$ rpki-client -vvf rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3137372e3132382e32382e302f32322d3232203d3e203532363331.roa File: 3137372e3132382e32382e302f32322d3232203d3e203532363331.roa (raw, json) Hash identifier: tmw7bfppUgIVDHtKhRhUwFXwPPHo0CnYBAV+FmorAZY= Subject key identifier: FB:4A:C5:20:9C:8F:A4:5B:FC:BC:DD:D6:C9:CE:61:9F:51:25:C7:D1 Certificate issuer: /CN=4FDBAE28D54DD4272386040789F376018C19FE37 Certificate serial: 5BBD1AB59004C188BC91147C1261596256B6701C Authority key identifier: 4F:DB:AE:28:D5:4D:D4:27:23:86:04:07:89:F3:76:01:8C:19:FE:37 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FDBAE28D54DD4272386040789F376018C19FE37.cer Subject info access: rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3137372e3132382e32382e302f32322d3232203d3e203532363331.roa Signing time: Mon 10 Feb 2025 12:56:39 +0000 ROA not before: Mon 10 Feb 2025 12:51:39 +0000 ROA not after: Mon 09 Feb 2026 12:56:39 +0000 asID: 52631 IP address blocks: 177.128.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/4FDBAE28D54DD4272386040789F376018C19FE37.crl rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/4FDBAE28D54DD4272386040789F376018C19FE37.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FDBAE28D54DD4272386040789F376018C19FE37.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 18 Feb 2025 23:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bd:1a:b5:90:04:c1:88:bc:91:14:7c:12:61:59:62:56:b6:70:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FDBAE28D54DD4272386040789F376018C19FE37 Validity Not Before: Feb 10 12:51:39 2025 GMT Not After : Feb 9 12:56:39 2026 GMT Subject: CN=FB4AC5209C8FA45BFCBCDDD6C9CE619F5125C7D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:42:84:c1:74:d3:3f:93:53:32:57:08:03:97: 25:b7:fc:64:fc:dd:4b:ce:bc:1f:42:25:b9:cf:84: 9e:2c:16:33:e2:80:f3:fc:47:40:b1:72:81:55:ae: f2:61:da:ce:37:db:ed:cd:2a:8c:d6:dd:a7:c5:a2: bf:3a:87:77:92:9c:26:6b:1b:aa:5c:10:05:23:4f: bb:ab:9d:a8:49:d1:2b:95:c2:6c:ce:e0:36:47:46: 9c:93:c6:14:b3:7b:6d:48:5a:da:59:c5:30:4f:e8: 6d:76:7b:69:9c:78:62:2a:66:62:96:4f:63:d1:9d: 18:33:d9:dc:b4:c1:bc:49:f9:90:ba:e7:e7:cd:60: 6b:b0:9d:69:84:ae:42:cd:76:39:6a:1b:b5:e9:e5: 53:6b:13:80:0d:78:72:0b:a9:3f:1d:f3:62:40:d6: a9:c0:3e:35:24:82:ba:7d:ca:38:da:ac:a4:ff:c0: 34:e4:ba:ed:a9:08:65:f9:10:eb:3a:d2:1f:29:b6: 7f:1b:2a:65:d9:e0:22:65:5a:ae:0e:8e:66:15:0b: fd:5e:ed:a4:d3:eb:a2:03:22:d5:f0:2f:5a:36:cc: dd:39:73:18:56:06:46:bf:ea:04:0a:54:e2:47:3a: 6c:6c:18:63:ba:28:31:99:88:aa:8d:67:bf:88:9f: bc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4A:C5:20:9C:8F:A4:5B:FC:BC:DD:D6:C9:CE:61:9F:51:25:C7:D1 X509v3 Authority Key Identifier: keyid:4F:DB:AE:28:D5:4D:D4:27:23:86:04:07:89:F3:76:01:8C:19:FE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/4FDBAE28D54DD4272386040789F376018C19FE37.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4FDBAE28D54DD4272386040789F376018C19FE37.