$ rpki-client -vvf rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/34352e3233322e37322e302f32332d3233203d3e20323637323531.roa File: 34352e3233322e37322e302f32332d3233203d3e20323637323531.roa (raw, json) Hash identifier: Em9nIZXC1XnJHHkeLO0Am9KIh2IHxIcFrayfBCdDiB4= Subject key identifier: 11:D9:5B:17:8A:E4:89:6E:02:48:FC:A5:62:F2:29:EA:FF:3E:BE:D9 Certificate issuer: /CN=DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF Certificate serial: 2A56997619BED16E1E7DEA924937AD7AB2636CFE Authority key identifier: DF:FD:35:73:AC:40:6B:4E:FB:1F:45:81:49:CF:73:C3:1A:2F:F4:EF Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.cer Subject info access: rsync://rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/34352e3233322e37322e302f32332d3233203d3e20323637323531.roa Signing time: Wed 05 Mar 2025 19:00:27 +0000 ROA not before: Wed 05 Mar 2025 18:55:27 +0000 ROA not after: Wed 04 Mar 2026 19:00:27 +0000 asID: 267251 IP address blocks: 45.232.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.crl rsync://rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 19:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:56:99:76:19:be:d1:6e:1e:7d:ea:92:49:37:ad:7a:b2:63:6c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF Validity Not Before: Mar 5 18:55:27 2025 GMT Not After : Mar 4 19:00:27 2026 GMT Subject: CN=11D95B178AE4896E0248FCA562F229EAFF3EBED9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:42:25:22:63:90:3b:82:02:11:29:28:f9:d8: 4e:06:9d:76:cd:7f:c4:4e:31:90:f1:0f:2a:ad:67: 34:65:18:8a:35:e7:41:49:d8:fc:a7:2a:f0:c8:69: 37:00:1b:92:98:fa:cf:3e:61:e2:48:07:47:c1:af: ff:76:b7:12:9a:20:cc:71:fb:b6:74:a4:b0:2e:c8: 83:54:f7:80:14:12:b7:09:35:46:b6:28:09:3d:2a: bd:91:b8:80:7e:da:ec:88:f1:19:de:07:8d:57:92: f5:dc:f7:63:c5:a1:aa:2d:ad:58:9d:28:44:47:3d: 02:bb:ed:eb:5a:39:0d:fc:b8:41:15:50:2d:00:75: 89:ba:71:d4:ab:d1:39:1a:f8:22:cb:a4:ed:66:04: 8f:dd:6d:32:06:7f:b2:a6:4c:b6:f5:4c:08:da:59: 8f:4e:99:db:d7:4e:e5:6a:4d:be:35:fe:56:f7:32: da:1b:21:db:a1:a6:c6:ba:ac:8a:0d:8c:36:84:1f: 41:c2:a9:21:aa:aa:a6:da:27:ec:20:a7:13:31:2f: 42:34:12:ab:e3:9b:ea:96:04:47:81:7f:8f:64:cc: cb:14:ca:2c:21:be:14:02:d1:c4:aa:71:71:c3:a2: 13:96:01:72:11:a8:81:6c:72:52:df:a0:3b:b8:9d: 6c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D9:5B:17:8A:E4:89:6E:02:48:FC:A5:62:F2:29:EA:FF:3E:BE:D9 X509v3 Authority Key Identifier: keyid:DF:FD:35:73:AC:40:6B:4E:FB:1F:45:81:49:CF:73:C3:1A:2F:F4:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DFFD3573AC406B4EFB1F458149CF73C31A2FF4EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HVgEJMmGeJvJPRXHHmgHVm6Gc8eRZZSfWkAvhvTQL2ko/1/34352e3233322e37322e302f32332d3233203d3e20323637323531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.232.72.