$ rpki-client -vvf rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32302d3234203d3e203532353332.roa File: 3230312e34392e3232342e302f32302d3234203d3e203532353332.roa (raw, json) Hash identifier: CNJSlWtatUN4HSdkuVeA3UaPEokKP4ThP14ovzAF/c0= Subject key identifier: AC:46:B6:7C:6F:C5:CE:7C:C2:7A:35:02:DB:88:95:2B:CC:A2:6C:99 Certificate issuer: /CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A Certificate serial: 167ADB672531C1D81FD9F660C73594E9A6E978CB Authority key identifier: 2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer Subject info access: rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32302d3234203d3e203532353332.roa Signing time: Wed 12 Feb 2025 16:47:28 +0000 ROA not before: Wed 12 Feb 2025 16:42:28 +0000 ROA not after: Wed 11 Feb 2026 16:47:28 +0000 asID: 52532 IP address blocks: 201.49.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.crl rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 17 Apr 2025 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7a:db:67:25:31:c1:d8:1f:d9:f6:60:c7:35:94:e9:a6:e9:78:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C1CC943537E72AA599BC9B940FB180BA89C2D1A Validity Not Before: Feb 12 16:42:28 2025 GMT Not After : Feb 11 16:47:28 2026 GMT Subject: CN=AC46B67C6FC5CE7CC27A3502DB88952BCCA26C99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:fb:32:9a:26:18:d6:e1:99:13:88:de:2c:0a: fc:79:22:1a:ee:87:95:f5:b8:ac:76:6d:a2:73:67: 85:b3:db:33:7a:06:b4:54:a6:67:b2:95:b1:ee:4c: f4:86:68:39:e8:57:4f:ef:a8:c9:54:c6:a2:01:d5: 9f:b2:f8:3e:fc:4a:b4:ef:a9:6e:61:40:46:c6:d3: c4:06:d4:42:84:7a:51:49:44:86:ba:f9:e5:bf:8f: 0e:54:a1:d8:18:3d:8e:aa:c1:60:69:e3:01:98:13: 0b:45:fc:09:c3:8b:e4:76:77:d6:75:ea:37:83:40: 5d:93:6d:b5:60:59:02:85:f9:97:c2:c0:af:e1:72: e0:58:f0:81:de:7f:1c:49:88:ed:ee:fe:02:b1:5b: 12:dd:58:14:cc:78:f9:9f:7e:38:fb:d6:a1:26:3d: ec:a9:a1:2b:e5:f0:61:02:c8:a1:2c:d9:d4:15:61: a5:23:ff:db:d6:dc:62:36:6a:7f:cb:a0:36:05:0d: 69:51:58:b0:0d:ba:c8:95:75:92:39:26:dc:97:82: 17:8f:85:36:34:e5:d0:ae:91:b6:09:1e:b3:a3:1a: 04:17:da:be:94:23:b5:bf:bd:f8:4e:d6:b7:10:e6: ff:00:f4:7a:47:fd:1d:9c:4d:dd:22:33:bd:45:d2: 96:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:46:B6:7C:6F:C5:CE:7C:C2:7A:35:02:DB:88:95:2B:CC:A2:6C:99 X509v3 Authority Key Identifier: keyid:2C:1C:C9:43:53:7E:72:AA:59:9B:C9:B9:40:FB:18:0B:A8:9C:2D:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/2C1CC943537E72AA599BC9B940FB180BA89C2D1A.