$ rpki-client -vvf rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3136382e3139372e37362e302f32322d3234203d3e20323633363536.roa File: 3136382e3139372e37362e302f32322d3234203d3e20323633363536.roa (raw, json) Hash identifier: LFEgWICXHnee4/bGPrqW2v3LYv3dbDv2jg2lbR5xrCI= Subject key identifier: 42:21:28:A1:D8:27:58:41:9A:15:9F:66:7A:8F:72:8A:79:EB:4D:AD Certificate issuer: /CN=4187E8F9FB3CC3D24854671C5A8C083063D7BC87 Certificate serial: 1ED5C971CF7D42B5F4609E04886E2714EAEE9E4A Authority key identifier: 41:87:E8:F9:FB:3C:C3:D2:48:54:67:1C:5A:8C:08:30:63:D7:BC:87 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.cer Subject info access: rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3136382e3139372e37362e302f32322d3234203d3e20323633363536.roa Signing time: Wed 04 Jun 2025 17:08:09 +0000 ROA not before: Wed 04 Jun 2025 17:03:09 +0000 ROA not after: Wed 03 Jun 2026 17:08:09 +0000 asID: 263656 IP address blocks: 168.197.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.crl rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 09 Jun 2025 13:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d5:c9:71:cf:7d:42:b5:f4:60:9e:04:88:6e:27:14:ea:ee:9e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4187E8F9FB3CC3D24854671C5A8C083063D7BC87 Validity Not Before: Jun 4 17:03:09 2025 GMT Not After : Jun 3 17:08:09 2026 GMT Subject: CN=422128A1D82758419A159F667A8F728A79EB4DAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:f2:75:b2:fa:17:08:a7:17:14:98:49:2d: 34:5d:b3:83:fd:88:e2:69:6a:a3:e8:5c:b6:06:63: 7d:be:6e:7d:6b:30:d5:3f:f8:53:be:6e:0f:5a:09: 10:9f:e6:43:89:48:46:bf:72:00:a2:4c:05:89:45: 60:28:06:22:78:27:07:cb:a3:a5:f9:31:af:4e:e3: c1:bb:34:03:d2:98:3e:14:23:39:f2:66:d9:41:a7: 0b:66:23:97:51:8a:4f:6c:f2:bd:7b:22:68:6c:f2: 59:4f:21:ff:58:05:43:41:81:ad:44:01:17:8b:dd: 82:33:72:fb:ce:b0:dd:d0:15:ba:c4:dc:3d:20:7e: 3b:39:ac:e3:2d:4a:c6:b8:55:ff:26:86:68:8c:5c: 64:4d:6a:41:32:1f:ce:e6:59:c4:08:07:de:62:6a: dd:7a:e2:07:c7:54:5f:11:30:f5:da:ce:ab:94:6d: 2d:39:8a:f8:82:ed:0f:74:da:3d:96:1c:9c:76:e6: 2b:8c:c9:29:7d:bd:78:e9:88:08:ec:e5:a4:98:5b: c3:e3:b9:64:4b:85:11:e1:3f:ff:d0:5f:22:aa:fb: 3c:d1:36:3f:1e:ac:81:4c:49:47:48:2d:01:76:a8: e2:5e:a5:11:f3:c7:3b:3e:cb:03:38:cb:6c:ac:08: 5a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:21:28:A1:D8:27:58:41:9A:15:9F:66:7A:8F:72:8A:79:EB:4D:AD X509v3 Authority Key Identifier: keyid:41:87:E8:F9:FB:3C:C3:D2:48:54:67:1C:5A:8C:08:30:63:D7:BC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/4187E8F9FB3CC3D24854671C5A8C083063D7BC87.