$ rpki-client -vvf rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa File: 3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa (raw, json) Hash identifier: F+fDnCA/QXUTf1ZQzie3j5t1fpj6Jir4pFQ8GZsjFCM= Subject key identifier: F3:32:1E:EE:0C:E6:A4:6E:F9:E2:CF:ED:16:3E:B9:3D:F7:B7:72:09 Certificate issuer: /CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A Certificate serial: 18A5DC9FACA079A529328E22AFBF78DC5B54CF06 Authority key identifier: 1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer Subject info access: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa Signing time: Wed 05 Mar 2025 21:26:30 +0000 ROA not before: Wed 05 Mar 2025 21:21:30 +0000 ROA not after: Wed 04 Mar 2026 21:26:30 +0000 asID: 263887 IP address blocks: 138.204.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 09 Apr 2025 04:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a5:dc:9f:ac:a0:79:a5:29:32:8e:22:af:bf:78:dc:5b:54:cf:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B4A9F66924E0480B35C513AF20D0C5D1204BC9A Validity Not Before: Mar 5 21:21:30 2025 GMT Not After : Mar 4 21:26:30 2026 GMT Subject: CN=F3321EEE0CE6A46EF9E2CFED163EB93DF7B77209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:10:c2:fa:27:65:80:24:3b:60:a5:13:57:78: 70:87:ae:01:22:1a:d3:68:e7:a0:83:dd:5b:e7:ab: 8b:68:96:07:2f:5a:3a:d4:43:5b:0f:f3:64:eb:56: 27:20:50:0f:8e:ec:e8:31:0a:51:1f:53:cc:c1:78: 13:00:a9:48:bc:68:59:d1:91:fe:65:5b:42:34:18: 7e:64:7a:8f:f7:7a:23:8f:8d:3a:20:f7:47:cb:46: 56:91:24:1f:8f:50:39:2c:5b:31:49:8d:53:6c:be: d3:cc:4d:84:4b:37:3d:31:16:89:0b:bd:74:44:fd: 75:81:06:97:6e:b8:de:e0:47:0a:55:3a:21:e1:26: 48:9b:b4:6f:9e:40:7c:1f:a4:f1:08:17:f2:26:9e: 1a:b1:5b:d2:a9:18:24:0b:bb:41:c5:da:ae:67:ab: 33:9f:44:1e:56:6e:38:75:92:a1:8f:0c:93:f7:90: 51:09:b2:50:89:b8:c5:55:c1:bd:fd:cd:cf:b9:a6: eb:03:3e:f7:73:9e:73:ec:0b:0b:b8:5f:df:a7:ee: 31:2a:5e:6f:af:15:bf:85:81:d5:a6:6a:73:e8:2a: 14:c0:3f:c4:fa:af:98:02:5d:a0:9b:e8:56:9a:db: d9:dd:81:68:a7:44:6c:04:29:c6:1d:cf:37:17:d6: 24:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:32:1E:EE:0C:E6:A4:6E:F9:E2:CF:ED:16:3E:B9:3D:F7:B7:72:09 X509v3 Authority Key Identifier: keyid:1B:4A:9F:66:92:4E:04:80:B3:5C:51:3A:F2:0D:0C:5D:12:04:BC:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/1B4A9F66924E0480B35C513AF20D0C5D1204BC9A.