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/afXFMkQypJjaSaUzt3EQQoJNcVuzhhmdBNu1W4XEo3i/1/3230312e34392e3232342e302f32302d3234203d3e203532353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 201.49.224.0/20 Signature Algorithm: sha256WithRSAEncryption 6e:c6:c2:19:cd:3c:8d:b7:77:ae:79:88:e1:67:aa:6b:02:ee: 3e:da:f5:fd:cd:17:b2:91:3f:e4:b8:d2:ad:12:ad:d2:4b:4e: 8d:f4:ca:7b:f7:d6:77:18:90:b4:2c:12:f3:29:8c:23:de:c0: b6:45:d6:19:45:10:0b:a9:86:f7:d6:07:e1:c3:d5:85:90:c5: c0:60:73:bf:a1:c0:63:de:9d:c1:f4:32:0e:14:2c:56:58:8a: 96:20:f8:c6:91:14:0e:46:cb:06:0d:32:53:57:ce:ca:a0:42: 2e:37:51:f9:00:d9:4a:11:9c:3b:9b:28:36:3e:a1:0b:39:e5: 73:bd:59:95:74:29:75:22:48:94:a3:ed:0a:39:79:fc:76:7c: e7:0a:d9:2e:c9:2c:75:01:22:23:83:c8:da:7a:27:e3:5b:01: 08:a8:ae:d6:a5:50:30:00:d5:53:b7:ef:5a:71:a1:c1:46:3b: d8:67:55:f1:b2:0a:ab:bc:24:38:19:ce:2e:14:fa:19:13:9f: e9:6c:6b:62:a8:d4:03:0b:b9:66:74:45:b0:a9:e9:64:03:f4: 25:51:d8:cc:bc:16:ac:ee:81:1e:f6:37:3c:20:48:53:16:dd: 05:70:ac:58:27:02:ad:de:33:30:08:af:df:1b:c4:d2:ae:a4: 9c:75:9f:36 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUFnrbZyUxwdgf2fZgxzWU6abpeMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJB ODlDMkQxQTAeFw0yNTAyMTIxNjQyMjhaFw0yNjAyMTExNjQ3MjhaMDMxMTAvBgNV BAMTKEFDNDZCNjdDNkZDNUNFN0NDMjdBMzUwMkRCODg5NTJCQ0NBMjZDOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU+zKaJhjW4ZkTiN4sCvx5Ihru h5X1uKx2baJzZ4Wz2zN6BrRUpmeylbHuTPSGaDnoV0/vqMlUxqIB1Z+y+D78SrTv qW5hQEbG08QG1EKEelFJRIa6+eW/jw5UodgYPY6qwWBp4wGYEwtF/AnDi+R2d9Z1 6jeDQF2TbbVgWQKF+ZfCwK/hcuBY8IHefxxJiO3u/gKxWxLdWBTMePmffjj71qEm PeypoSvl8GECyKEs2dQVYaUj/9vW3GI2an/LoDYFDWlRWLANusiVdZI5JtyXgheP hTY05dCukbYJHrOjGgQX2r6UI7W/vfhO1rcQ5v8A9HpH/R2cTd0iM71F0pZtAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUrEa2fG/FznzCejUC24iVK8yibJkwHwYDVR0j BBgwFoAULBzJQ1N+cqpZm8m5QPsYC6icLRowDgYDVR0PAQH/BAQDAgeAMIGSBgNV HR8EgYowgYcwgYSggYGgf4Z9cnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIv cmVwby9hZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNp LzEvMkMxQ0M5NDM1MzdFNzJBQTU5OUJDOUI5NDBGQjE4MEJBODlDMkQxQS5jcmww eAYIKwYBBQUHAQEEbDBqMGgGCCsGAQUFBzAChlxyc3luYzovL3Jwa2ktcmVwby5y ZWdpc3Ryby5ici9yZXBvL25pY2JyX3JlcG8vMS8yQzFDQzk0MzUzN0U3MkFBNTk5 QkM5Qjk0MEZCMTgwQkE4OUMyRDFBLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgG CCsGAQUFBzALhoGLcnN5bmM6Ly9ycGtpLXJlcG8ucmVnaXN0cm8uYnIvcmVwby9h ZlhGTWtReXBKamFTYVV6dDNFUVFvSk5jVnV6aGhtZEJOdTFXNFhFbzNpLzEvMzIz MDMxMmUzNDM5MmUzMjMyMzQyZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNTMyMzUz MzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQEyTHgMA0GCSqGSIb3DQEBCwUAA4IBAQBuxsIZzTyNt3eu eYjhZ6prAu4+2vX9zReykT/kuNKtEq3SS06N9Mp799Z3GJC0LBLzKYwj3sC2RdYZ RRALqYb31gfhw9WFkMXAYHO/ocBj3p3B9DIOFCxWWIqWIPjGkRQORssGDTJTV87K oEIuN1H5ANlKEZw7myg2PqELOeVzvVmVdCl1IkiUo+0KOXn8dnznCtkuySx1ASIj g8jaeifjWwEIqK7WpVAwANVTt+9acaHBRjvYZ1XxsgqrvCQ4Gc4uFPoZE5/pbGti qNQDC7lmdEWwqelkA/QlUdjMvBas7oEe9jc8IEhTFt0FcKxYJwKt3jMwCK/fG8TS rqScdZ82 -----END CERTIFICATE-----Generated at Thu Apr 17 03:51:22 2025 by rpki-client