$ rpki-client -vvf rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/34352e3233332e3132302e302f32322d3234203d3e20323637333233.roa File: 34352e3233332e3132302e302f32322d3234203d3e20323637333233.roa (raw, json) Hash identifier: dOPWjzLf58Xg8+78zynzRo1Zcc4f68mh1/wiOicmq2g= Subject key identifier: 86:AD:CD:3C:AD:AB:46:FB:C2:1B:31:44:65:1A:B5:3C:E6:93:3D:D4 Certificate issuer: /CN=FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0 Certificate serial: 25B058F83A214F0DE0C98ED092D1790E36A018F3 Authority key identifier: FD:8D:30:E8:6F:5B:B3:42:34:68:76:9C:A0:DC:A6:BE:69:FC:B1:E0 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.cer Subject info access: rsync://rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/34352e3233332e3132302e302f32322d3234203d3e20323637333233.roa Signing time: Thu 03 Apr 2025 23:27:11 +0000 ROA not before: Thu 03 Apr 2025 23:22:11 +0000 ROA not after: Thu 02 Apr 2026 23:27:11 +0000 asID: 267323 IP address blocks: 45.233.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.crl rsync://rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 19 Apr 2025 01:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b0:58:f8:3a:21:4f:0d:e0:c9:8e:d0:92:d1:79:0e:36:a0:18:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0 Validity Not Before: Apr 3 23:22:11 2025 GMT Not After : Apr 2 23:27:11 2026 GMT Subject: CN=86ADCD3CADAB46FBC21B3144651AB53CE6933DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:aa:4f:16:1a:10:f0:29:5d:c5:e7:65:31:8d: 79:a8:2c:f8:76:2c:42:43:ff:11:d7:ec:9f:c3:19: f8:67:4a:06:e1:36:f8:f4:41:9a:64:d9:d0:56:b2: 48:f3:c6:d1:7c:4c:82:bb:1f:55:1b:ce:dc:69:c7: c2:66:52:f8:95:82:8a:94:b4:a9:90:b9:3c:06:99: 8a:8b:1a:fa:02:94:30:62:ec:ea:ce:d9:ef:76:88: 73:09:e5:ba:3a:59:09:6e:85:78:cf:96:6e:ec:8d: 36:42:47:c1:38:aa:40:98:b8:ae:39:ce:c5:91:99: e5:4e:ab:02:95:89:0d:cd:fc:ff:3c:e2:79:e7:53: 7a:6f:0a:fd:8b:72:e8:fb:2c:ee:f9:fa:88:f8:5a: 36:c8:94:bc:b2:d0:6a:9e:5c:b7:12:58:7d:d9:89: 31:ac:03:e7:9f:79:00:39:44:3c:91:b3:c4:dc:6a: fb:d4:ab:c4:11:b7:40:de:f9:b3:96:e6:2a:21:28: c7:d7:7f:45:e1:b5:38:6c:30:83:f8:0a:97:d8:4c: a6:54:69:a4:ae:9a:50:05:b2:24:08:33:92:b2:bc: 96:16:1b:68:3c:93:dc:2f:c1:bc:5e:bc:ff:5e:3a: cf:f0:d7:17:d2:7a:4e:ad:e0:84:08:b2:73:4b:f9: 36:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AD:CD:3C:AD:AB:46:FB:C2:1B:31:44:65:1A:B5:3C:E6:93:3D:D4 X509v3 Authority Key Identifier: keyid:FD:8D:30:E8:6F:5B:B3:42:34:68:76:9C:A0:DC:A6:BE:69:FC:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/FD8D30E86F5BB3423468769CA0DCA6BE69FCB1E0.