryilKfoEm6apY= Subject key identifier: A8:70:C2:6B:96:B8:E2:AC:71:5B:05:24:05:68:06:9C:6E:CA:07:93 Certificate issuer: /CN=7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF Certificate serial: 24F5E50DC7BB63B035951EE70ACB7278F7591849 Authority key identifier: 71:42:B3:14:CC:CE:4C:B1:7D:8A:D2:BB:C9:0C:BB:C1:5A:88:BB:AF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.cer Subject info access: rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa Signing time: Sat 11 Jan 2025 20:13:39 +0000 ROA not before: Sat 11 Jan 2025 20:08:39 +0000 ROA not after: Sat 10 Jan 2026 20:13:39 +0000 asID: 268850 IP address blocks: 45.174.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.crl rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 21 Apr 2025 04:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f5:e5:0d:c7:bb:63:b0:35:95:1e:e7:0a:cb:72:78:f7:59:18:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF Validity Not Before: Jan 11 20:08:39 2025 GMT Not After : Jan 10 20:13:39 2026 GMT Subject: CN=A870C26B96B8E2AC715B05240568069C6ECA0793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:e2:ed:29:51:47:8f:e8:a8:1a:5d:b7:1d: 38:4c:b4:1c:34:d0:c7:0b:0a:6b:de:74:dd:a1:14: 7e:d9:ec:ed:0b:f3:df:57:8f:b5:4d:10:16:9f:47: 0c:c4:e2:44:76:70:24:91:c1:6c:57:6c:60:90:55: fd:d1:26:4f:34:9f:43:b3:6b:cd:5d:d7:80:74:da: 4a:9c:6e:b9:32:ec:52:51:aa:af:29:5e:93:e3:52: 66:ae:5d:22:10:a9:51:a5:bf:cb:7f:15:ed:40:b4: 55:89:08:40:8e:dc:5a:88:01:57:e6:93:05:94:6d: a9:72:81:77:cd:da:69:0a:95:7a:3a:ae:78:e4:99: f4:41:29:c6:b3:93:9e:19:37:e1:01:bb:13:c4:f0: 6f:d4:4d:8e:4d:4a:04:d9:88:33:85:58:e6:67:bb: 19:14:98:51:5e:06:a7:ed:00:0b:31:3f:1b:b1:3a: d0:db:d4:f4:89:4e:05:4d:f5:fd:f6:7b:59:50:91: dd:be:27:d3:05:a2:4d:8a:3a:2b:47:37:e7:42:db: 7d:bc:92:3d:8c:be:6b:aa:61:6c:78:28:cd:d5:fa: 7e:70:ba:57:18:0b:19:c8:d5:ae:a2:77:99:7c:dd: c4:38:5f:94:c4:ef:54:4d:7e:b7:98:b5:2d:22:68: de:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:70:C2:6B:96:B8:E2:AC:71:5B:05:24:05:68:06:9C:6E:CA:07:93 X509v3 Authority Key Identifier: keyid:71:42:B3:14:CC:CE:4C:B1:7D:8A:D2:BB:C9:0C:BB:C1:5A:88:BB:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/7142B314CCCE4CB17D8AD2BBC90CBBC15A88BBAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/Er2sAPFTxrFBTUh1eQdQPYusZAcpGzsQNVukehPZEEkV/0/34352e3137342e3132382e302f32342d3234203d3e20323638383530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.174.128.0/24 Signature Algorithm: sha256WithRSAEncryption 17:b7:51:59:3f:3d:6d:ad:ad:e3:37:8a:cf:bf:7f:b2:63:39: 