$ rpki-client -vvf rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/34352e3137332e3232302e302f32322d3234203d3e20323638383239.roa File: 34352e3137332e3232302e302f32322d3234203d3e20323638383239.roa (raw, json) Hash identifier: 0fbl4Nt+LJET4F45bay6iK3Uv8jm0eAtJZhWEv6V2gY= Subject key identifier: 96:8A:FD:A7:58:0B:5E:4C:E9:2F:83:BD:CC:38:08:23:31:D1:B8:B2 Certificate issuer: /CN=2E8650E1A7B09F7749A5126450B8242131048354 Certificate serial: 65D901CAE4562CB9FF39BB323F34B85D8B2F451C Authority key identifier: 2E:86:50:E1:A7:B0:9F:77:49:A5:12:64:50:B8:24:21:31:04:83:54 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer Subject info access: rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/34352e3137332e3232302e302f32322d3234203d3e20323638383239.roa Signing time: Mon 13 Jan 2025 19:10:31 +0000 ROA not before: Mon 13 Jan 2025 19:05:31 +0000 ROA not after: Mon 12 Jan 2026 19:10:31 +0000 asID: 268829 IP address blocks: 45.173.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.crl rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 17 Feb 2025 20:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d9:01:ca:e4:56:2c:b9:ff:39:bb:32:3f:34:b8:5d:8b:2f:45:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E8650E1A7B09F7749A5126450B8242131048354 Validity Not Before: Jan 13 19:05:31 2025 GMT Not After : Jan 12 19:10:31 2026 GMT Subject: CN=968AFDA7580B5E4CE92F83BDCC38082331D1B8B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:59:37:80:1c:4b:d6:45:d6:73:1a:4f:b5: b3:a3:3a:66:b6:ad:7a:51:4b:72:d5:57:68:79:1c: 41:44:3a:69:6a:66:18:a3:42:e6:0b:c5:a5:d6:e4: 97:d9:5a:5c:2d:c6:c7:4e:6f:d4:c9:44:dc:d3:56: 50:5f:96:6d:f7:f1:ee:9a:3c:ba:85:44:08:10:c3: a6:28:5e:70:41:6a:55:e5:11:5b:74:91:b7:a0:7b: a8:52:dd:7e:d3:25:1b:c5:f0:8e:2e:97:19:04:75: eb:7d:e3:0e:3e:07:d5:0c:f0:44:a9:24:25:fa:e0: 31:db:17:fa:5c:65:34:cc:3c:09:df:33:73:ad:80: 84:62:8a:a7:5e:64:2a:33:5d:ec:89:20:43:82:6d: a3:d5:d2:db:d0:52:6c:a0:7c:bd:2d:b2:a6:b4:57: 21:e4:16:db:12:48:e0:64:61:97:f1:32:49:39:4f: 27:05:a5:dc:d9:26:cd:1c:bf:de:43:7b:3b:4c:0f: 92:28:e2:29:c6:32:89:87:67:be:4e:c8:c3:3a:22: 9e:80:13:37:aa:82:35:6e:ef:c4:05:0e:6a:20:94: 3b:81:75:0b:e8:a7:ca:53:e9:db:5c:e9:b8:b9:f6: 16:43:a5:f3:72:f9:af:84:57:fb:e7:6d:46:c2:9d: 4d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8A:FD:A7:58:0B:5E:4C:E9:2F:83:BD:CC:38:08:23:31:D1:B8:B2 X509v3 Authority Key Identifier: keyid:2E:86:50:E1:A7:B0:9F:77:49:A5:12:64:50:B8:24:21:31:04:83:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/2E8650E1A7B09F7749A5126450B8242131048354.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2E8650E1A7B09F7749A5126450B8242131048354.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FCDhxeHyBk4QPvuJgabf5RK9UwUvrrSJmdKCHPJA5YZq/0/34352e3137332e3232302e302f32322d3234203d3e20323638383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.173.220.