$ rpki-client -vvf rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa File: 3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa (raw, json) Hash identifier: /tjy5JVng+oWdTcioyp6E6erYYRMd7260hO4PKaRve4= Subject key identifier: 30:AB:B8:EA:A0:0D:CD:61:CD:0F:9B:03:79:DC:01:D4:5F:2B:D4:97 Certificate issuer: /CN=1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0 Certificate serial: 5D49DEF6AC4C80FA094EA9042361352E7770AB49 Authority key identifier: 1D:C2:A9:E1:70:84:A1:FF:48:DC:F3:DA:9B:DC:1A:FF:64:BC:E4:F0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.cer Subject info access: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa Signing time: Mon 07 Apr 2025 18:32:20 +0000 ROA not before: Mon 07 Apr 2025 18:27:20 +0000 ROA not after: Mon 06 Apr 2026 18:32:20 +0000 asID: 265080 IP address blocks: 170.233.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.crl rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 21:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:49:de:f6:ac:4c:80:fa:09:4e:a9:04:23:61:35:2e:77:70:ab:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0 Validity Not Before: Apr 7 18:27:20 2025 GMT Not After : Apr 6 18:32:20 2026 GMT Subject: CN=30ABB8EAA00DCD61CD0F9B0379DC01D45F2BD497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:23:c4:e3:2e:73:25:4e:73:b8:1f:42:c5: 32:64:c7:ad:a6:67:cc:bf:ed:12:fa:93:d5:9e:56: 6c:50:14:38:26:54:d1:31:37:4e:02:8a:0d:9a:f2: de:69:e3:6d:ba:60:31:a2:92:d5:ac:15:da:d2:6b: 35:78:be:e0:68:c0:3b:6a:22:0c:06:cd:83:ec:45: fc:39:a5:9f:4e:85:da:9d:36:fc:13:54:73:61:f9: d2:47:2f:51:be:03:fd:6d:db:a5:63:07:ab:62:c5: a9:6f:b3:f4:a6:d5:98:d9:01:19:b2:8f:d9:10:3e: e1:1c:58:73:29:17:ad:4c:4c:41:20:58:9d:00:a0: 19:54:ff:24:e6:f3:0e:9d:9e:40:21:e3:0b:c2:b2: 2e:52:62:34:3a:64:68:38:a2:91:3c:09:e3:d2:96: 4a:54:69:56:51:2f:1a:42:c1:b1:b3:e2:63:e9:bf: 3f:5c:7d:2f:57:86:e1:2f:6f:c8:16:0d:16:0f:5c: e4:f8:df:52:2e:e5:61:0f:7f:b9:c8:60:b1:91:60: ce:cb:e1:d8:33:54:8e:2b:4c:eb:b3:6c:5a:75:01: 0e:c1:e9:87:3b:12:9f:2b:b7:99:46:12:9b:1d:4c: 13:10:7d:a7:f3:2f:2c:28:d5:e7:54:b7:ef:ea:52: d9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AB:B8:EA:A0:0D:CD:61:CD:0F:9B:03:79:DC:01:D4:5F:2B:D4:97 X509v3 Authority Key Identifier: keyid:1D:C2:A9:E1:70:84:A1:FF:48:DC:F3:DA:9B:DC:1A:FF:64:BC:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1DC2A9E17084A1FF48DCF3DA9BDC1AFF64BCE4F0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FFXkLkaKXHerXLpfUAso736rQEenqMpiv6QehFwmU1vW/0/3137302e3233332e3132312e302f32342d3234203d3e20323635303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.121.0/24 