56:97:be:d7:9a:c0:82:f6:c7:da:4e:d8:6d:79:20:78:95:01: 71:05:6f:51:7f:4e:aa:39:26:cd:25:6a:f6:38:db:1c:4a:13: 33:b4:14:b3:1a:03:26:b7:f2:8d:bf:e9:84:3d:b7:44:fe:ce: d9:b6:db:9e:4d:13:56:ad:d0:0d:ef:c7:07:c5:34:ba:00:cd: 59:a8:97:18:77:7e:3c:f3:16:e8:f7:1e:29:25:2a:ce:cd:ac: 2d:50:d3:91:e9:2c:f9:c8:68:e2:6d:7c:67:d9:d4:44:7d:29: 35:6b:03:96:73:a9:fc:17:f7:6a:ba:03:11:43:82:63:40:f8: 0d:df:01:1d:4c:2b:79:fc:28:67:fc:13:23:50:55:16:41:fa: fb:36:52:81:d9:ff:b5:50:0f:2c:42:26:af:2f:dc:cd:13:02: c5:71:e5:46:f1:16:26:fb:58:c3:83:e0:df:0e:96:79:1b:7f: 05:57:31:d5:dc:dc:b5:f4:60:6d:87:40:48:aa:f8:aa:b4:d3: 75:c5:76:e2:5f:54:6b:c9:7d:34:33:ba:69:c4:f8:62:38:71: 8f:e1:41:20:85:bc:33:79:b2:70:a5:ac:ab:0e:ce:8b:fc:33: 54:d7:a0:79 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUJPXlDce7Y7A1lR7nCstyePdZGEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE0MkIzMTRDQ0NFNENCMTdEOEFEMkJCQzkwQ0JCQzE1 QTg4QkJBRjAeFw0yNTAxMTEyMDA4MzlaFw0yNjAxMTAyMDEzMzlaMDMxMTAvBgNV BAMTKEE4NzBDMjZCOTZCOEUyQUM3MTVCMDUyNDA1NjgwNjlDNkVDQTA3OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3XuLtKVFHj+ioGl23HThMtBw0 0McLCmvedN2hFH7Z7O0L899Xj7VNEBafRwzE4kR2cCSRwWxXbGCQVf3RJk80n0Oz a81d14B02kqcbrky7FJRqq8pXpPjUmauXSIQqVGlv8t/Fe1AtFWJCECO3FqIAVfm kwWUbalygXfN2mkKlXo6rnjkmfRBKcazk54ZN+EBuxPE8G/UTY5NSgTZiDOFWOZn uxkUmFFeBqftAAsxPxuxOtDb1PSJTgVN9f32e1lQkd2+J9MFok2KOitHN+dC2328 kj2MvmuqYWx4KM3V+n5wulcYCxnI1a6id5l83cQ4X5TE71RNfreYtS0iaN41AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUqHDCa5a44qxxWwUkBWgGnG7KB5MwHwYDVR0j BBgwFoAUcUKzFMzOTLF9itK7yQy7wVqIu68wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRXIyc0FQRlR4ckZCVFVoMWVRZFFQWXVzWkFjcEd6c1FOVnVrZWhQWkVF a1YvMC83MTQyQjMxNENDQ0U0Q0IxN0Q4QUQyQkJDOTBDQkJDMTVBODhCQkFGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcxNDJCMzE0Q0NDRTRDQjE3 RDhBRDJCQkM5MENCQkMxNUE4OEJCQUYuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0VyMnNBUEZUeHJGQlRVaDFlUWRRUFl1c1pBY3BHenNRTlZ1a2VoUFpFRWtWLzAv MzQzNTJlMzEzNzM0MmUzMTMyMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2 MzgzODM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAAtroAwDQYJKoZIhvcNAQELBQADggEBABe3UVk/ PW2treM3is+/f7JjOVaXvteawIL2x9pO2G15IHiVAXEFb1F/Tqo5Js0lavY42xxK EzO0FLMaAya38o2/6YQ9t0T+ztm2255NE1at0A3vxwfFNLoAzVmolxh3fjzzFuj3 HiklKs7NrC1Q05HpLPnIaOJtfGfZ1ER9KTVrA5ZzqfwX92q6AxFDgmNA+A3fAR1M K3n8KGf8EyNQVRZB+vs2UoHZ/7VQDyxCJq8v3M0TAsVx5UbxFib7WMOD4N8Olnkb fwVXMdXc3LX0YG2HQEiq+Kq003XFduJfVGvJfTQzumnE+GI4cY/hQSCFvDN5snCl rKsOzov8M1TXoHk= -----END CERTIFICATE-----Generated at Sun Apr 20 13:54:54 2025 by rpki-client