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HGnxH3h8oYh6qif2Tkqxy5zB9aX1PmAyER2xE4uexmuW/0/3137372e3132382e32382e302f32322d3232203d3e203532363331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.128.28.0/22 Signature Algorithm: sha256WithRSAEncryption 61:72:64:2f:96:41:6e:2b:aa:04:61:22:ae:05:df:4c:13:fc: ad:ac:8d:53:60:8b:ad:1b:fe:74:af:54:d5:a8:f0:66:10:4f: 46:78:17:93:12:14:4a:a8:7d:25:14:97:de:0c:8c:81:67:f3: e8:10:90:a2:69:71:1c:ab:c9:cc:88:d2:99:45:4c:d5:ae:fc: bb:3a:b3:dd:3c:cf:b5:10:06:7f:21:aa:ac:f7:cb:54:26:ac: df:fd:e7:57:0f:83:45:bf:82:8b:ce:d9:f8:63:43:cb:9a:94: 14:27:90:91:1e:14:75:d0:0b:37:d2:75:9b:1f:45:7a:ae:58: f7:77:5b:9e:7b:7e:a4:ef:ec:0f:35:d3:6e:a5:90:41:26:99: 2a:0b:e4:75:f4:52:4f:01:6f:30:c1:74:a7:ca:9d:95:1c:a0: 3a:73:96:df:af:5a:b6:cd:4a:ba:c1:09:09:e3:06:07:ae:b6: 44:00:5e:5c:9d:ca:2e:1a:15:b1:60:4d:0b:db:04:e4:35:40: a3:be:4c:26:d0:8f:fe:51:e0:1b:da:c3:31:cb:ea:f4:a9:2f: f4:5b:b9:a0:ef:05:23:a7:14:94:9e:bc:2c:8d:67:25:1f:1f: 79:f7:ad:4e:3c:8d:80:49:a5:26:c5:76:2e:f8:09:2a:c1:1d: a8:11:fa:d7 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUW70atZAEwYi8kRR8EmFZYla2cBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZEQkFFMjhENTRERDQyNzIzODYwNDA3ODlGMzc2MDE4 QzE5RkUzNzAeFw0yNTAyMTAxMjUxMzlaFw0yNjAyMDkxMjU2MzlaMDMxMTAvBgNV BAMTKEZCNEFDNTIwOUM4RkE0NUJGQ0JDRERENkM5Q0U2MTlGNTEyNUM3RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSQoTBdNM/k1MyVwgDlyW3/GT8 3UvOvB9CJbnPhJ4sFjPigPP8R0CxcoFVrvJh2s432+3NKozW3afFor86h3eSnCZr G6pcEAUjT7urnahJ0SuVwmzO4DZHRpyTxhSze21IWtpZxTBP6G12e2mceGIqZmKW T2PRnRgz2dy0wbxJ+ZC65+fNYGuwnWmErkLNdjlqG7Xp5VNrE4ANeHILqT8d82JA 1qnAPjUkgrp9yjjarKT/wDTkuu2pCGX5EOs60h8ptn8bKmXZ4CJlWq4OjmYVC/1e 7aTT66IDItXwL1o2zN05cxhWBka/6gQKVOJHOmxsGGO6KDGZiKqNZ7+In7zZAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQU+0rFIJyPpFv8vN3Wyc5hn1Elx9EwHwYDVR0j BBgwFoAUT9uuKNVN1CcjhgQHifN2AYwZ/jcwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEdueEgzaDhvWWg2cWlmMlRrcXh5NXpCOWFYMVBtQXlFUjJ4RTR1ZXht dVcvMC80RkRCQUUyOEQ1NERENDI3MjM4NjA0MDc4OUYzNzYwMThDMTlGRTM3LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzRGREJBRTI4RDU0REQ0Mjcy Mzg2MDQwNzg5RjM3NjAxOEMxOUZFMzcuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hHbnhIM2g4b1loNnFpZjJUa3F4eTV6QjlhWDFQbUF5RVIyeEU0dWV4bXVXLzAv MzEzNzM3MmUzMTMyMzgyZTMyMzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNTMy MzYzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCsYAcMA0GCSqGSIb3DQEBCwUAA4IBAQBhcmQvlkFu K6oEYSKuBd9ME/ytrI1TYIutG/50r1TVqPBmEE9GeBeTEhRKqH0lFJfeDIyBZ/Po EJCiaXEcq8nMiNKZRUzVrvy7OrPdPM+1EAZ/Iaqs98tUJqzf/edXD4NFv4KLztn4 Y0PLmpQUJ5CRHhR10As30nWbH0V6rlj3d1uee36k7+wPNdNupZBBJpkqC+R19FJP AW8wwXSnyp2VHKA6c5bfr1q2zUq6wQkJ4wYHrrZEAF5cncouGhWxYE0L2wTkNUCj vkwm0I/+UeAb2sMxy+r0qS/0W7mg7wUjpxSUnrwsjWclHx95961OPI2ASaUmxXYu +AkqwR2oEfrX -----END CERTIFICATE-----Generated at Tue Feb 18 13:48:20 2025 by rpki-client