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/FQKStmkSEMFsdgbLYHxsVJEaFkfoZEVLRy49x3GowDH2/0/3133382e3230342e3132382e302f32342d3234203d3e20323633383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.204.128.0/24 Signature Algorithm: sha256WithRSAEncryption 48:1b:ab:16:08:22:37:fd:72:71:0f:b2:a9:d7:5e:ea:35:4b: fa:3f:fc:76:fd:aa:9d:65:e0:53:04:b3:fe:63:80:d6:5a:ca: 16:95:29:86:f7:d1:d7:20:3d:63:4e:e5:0d:49:6e:07:09:1e: ba:fa:03:55:b7:0e:da:42:c4:2c:ae:27:39:00:ad:9c:a4:e5: a5:12:96:6f:70:b1:2e:5b:4c:38:41:f5:c0:ea:20:1b:e0:c4: c4:b7:41:a5:32:95:ad:7c:27:d3:4a:6a:0f:79:8c:8c:28:e0: 01:a6:6a:4e:85:03:00:5b:bb:62:84:f2:c5:fd:fd:a9:58:d5: 59:84:bd:2d:20:20:65:e1:05:00:a4:bd:65:10:ee:41:ba:0c: 7a:f7:6c:85:9b:e8:55:b6:24:a3:f9:8c:d8:a2:9d:4e:3c:3e: 50:d5:39:c8:43:72:f2:ab:82:51:5f:0c:0a:b5:49:16:14:a6: 99:7a:34:2a:69:4b:13:48:40:41:58:d6:80:c7:3d:51:0d:13: 4e:03:45:c3:37:09:2b:2d:5e:cd:c0:f6:92:7a:ff:01:b0:ed: b2:05:3a:8c:69:6f:9a:63:88:ba:2f:75:28:ca:b3:6a:6a:59: 32:2c:c7:07:ce:87:f9:07:8e:ca:70:04:55:20:b7:76:8a:42: c3:2c:83:16 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUGKXcn6ygeaUpMo4ir7943FtUzwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI0QTlGNjY5MjRFMDQ4MEIzNUM1MTNBRjIwRDBDNUQx MjA0QkM5QTAeFw0yNTAzMDUyMTIxMzBaFw0yNjAzMDQyMTI2MzBaMDMxMTAvBgNV BAMTKEYzMzIxRUVFMENFNkE0NkVGOUUyQ0ZFRDE2M0VCOTNERjdCNzcyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZEML6J2WAJDtgpRNXeHCHrgEi GtNo56CD3Vvnq4tolgcvWjrUQ1sP82TrVicgUA+O7OgxClEfU8zBeBMAqUi8aFnR kf5lW0I0GH5keo/3eiOPjTog90fLRlaRJB+PUDksWzFJjVNsvtPMTYRLNz0xFokL vXRE/XWBBpduuN7gRwpVOiHhJkibtG+eQHwfpPEIF/ImnhqxW9KpGCQLu0HF2q5n qzOfRB5Wbjh1kqGPDJP3kFEJslCJuMVVwb39zc+5pusDPvdznnPsCwu4X9+n7jEq Xm+vFb+FgdWmanPoKhTAP8T6r5gCXaCb6Faa29ndgWinRGwEKcYdzzcX1iT3AgMB AAGjggJTMIICTzAdBgNVHQ4EFgQU8zIe7gzmpG754s/tFj65Pfe3cgkwHwYDVR0j BBgwFoAUG0qfZpJOBICzXFE68g0MXRIEvJowDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRlFLU3Rta1NFTUZzZGdiTFlIeHNWSkVhRmtmb1pFVkxSeTQ5eDNHb3dE SDIvMC8xQjRBOUY2NjkyNEUwNDgwQjM1QzUxM0FGMjBEMEM1RDEyMDRCQzlBLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzFCNEE5RjY2OTI0RTA0ODBC MzVDNTEzQUYyMEQwQzVEMTIwNEJDOUEuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0ZRS1N0bWtTRU1Gc2RnYkxZSHhzVkpFYUZrZm9aRVZMUnk0OXgzR293REgyLzAv MzEzMzM4MmUzMjMwMzQyZTMxMzIzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzMzM4MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAIrMgDANBgkqhkiG9w0BAQsFAAOCAQEASBur FggiN/1ycQ+yqdde6jVL+j/8dv2qnWXgUwSz/mOA1lrKFpUphvfR1yA9Y07lDUlu BwkeuvoDVbcO2kLELK4nOQCtnKTlpRKWb3CxLltMOEH1wOogG+DExLdBpTKVrXwn 00pqD3mMjCjgAaZqToUDAFu7YoTyxf39qVjVWYS9LSAgZeEFAKS9ZRDuQboMevds hZvoVbYko/mM2KKdTjw+UNU5yENy8quCUV8MCrVJFhSmmXo0KmlLE0hAQVjWgMc9 UQ0TTgNFwzcJKy1ezcD2knr/AbDtsgU6jGlvmmOIui91KMqzampZMizHB86H+QeO ynAEVSC3dopCwyyDFg== -----END CERTIFICATE-----Generated at Tue Apr 8 11:16:12 2025 by rpki-client