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/KiEkP5zy2dnvxp3ZeGdG1aPAhA6s5ZYxjuJYh8vCVBx/0/3136382e3139372e37362e302f32322d3234203d3e20323633363536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.197.76.0/22 Signature Algorithm: sha256WithRSAEncryption 96:a4:6a:b2:4b:36:1d:05:9b:f2:c3:2a:2b:38:87:93:ce:e5: 76:8b:52:f6:f3:b2:e3:f7:0a:13:df:9a:34:46:27:f7:d8:ae: 87:1a:31:b1:ea:48:ba:15:01:db:55:49:9d:95:cb:64:2f:3e: 5c:10:ed:d6:87:68:85:3a:6d:d1:01:fd:e5:9c:80:90:60:8f: 00:b9:ff:8c:01:6f:14:5e:7f:b5:4d:21:ab:87:75:bd:da:cf: 2d:61:14:71:7a:26:3f:77:18:92:a5:94:33:04:18:09:71:ff: f4:c4:9d:b6:eb:ef:08:a8:76:3e:4a:c1:63:c2:6f:18:7b:bd: 6a:dc:0f:22:3b:8b:1f:8f:7f:f1:94:ef:e5:a4:38:93:38:72: 8f:eb:8f:cd:34:24:e1:58:cc:da:3d:61:fd:c2:97:92:81:3d: 9b:05:1e:95:2b:e5:d4:2a:5c:a7:72:4c:42:e6:48:2a:9f:dc: 86:61:11:82:fd:fc:65:3a:48:48:8b:a3:e3:e6:4c:cc:66:2c: 4d:e3:60:ec:bf:a0:e2:1a:34:6b:d5:da:29:05:e7:36:d2:64: 71:86:9e:22:eb:a2:a1:5b:67:69:b5:96:88:5c:3d:02:eb:2c: 5a:f4:9e:bb:7a:6d:77:84:0a:2d:a1:7d:eb:99:59:8d:96:9f: e6:dc:ab:cf -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUHtXJcc99QrX0YJ4EiG4nFOrunkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4N0U4RjlGQjNDQzNEMjQ4NTQ2NzFDNUE4QzA4MzA2 M0Q3QkM4NzAeFw0yNTA2MDQxNzAzMDlaFw0yNjA2MDMxNzA4MDlaMDMxMTAvBgNV BAMTKDQyMjEyOEExRDgyNzU4NDE5QTE1OUY2NjdBOEY3MjhBNzlFQjREQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYG/J1svoXCKcXFJhJLTRds4P9 iOJpaqPoXLYGY32+bn1rMNU/+FO+bg9aCRCf5kOJSEa/cgCiTAWJRWAoBiJ4JwfL o6X5Ma9O48G7NAPSmD4UIznyZtlBpwtmI5dRik9s8r17Imhs8llPIf9YBUNBga1E AReL3YIzcvvOsN3QFbrE3D0gfjs5rOMtSsa4Vf8mhmiMXGRNakEyH87mWcQIB95i at164gfHVF8RMPXazquUbS05iviC7Q902j2WHJx25iuMySl9vXjpiAjs5aSYW8Pj uWRLhRHhP//QXyKq+zzRNj8erIFMSUdILQF2qOJepRHzxzs+ywM4y2ysCFovAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUQiEoodgnWEGaFZ9meo9yinnrTa0wHwYDVR0j BBgwFoAUQYfo+fs8w9JIVGccWowIMGPXvIcwDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9LaUVrUDV6eTJkbnZ4cDNaZUdkRzFhUEFoQTZzNVpZeGp1SlloOHZDVkJ4 LzAvNDE4N0U4RjlGQjNDQzNEMjQ4NTQ2NzFDNUE4QzA4MzA2M0Q3QkM4Ny5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS80MTg3RThGOUZCM0NDM0QyNDg1 NDY3MUM1QThDMDgzMDYzRDdCQzg3LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoG CCsGAQUFBzALhoGNcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9L aUVrUDV6eTJkbnZ4cDNaZUdkRzFhUEFoQTZzNVpZeGp1SlloOHZDVkJ4LzAvMzEz NjM4MmUzMTM5MzcyZTM3MzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzMz NjM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB Af8EEDAOMAwEAgABMAYDBAKoxUwwDQYJKoZIhvcNAQELBQADggEBAJakarJLNh0F m/LDKis4h5PO5XaLUvbzsuP3ChPfmjRGJ/fYrocaMbHqSLoVAdtVSZ2Vy2QvPlwQ 7daHaIU6bdEB/eWcgJBgjwC5/4wBbxRef7VNIauHdb3azy1hFHF6Jj93GJKllDME GAlx//TEnbbr7wiodj5KwWPCbxh7vWrcDyI7ix+Pf/GU7+WkOJM4co/rj800JOFY zNo9Yf3Cl5KBPZsFHpUr5dQqXKdyTELmSCqf3IZhEYL9/GU6SEiLo+PmTMxmLE3j YOy/oOIaNGvV2ikF5zbSZHGGniLroqFbZ2m1lohcPQLrLFr0nrt6bXeECi2hfeuZ WY2Wn+bcq88= -----END CERTIFICATE-----Generated at Sun Jun 8 22:40:35 2025 by rpki-client