$ rpki-client -vvf rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/3133382e3231392e3138382e302f32322d3234203d3e20323633393332.roa File: 3133382e3231392e3138382e302f32322d3234203d3e20323633393332.roa (raw, json) Hash identifier: L99XYUP5oV0Ua8IXbhOxjG2KImspryv7eBOAGPXf+M4= Subject key identifier: 5E:2A:87:37:81:81:A0:FB:44:BB:FE:46:6E:D2:12:56:C3:F4:56:CA Certificate issuer: /CN=DC2E44207997D76B55B0EE905DAC1F10B2550C4E Certificate serial: 307023C7E5CA29FD5DED38382AE4B244E1C949F3 Authority key identifier: DC:2E:44:20:79:97:D7:6B:55:B0:EE:90:5D:AC:1F:10:B2:55:0C:4E Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.cer Subject info access: rsync://rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/3133382e3231392e3138382e302f32322d3234203d3e20323633393332.roa Signing time: Thu 06 Mar 2025 13:52:04 +0000 ROA not before: Thu 06 Mar 2025 13:47:04 +0000 ROA not after: Thu 05 Mar 2026 13:52:04 +0000 asID: 263932 IP address blocks: 138.219.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.crl rsync://rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 14 Apr 2025 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:70:23:c7:e5:ca:29:fd:5d:ed:38:38:2a:e4:b2:44:e1:c9:49:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC2E44207997D76B55B0EE905DAC1F10B2550C4E Validity Not Before: Mar 6 13:47:04 2025 GMT Not After : Mar 5 13:52:04 2026 GMT Subject: CN=5E2A87378181A0FB44BBFE466ED21256C3F456CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:39:cc:82:4d:5f:42:66:99:e9:33:7b:e1:37: 0f:2e:bf:6a:fe:0a:fa:e4:af:49:9d:64:5e:96:11: 7d:f6:03:94:95:02:cf:11:ff:a6:da:c2:c5:55:74: 35:21:b1:2c:b8:ec:86:af:48:8a:92:2a:6f:4b:05: 60:d9:8c:31:6d:fe:91:9c:d8:89:c4:c1:6e:a6:4d: 1a:a4:fa:fb:5a:87:52:8c:2b:aa:a9:9f:97:98:5f: f0:42:14:d7:81:70:f9:36:85:cd:4d:06:b3:a8:c2: 36:e9:00:c3:8f:c6:81:0b:37:87:d8:8b:cd:67:50: aa:ee:9f:b6:3c:11:3d:83:71:ee:d0:e2:36:69:c8: 01:83:ef:65:89:af:cd:f1:eb:97:b4:30:ed:3c:f2: 36:72:7f:3f:a5:7f:72:fc:e5:b8:62:95:42:a8:31: b6:31:97:8a:37:ec:be:5e:69:ba:1b:fa:49:50:41: d9:4c:9a:2f:8d:1e:7b:b1:cc:44:f4:5b:78:fb:aa: d8:77:32:87:21:8e:ea:ec:38:5f:ca:1f:78:c9:89: dd:09:ba:a8:9d:16:94:e5:14:ec:35:14:f0:2d:fe: 70:cc:39:8e:d3:f5:38:35:4b:37:9d:ab:db:73:de: 0d:4c:08:b9:e6:e1:79:2e:f0:44:73:1b:ec:31:a7: 84:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2A:87:37:81:81:A0:FB:44:BB:FE:46:6E:D2:12:56:C3:F4:56:CA X509v3 Authority Key Identifier: keyid:DC:2E:44:20:79:97:D7:6B:55:B0:EE:90:5D:AC:1F:10:B2:55:0C:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DC2E44207997D76B55B0EE905DAC1F10B2550C4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HLx9sJ9FQnk2bVmevSRFxPaaJX8TQLTC7d63UmWHwKxo/1/3133382e3231392e3138382e302f32322d3234203d3e20323633393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.219.188.