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:17:cf:8d:53:97:e4:38:c4:22:3d:c3:33:80:fe:53:22:73: 8c:67:2c:1e:b5:a8:22:16:4b:d0:6c:eb:da:3a:97:7e:b0:c8: 9d:a8:a0:9b:69:e3:c3:fa:d8:da:8d:cb:c5:61:35:ab:47:02: a4:43:35:05:16:7f:c8:3c:71:45:e3:34:b9:2a:99:37:e0:7a: 42:42:15:ba:32:db:7f:92:33:42:5c:5d:d4:1b:ba:1d:2e:a9: 26:10:14:e4:5a:94:ff:92:c8:0e:98:50:79:61:6f:c3:9a:4e: f4:02:84:94:2c:d3:ef:93:6c:df:40:e8:6b:f2:d0:43:07:ef: 04:c3:a2:85:3a:05:ce:2d:b4:52:9e:d9:d0:ca:2c:c0:db:ed: 49:5a:12:46:8c:96:e0:05:93:23:12:b2:ec:76:0e:44:be:5e: b7:89:a7:de:57:ca:d2:d6:6e:12:6c:e9:c0:66:c9:d3:4c:c9: 1f:5d:9d:f0:b0:8c:96:89:9c:aa:f4:e0:27:8a:b4:e5:0f:74: 3e:90:1c:7c:b7:72:d0:52:c3:fd:5f:12:79:20:58:42:c5:1b: 2b:21:1c:9a:54:80:3d:38:6b:82:50:30:65:62:06:cf:b6:df: f5:2b:5d:56:2b:db:2c:94:57:3a:73:d5:c6:6e:4e:aa:e8:ff: f5:2d:69:7c -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUZdkByuRWLLn/ObsyPzS4XYsvRRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkU4NjUwRTFBN0IwOUY3NzQ5QTUxMjY0NTBCODI0MjEz MTA0ODM1NDAeFw0yNTAxMTMxOTA1MzFaFw0yNjAxMTIxOTEwMzFaMDMxMTAvBgNV BAMTKDk2OEFGREE3NTgwQjVFNENFOTJGODNCRENDMzgwODIzMzFEMUI4QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Vlk3gBxL1kXWcxpPtbOjOma2 rXpRS3LVV2h5HEFEOmlqZhijQuYLxaXW5JfZWlwtxsdOb9TJRNzTVlBflm338e6a PLqFRAgQw6YoXnBBalXlEVt0kbege6hS3X7TJRvF8I4ulxkEdet94w4+B9UM8ESp JCX64DHbF/pcZTTMPAnfM3OtgIRiiqdeZCozXeyJIEOCbaPV0tvQUmygfL0tsqa0 VyHkFtsSSOBkYZfxMkk5TycFpdzZJs0cv95DeztMD5Io4inGMomHZ75OyMM6Ip6A EzeqgjVu78QFDmoglDuBdQvop8pT6dtc6bi59hZDpfNy+a+EV/vnbUbCnU2zAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUlor9p1gLXkzpL4O9zDgIIzHRuLIwHwYDVR0j BBgwFoAULoZQ4aewn3dJpRJkULgkITEEg1QwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkNEaHhlSHlCazRRUHZ1SmdhYmY1Uks5VXdVdnJyU0ptZEtDSFBKQTVZ WnEvMC8yRTg2NTBFMUE3QjA5Rjc3NDlBNTEyNjQ1MEI4MjQyMTMxMDQ4MzU0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzJFODY1MEUxQTdCMDlGNzc0 OUE1MTI2NDUwQjgyNDIxMzEwNDgzNTQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZDRGh4ZUh5Qms0UVB2dUpnYWJmNVJLOVV3VXZyclNKbWRLQ0hQSkE1WVpxLzAv MzQzNTJlMzEzNzMzMmUzMjMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2 MzgzODMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAItrdwwDQYJKoZIhvcNAQELBQADggEBAIoXz41T l+Q4xCI9wzOA/lMic4xnLB61qCIWS9Bs69o6l36wyJ2ooJtp48P62NqNy8VhNatH AqRDNQUWf8g8cUXjNLkqmTfgekJCFboy23+SM0JcXdQbuh0uqSYQFORalP+SyA6Y UHlhb8OaTvQChJQs0++TbN9A6Gvy0EMH7wTDooU6Bc4ttFKe2dDKLMDb7UlaEkaM luAFkyMSsux2DkS+XreJp95XytLWbhJs6cBmydNMyR9dnfCwjJaJnKr04CeKtOUP dD6QHHy3ctBSw/1fEnkgWELFGyshHJpUgD04a4JQMGViBs+23/UrXVYr2yyUVzpz 1cZuTqro//UtaXw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:48 2025 by rpki-client