$ rpki-client -vvf rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa File: 3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa (raw, json) Hash identifier: f4pZrHVScZI9OSv+CNCol2+E/xZPM63XNFE+wvHJJdA= Subject key identifier: 1C:61:29:D3:5D:C7:2B:DD:78:5A:88:FA:84:F2:13:08:EF:E5:58:CA Certificate issuer: /CN=88AD87611FDDC9C99B2157FBC503430DE8745DBD Certificate serial: 7D9B41D2E4E4F4BA6CB9C7AC96C57C99DF9CA16C Authority key identifier: 88:AD:87:61:1F:DD:C9:C9:9B:21:57:FB:C5:03:43:0D:E8:74:5D:BD Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/88AD87611FDDC9C99B2157FBC503430DE8745DBD.cer Subject info access: rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa Signing time: Mon 10 Mar 2025 15:25:27 +0000 ROA not before: Mon 10 Mar 2025 15:20:27 +0000 ROA not after: Mon 09 Mar 2026 15:25:27 +0000 asID: 263151 IP address blocks: 168.205.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/88AD87611FDDC9C99B2157FBC503430DE8745DBD.crl rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/88AD87611FDDC9C99B2157FBC503430DE8745DBD.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/88AD87611FDDC9C99B2157FBC503430DE8745DBD.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 08 Apr 2025 14:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9b:41:d2:e4:e4:f4:ba:6c:b9:c7:ac:96:c5:7c:99:df:9c:a1:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88AD87611FDDC9C99B2157FBC503430DE8745DBD Validity Not Before: Mar 10 15:20:27 2025 GMT Not After : Mar 9 15:25:27 2026 GMT Subject: CN=1C6129D35DC72BDD785A88FA84F21308EFE558CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:14:f1:f1:41:c5:79:fd:31:53:f3:45:07:40: af:46:11:10:83:63:d5:e1:63:ea:71:25:fc:6c:65: 5d:d8:8b:06:ca:56:c3:ee:36:e1:4b:d8:22:f0:9b: 87:d5:75:ba:00:85:aa:df:ed:fc:bb:1c:61:2d:41: 4f:2c:8c:ce:a3:29:aa:6c:22:fc:55:a6:ef:ac:99: 50:c3:b0:cc:c3:9b:35:8c:4a:75:54:c3:eb:6a:e8: ad:69:85:3d:44:19:7b:6b:58:7a:95:4b:93:cb:cf: 4d:aa:cf:7f:35:65:51:11:b7:26:62:08:8f:3b:76: aa:ae:a4:87:1e:76:0a:8c:4a:dd:9e:16:16:18:1c: 96:47:c7:35:39:ad:97:0b:52:d9:c6:ab:92:c5:7a: 0c:2a:1c:c0:1c:61:ea:4c:7a:28:78:67:b5:1f:7a: 2b:8e:e6:64:06:df:d7:b2:7d:12:79:4f:f1:4c:bb: 34:7e:e7:a3:0a:5f:f2:06:1d:84:54:6d:f4:c3:f2: ee:ab:6d:ee:b6:ee:62:92:37:45:18:a1:fd:63:5f: e9:4b:a0:9e:5e:e0:50:41:77:cd:4b:b3:6c:49:a3: 7e:5f:bb:d4:82:30:9d:9e:59:6c:a2:14:62:b8:d9: 64:14:c1:93:0e:58:3e:e5:eb:45:30:c2:63:9a:da: a6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:61:29:D3:5D:C7:2B:DD:78:5A:88:FA:84:F2:13:08:EF:E5:58:CA X509v3 Authority Key Identifier: keyid:88:AD:87:61:1F:DD:C9:C9:9B:21:57:FB:C5:03:43:0D:E8:74:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/88AD87611FDDC9C99B2157FBC503430DE8745DBD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/88AD87611FDDC9C99B2157FBC503430DE8745DBD.