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/YbuM6i5GQNLi7BbEEqPQ1U4TKFbJXKzCUS2sbXgxf7W/0/34352e3233332e3132302e302f32322d3234203d3e20323637333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.233.120.0/22 Signature Algorithm: sha256WithRSAEncryption 84:21:47:7d:fa:a1:a0:97:03:f3:02:e9:f5:9d:bc:be:6a:53: e9:c9:99:00:b5:25:76:18:46:04:de:66:c2:6f:4c:3e:b1:90: 1f:c2:83:35:cc:17:02:a1:8b:d7:58:5e:0e:3d:e0:ed:28:6d: bf:76:de:fd:47:66:e3:ae:28:1e:4d:b0:57:15:90:73:26:aa: 2f:b9:85:0b:f5:10:ab:02:e8:f0:5c:1b:4c:b9:50:6c:cb:35: 39:f8:47:71:95:ca:d5:58:33:e3:78:37:a5:bc:66:f9:56:f9: 74:24:6d:5f:73:48:99:86:26:c2:8a:7c:77:71:8a:f1:42:26: 66:b9:6c:59:30:c2:d9:93:95:da:f8:d2:da:47:c8:60:8e:5f: 8c:ee:e7:20:79:1d:c9:7d:7d:5c:ee:e5:02:0b:27:e0:13:f9: c2:d9:91:cf:6b:2c:ce:e6:88:fb:52:b7:57:f6:32:92:5a:af: 9a:19:e8:38:e8:5c:82:69:dc:56:ef:bb:51:43:b0:b1:1f:4d: 50:3a:58:c8:27:1d:77:55:4e:9b:8b:f3:cf:3f:1f:8d:82:e1: ea:19:68:6f:fe:f3:3d:85:7b:6e:14:c2:c6:90:34:7f:23:ca: 2d:4e:a1:59:5d:b5:3b:9f:0c:45:04:70:73:37:78:09:73:bb: 02:6f:4a:3d -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUJbBY+DohTw3gyY7QktF5DjagGPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ4RDMwRTg2RjVCQjM0MjM0Njg3NjlDQTBEQ0E2QkU2 OUZDQjFFMDAeFw0yNTA0MDMyMzIyMTFaFw0yNjA0MDIyMzI3MTFaMDMxMTAvBgNV BAMTKDg2QURDRDNDQURBQjQ2RkJDMjFCMzE0NDY1MUFCNTNDRTY5MzNERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3qk8WGhDwKV3F52UxjXmoLPh2 LEJD/xHX7J/DGfhnSgbhNvj0QZpk2dBWskjzxtF8TIK7H1Ubztxpx8JmUviVgoqU tKmQuTwGmYqLGvoClDBi7OrO2e92iHMJ5bo6WQluhXjPlm7sjTZCR8E4qkCYuK45 zsWRmeVOqwKViQ3N/P884nnnU3pvCv2Lcuj7LO75+oj4WjbIlLyy0GqeXLcSWH3Z iTGsA+efeQA5RDyRs8TcavvUq8QRt0De+bOW5iohKMfXf0XhtThsMIP4CpfYTKZU aaSumlAFsiQIM5KyvJYWG2g8k9wvwbxevP9eOs/w1xfSek6t4IQIsnNL+TbjAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUhq3NPK2rRvvCGzFEZRq1POaTPdQwHwYDVR0j BBgwFoAU/Y0w6G9bs0I0aHacoNymvmn8seAwDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9ZYnVNNmk1R1FOTGk3QmJFRXFQUTFVNFRLRmJKWEt6Q1VTMnNiWGd4ZjdX LzAvRkQ4RDMwRTg2RjVCQjM0MjM0Njg3NjlDQTBEQ0E2QkU2OUZDQjFFMC5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS9GRDhEMzBFODZGNUJCMzQyMzQ2 ODc2OUNBMERDQTZCRTY5RkNCMUUwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoG CCsGAQUFBzALhoGNcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9Z YnVNNmk1R1FOTGk3QmJFRXFQUTFVNFRLRmJKWEt6Q1VTMnNiWGd4ZjdXLzAvMzQz NTJlMzIzMzMzMmUzMTMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2Mzcz MzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB Af8EEDAOMAwEAgABMAYDBAIt6XgwDQYJKoZIhvcNAQELBQADggEBAIQhR336oaCX A/MC6fWdvL5qU+nJmQC1JXYYRgTeZsJvTD6xkB/CgzXMFwKhi9dYXg494O0obb92 3v1HZuOuKB5NsFcVkHMmqi+5hQv1EKsC6PBcG0y5UGzLNTn4R3GVytVYM+N4N6W8 ZvlW+XQkbV9zSJmGJsKKfHdxivFCJma5bFkwwtmTldr40tpHyGCOX4zu5yB5Hcl9 fVzu5QILJ+AT+cLZkc9rLM7miPtSt1f2MpJar5oZ6DjoXIJp3Fbvu1FDsLEfTVA6 WMgnHXdVTpuL888/H42C4eoZaG/+8z2Fe24UwsaQNH8jyi1OoVldtTufDEUEcHM3 eAlzuwJvSj0= -----END CERTIFICATE-----Generated at Fri Apr 18 10:41:50 2025 by rpki-client