Signature Algorithm: sha256WithRSAEncryption ef:a0:4b:55:6b:13:ed:ae:7a:35:c1:ae:d8:f5:5d:aa:33:23: 5b:ed:84:37:f0:c0:eb:7a:50:35:45:b8:99:0c:0f:03:f1:aa: a5:b3:f0:fe:41:cf:2f:28:5c:eb:5c:44:48:1a:04:ff:3e:66: 1e:e0:fc:1c:46:91:53:b9:15:14:e3:5e:a0:81:17:fd:8c:13: 83:0a:4c:46:8f:46:cc:c7:8e:0e:90:c8:6f:61:4a:ea:6f:79: be:6e:9e:15:f5:85:57:32:72:4d:b7:33:c1:cc:b9:e7:48:3a: 87:df:d5:29:46:c1:a4:ad:49:b8:6f:ad:44:eb:7c:b5:ce:88: 90:26:f1:99:71:14:e6:ea:ec:1b:08:12:b3:ae:38:80:d6:87: 5d:02:ef:da:d3:76:ca:93:6e:de:54:3b:7f:1b:29:4c:89:00: 9d:98:5b:0d:83:54:c4:d3:f5:6d:a0:1b:09:ae:e0:96:78:7f: 39:1e:83:ae:c6:67:d0:f7:2f:46:d3:b0:e7:18:99:35:f4:dd: 3c:77:7d:72:c7:d3:09:6f:f7:c3:40:d7:46:a2:15:a2:ab:9d: 81:71:6f:a5:dc:39:bc:55:e8:b5:cc:20:09:34:d5:11:a0:a7: e3:9c:44:1c:ee:b0:97:88:18:13:42:db:e0:51:3b:13:6b:3b: c5:54:ba:fe -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUXUne9qxMgPoJTqkEI2E1Lndwq0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURDMkE5RTE3MDg0QTFGRjQ4RENGM0RBOUJEQzFBRkY2 NEJDRTRGMDAeFw0yNTA0MDcxODI3MjBaFw0yNjA0MDYxODMyMjBaMDMxMTAvBgNV BAMTKDMwQUJCOEVBQTAwRENENjFDRDBGOUIwMzc5REMwMUQ0NUYyQkQ0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRKiPE4y5zJU5zuB9CxTJkx62m Z8y/7RL6k9WeVmxQFDgmVNExN04Cig2a8t5p4226YDGiktWsFdrSazV4vuBowDtq IgwGzYPsRfw5pZ9OhdqdNvwTVHNh+dJHL1G+A/1t26VjB6tixalvs/Sm1ZjZARmy j9kQPuEcWHMpF61MTEEgWJ0AoBlU/yTm8w6dnkAh4wvCsi5SYjQ6ZGg4opE8CePS lkpUaVZRLxpCwbGz4mPpvz9cfS9XhuEvb8gWDRYPXOT431Iu5WEPf7nIYLGRYM7L 4dgzVI4rTOuzbFp1AQ7B6Yc7Ep8rt5lGEpsdTBMQfafzLywo1edUt+/qUtlTAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUMKu46qANzWHND5sDedwB1F8r1JcwHwYDVR0j BBgwFoAUHcKp4XCEof9I3PPam9wa/2S85PAwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRkZYa0xrYUtYSGVyWExwZlVBc283MzZyUUVlbnFNcGl2NlFlaEZ3bVUx dlcvMC8xREMyQTlFMTcwODRBMUZGNDhEQ0YzREE5QkRDMUFGRjY0QkNFNEYwLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFEQzJBOUUxNzA4NEExRkY0 OERDRjNEQTlCREMxQUZGNjRCQ0U0RjAuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZGWGtMa2FLWEhlclhMcGZVQXNvNzM2clFFZW5xTXBpdjZRZWhGd21VMXZXLzAv MzEzNzMwMmUzMjMzMzMyZTMxMzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpeTANBgkqhkiG9w0BAQsFAAOCAQEA76BL VWsT7a56NcGu2PVdqjMjW+2EN/DA63pQNUW4mQwPA/GqpbPw/kHPLyhc61xESBoE /z5mHuD8HEaRU7kVFONeoIEX/YwTgwpMRo9GzMeODpDIb2FK6m95vm6eFfWFVzJy Tbczwcy550g6h9/VKUbBpK1JuG+tROt8tc6IkCbxmXEU5ursGwgSs644gNaHXQLv 2tN2ypNu3lQ7fxspTIkAnZhbDYNUxNP1baAbCa7glnh/OR6DrsZn0PcvRtOw5xiZ NfTdPHd9csfTCW/3w0DXRqIVoqudgXFvpdw5vFXotcwgCTTVEaCn45xEHO6wl4gY E0Lb4FE7E2s7xVS6/g== -----END CERTIFICATE-----Generated at Tue Apr 8 07:46:20 2025 by rpki-client