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/HiLzL4KhdVpDFoCJeyrUnJpKh1fq4AY5EWiscg8zjzas/0/3136382e3230352e32342e302f32322d3234203d3e20323633313531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.205.24.0/22 Signature Algorithm: sha256WithRSAEncryption 64:43:db:38:8c:d3:08:b3:63:7c:a8:4b:50:99:ad:9a:11:09: c8:fc:6a:80:a6:28:50:b7:ba:90:f1:34:de:e8:26:d9:0c:19: 2f:1f:a5:1f:57:07:dd:55:ae:a0:fc:84:f8:87:73:eb:bf:aa: 66:7c:39:9e:43:4f:40:a4:9c:4a:bc:f4:c2:5c:6b:4d:53:41: 40:ba:64:4f:bb:72:1c:e7:0c:31:54:20:6b:81:3b:eb:41:5f: 60:f1:8e:69:bb:c6:29:47:32:83:ea:5b:d8:d8:1c:c2:07:51: 92:c3:93:0f:1c:a4:1b:a3:ab:c9:e4:ee:5e:0a:fe:18:dd:32: a6:95:c2:cb:8b:3c:4b:ec:48:ab:4d:23:5f:a7:4e:03:bf:64: dd:49:8f:ac:e7:48:81:37:02:21:aa:26:fe:23:73:af:ad:28: b2:e3:cf:98:42:a5:af:13:e5:c9:62:77:a8:6b:24:50:1f:34: c8:b6:43:15:85:c5:bb:0a:32:de:52:3b:1f:11:65:f2:eb:85: e8:9e:6a:33:ae:f8:98:4b:a1:b9:c0:a8:51:9d:a2:41:de:ed: 48:29:35:49:85:4c:b4:5a:94:bd:62:55:ac:e3:71:1d:7f:ea: e6:fa:02:d4:6a:bb:d7:61:13:0a:6d:12:2f:7d:fd:be:5b:ba: fc:97:a0:4e -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUfZtB0uTk9LpsuceslsV8md+coWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhBRDg3NjExRkREQzlDOTlCMjE1N0ZCQzUwMzQzMERF ODc0NURCRDAeFw0yNTAzMTAxNTIwMjdaFw0yNjAzMDkxNTI1MjdaMDMxMTAvBgNV BAMTKDFDNjEyOUQzNURDNzJCREQ3ODVBODhGQTg0RjIxMzA4RUZFNTU4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaFPHxQcV5/TFT80UHQK9GERCD Y9XhY+pxJfxsZV3YiwbKVsPuNuFL2CLwm4fVdboAharf7fy7HGEtQU8sjM6jKaps IvxVpu+smVDDsMzDmzWMSnVUw+tq6K1phT1EGXtrWHqVS5PLz02qz381ZVERtyZi CI87dqqupIcedgqMSt2eFhYYHJZHxzU5rZcLUtnGq5LFegwqHMAcYepMeih4Z7Uf eiuO5mQG39eyfRJ5T/FMuzR+56MKX/IGHYRUbfTD8u6rbe627mKSN0UYof1jX+lL oJ5e4FBBd81Ls2xJo35fu9SCMJ2eWWyiFGK42WQUwZMOWD7l60UwwmOa2qYxAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUHGEp013HK914Woj6hPITCO/lWMowHwYDVR0j BBgwFoAUiK2HYR/dycmbIVf7xQNDDeh0Xb0wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vSGlMekw0S2hkVnBERm9DSmV5clVuSnBLaDFmcTRBWTVFV2lzY2c4emp6 YXMvMC84OEFEODc2MTFGRERDOUM5OUIyMTU3RkJDNTAzNDMwREU4NzQ1REJELmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzg4QUQ4NzYxMUZEREM5Qzk5 QjIxNTdGQkM1MDM0MzBERTg3NDVEQkQuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0hpTHpMNEtoZFZwREZvQ0pleXJVbkpwS2gxZnE0QVk1RVdpc2NnOHpqemFzLzAv MzEzNjM4MmUzMjMwMzUyZTMyMzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2 MzMzMTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAKozRgwDQYJKoZIhvcNAQELBQADggEBAGRD2ziM 0wizY3yoS1CZrZoRCcj8aoCmKFC3upDxNN7oJtkMGS8fpR9XB91VrqD8hPiHc+u/ qmZ8OZ5DT0CknEq89MJca01TQUC6ZE+7chznDDFUIGuBO+tBX2Dxjmm7xilHMoPq W9jYHMIHUZLDkw8cpBujq8nk7l4K/hjdMqaVwsuLPEvsSKtNI1+nTgO/ZN1Jj6zn SIE3AiGqJv4jc6+tKLLjz5hCpa8T5clid6hrJFAfNMi2QxWFxbsKMt5SOx8RZfLr heieajOu+JhLobnAqFGdokHe7UgpNUmFTLRalL1iVazjcR1/6ub6AtRqu9dhEwpt Ei99/b5buvyXoE4= -----END CERTIFICATE-----Generated at Tue Apr 8 00:24:56 2025 by rpki-client