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:57:48:e3:4c:ef:98:c9:05:ef:ad:bd:8f:a1:1c:0a:be:46: c1:87:2a:f2:f8:16:64:67:31:46:13:1c:17:ab:85:b2:da:4a: cb:e5:a0:d2:6f:45:77:8f:c8:6a:6a:7d:0b:5f:95:fd:cd:7c: e0:19:a7:5e:57:c6:8f:16:d6:4d:36:f1:dc:5a:93:f4:30:30: 0d:dc:b5:b0:5b:d2:cd:90:a1:bc:8b:9e:0d:3a:32:e7:53:2b: d2:b2:bd:46:dd:09:ce:a0:2e:24:b0:9b:c3:54:6e:27:96:eb: bb:b9:61:b7:9d:11:7a:96:05:c2:7c:02:ed:64:c0:30:58:21: 71:c2:c5:64:f3:82:37:84:54:95:ab:38:cb:a9:05:92:40:97: c0:f1:8a:ee:70:8b:f0:46:27:8b:65:7a:96:ae:51:57:79:3d: ae:e4:ac:54:51:0e:6e:38:47:0a:fc:ae:25:29:27:d8:99:da: 2f:04:34:34:bb:5a:ee:8a:e8:08:89:27:cb:46:b2:b0:fa:14: 24:a3:0f:64:e5:b6:65:2d:96:ae:fc:72:1d:c0:e1:d2:55:28: 7c:3e:54:7d:fa:5e:f4:48:f9:15:60:1e:33:0c:04:e5:31:3a: 7d:d6:d6:31:ec:15:0f:b3:41:88:fc:b9:71:11:74:ad:aa:28: 3c:e5:d4:01 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUKlaZdhm+0W4efeqSSTeterJjbP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZGRDM1NzNBQzQwNkI0RUZCMUY0NTgxNDlDRjczQzMx QTJGRjRFRjAeFw0yNTAzMDUxODU1MjdaFw0yNjAzMDQxOTAwMjdaMDMxMTAvBgNV BAMTKDExRDk1QjE3OEFFNDg5NkUwMjQ4RkNBNTYyRjIyOUVBRkYzRUJFRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKQiUiY5A7ggIRKSj52E4GnXbN f8ROMZDxDyqtZzRlGIo150FJ2PynKvDIaTcAG5KY+s8+YeJIB0fBr/92txKaIMxx +7Z0pLAuyINU94AUErcJNUa2KAk9Kr2RuIB+2uyI8RneB41XkvXc92PFoaotrVid KERHPQK77etaOQ38uEEVUC0AdYm6cdSr0Tka+CLLpO1mBI/dbTIGf7KmTLb1TAja WY9OmdvXTuVqTb41/lb3MtobIduhpsa6rIoNjDaEH0HCqSGqqqbaJ+wgpxMxL0I0 Eqvjm+qWBEeBf49kzMsUyiwhvhQC0cSqcXHDohOWAXIRqIFsclLfoDu4nWwpAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUEdlbF4rkiW4CSPylYvIp6v8+vtkwHwYDVR0j BBgwFoAU3/01c6xAa077H0WBSc9zwxov9O8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSFZnRUpNbUdlSnZKUFJYSEhtZ0hWbTZHYzhlUlpaU2ZXa0F2aHZUUUwy a28vMS9ERkZEMzU3M0FDNDA2QjRFRkIxRjQ1ODE0OUNGNzNDMzFBMkZGNEVGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RGRkQzNTczQUM0MDZCNEVG QjFGNDU4MTQ5Q0Y3M0MzMUEyRkY0RUYuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hWZ0VKTW1HZUp2SlBSWEhIbWdIVm02R2M4ZVJaWlNmV2tBdmh2VFFMMmtvLzEv MzQzNTJlMzIzMzMyMmUzNzMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzIzNjM3 MzIzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBLehIMA0GCSqGSIb3DQEBCwUAA4IBAQB9V0jjTO+Y yQXvrb2PoRwKvkbBhyry+BZkZzFGExwXq4Wy2krL5aDSb0V3j8hqan0LX5X9zXzg GadeV8aPFtZNNvHcWpP0MDAN3LWwW9LNkKG8i54NOjLnUyvSsr1G3QnOoC4ksJvD VG4nluu7uWG3nRF6lgXCfALtZMAwWCFxwsVk84I3hFSVqzjLqQWSQJfA8YrucIvw RieLZXqWrlFXeT2u5KxUUQ5uOEcK/K4lKSfYmdovBDQ0u1ruiugIiSfLRrKw+hQk ow9k5bZlLZau/HIdwOHSVSh8PlR9+l70SPkVYB4zDATlMTp91tYx7BUPs0GI/Llx EXStqig85dQB -----END CERTIFICATE-----Generated at Tue Apr 22 00:50:56 2025 by rpki-client