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:08:2c:cc:ce:75:0c:87:19:39:a5:a7:e6:d0:7c:01:23:68: 9c:7f:9d:04:70:10:21:f2:59:dc:1c:92:cd:0f:81:ba:5a:a1: d2:72:28:53:83:ab:9b:f3:0e:55:9a:43:c2:cb:af:c4:2b:63: da:1e:00:d3:40:d2:74:5a:a8:e9:47:0a:c7:bf:3b:32:8a:29: ac:d3:64:9f:aa:1d:4c:6f:c4:cb:8c:2c:7a:e5:c8:e2:24:65: 2e:3f:bd:e4:cb:ed:84:1c:28:de:f3:62:ee:ec:54:92:16:fb: ae:16:67:15:01:1f:02:a6:71:79:97:bb:e6:a9:38:cd:9f:36: ad:c3:f1:7a:19:45:a5:14:5f:ad:62:c1:f3:b8:f9:8c:96:ad: 6f:54:8e:28:e6:10:c4:0d:be:ee:c7:68:cf:b0:3e:3f:8e:45: ed:92:17:7e:ff:26:ed:5f:49:35:1c:2e:48:a8:7d:a7:dd:1b: 8f:85:d5:06:03:a1:b8:4f:d4:91:fd:bd:d4:8b:0e:1b:50:1f: 42:e1:21:7a:a4:11:c3:cc:64:09:6d:0d:a4:be:5a:9c:7c:5a: 54:d0:15:90:77:e2:6f:0d:6b:4c:1d:52:72:2b:a1:f3:02:8a: 0b:00:74:24:6c:5d:ca:3d:15:06:03:7d:0c:9a:f1:07:91:00: fa:ea:a3:03 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUMHAjx+XKKf1d7Tg4KuSyROHJSfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMyRTQ0MjA3OTk3RDc2QjU1QjBFRTkwNURBQzFGMTBC MjU1MEM0RTAeFw0yNTAzMDYxMzQ3MDRaFw0yNjAzMDUxMzUyMDRaMDMxMTAvBgNV BAMTKDVFMkE4NzM3ODE4MUEwRkI0NEJCRkU0NjZFRDIxMjU2QzNGNDU2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgOcyCTV9CZpnpM3vhNw8uv2r+ Cvrkr0mdZF6WEX32A5SVAs8R/6bawsVVdDUhsSy47IavSIqSKm9LBWDZjDFt/pGc 2InEwW6mTRqk+vtah1KMK6qpn5eYX/BCFNeBcPk2hc1NBrOowjbpAMOPxoELN4fY i81nUKrun7Y8ET2Dce7Q4jZpyAGD72WJr83x65e0MO088jZyfz+lf3L85bhilUKo MbYxl4o37L5eabob+klQQdlMmi+NHnuxzET0W3j7qth3MochjursOF/KH3jJid0J uqidFpTlFOw1FPAt/nDMOY7T9Tg1Szedq9tz3g1MCLnm4Xku8ERzG+wxp4SdAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUXiqHN4GBoPtEu/5GbtISVsP0VsowHwYDVR0j BBgwFoAU3C5EIHmX12tVsO6QXawfELJVDE4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSEx4OXNKOUZRbmsyYlZtZXZTUkZ4UGFhSlg4VFFMVEM3ZDYzVW1XSHdL eG8vMS9EQzJFNDQyMDc5OTdENzZCNTVCMEVFOTA1REFDMUYxMEIyNTUwQzRFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RDMkU0NDIwNzk5N0Q3NkI1 NUIwRUU5MDVEQUMxRjEwQjI1NTBDNEUuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hMeDlzSjlGUW5rMmJWbWV2U1JGeFBhYUpYOFRRTFRDN2Q2M1VtV0h3S3hvLzEv MzEzMzM4MmUzMjMxMzkyZTMxMzgzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMy MzYzMzM5MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAorbvDANBgkqhkiG9w0BAQsFAAOCAQEAPQgs zM51DIcZOaWn5tB8ASNonH+dBHAQIfJZ3BySzQ+Bulqh0nIoU4Orm/MOVZpDwsuv xCtj2h4A00DSdFqo6UcKx787MooprNNkn6odTG/Ey4wseuXI4iRlLj+95MvthBwo 3vNi7uxUkhb7rhZnFQEfAqZxeZe75qk4zZ82rcPxehlFpRRfrWLB87j5jJatb1SO KOYQxA2+7sdoz7A+P45F7ZIXfv8m7V9JNRwuSKh9p90bj4XVBgOhuE/Ukf291IsO G1AfQuEheqQRw8xkCW0NpL5anHxaVNAVkHfibw1rTB1Sciuh8wKKCwB0JGxdyj0V BgN9DJrxB5EA+uqjAw== -----END CERTIFICATE-----Generated at Sun Apr 13 15:49:10 2025 by rpki-client