$ rpki-client -vvf rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/34352e3233362e35322e302f32322d3232203d3e20323638323231.roa File: 34352e3233362e35322e302f32322d3232203d3e20323638323231.roa (raw, json) Hash identifier: ceYoAtNP9I/fYOCde9To24oMt8TJcIju9lbdS97lAIM= Subject key identifier: 8B:0F:4B:41:25:CF:7E:6B:FF:47:D9:13:F3:B7:0E:DD:27:E6:66:59 Certificate issuer: /CN=42D604698AFA9BA492807398AA6527B6E7B04AB4 Certificate serial: 51581BB612D4550832C64D2DA4EC190B62936C6F Authority key identifier: 42:D6:04:69:8A:FA:9B:A4:92:80:73:98:AA:65:27:B6:E7:B0:4A:B4 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42D604698AFA9BA492807398AA6527B6E7B04AB4.cer Subject info access: rsync://rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/34352e3233362e35322e302f32322d3232203d3e20323638323231.roa Signing time: Tue 29 Apr 2025 20:15:31 +0000 ROA not before: Tue 29 Apr 2025 20:10:31 +0000 ROA not after: Tue 28 Apr 2026 20:15:31 +0000 asID: 268221 IP address blocks: 45.236.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/42D604698AFA9BA492807398AA6527B6E7B04AB4.crl rsync://rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/42D604698AFA9BA492807398AA6527B6E7B04AB4.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42D604698AFA9BA492807398AA6527B6E7B04AB4.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Wed 14 May 2025 09:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:58:1b:b6:12:d4:55:08:32:c6:4d:2d:a4:ec:19:0b:62:93:6c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42D604698AFA9BA492807398AA6527B6E7B04AB4 Validity Not Before: Apr 29 20:10:31 2025 GMT Not After : Apr 28 20:15:31 2026 GMT Subject: CN=8B0F4B4125CF7E6BFF47D913F3B70EDD27E66659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fd:27:9b:d9:26:bc:06:b9:96:35:1f:2d:c8: a2:3e:2c:6c:dd:a9:8e:fa:a9:5e:b0:7b:ed:ba:a9: 27:4a:bf:01:00:b4:6d:ce:2d:3b:57:b3:32:8f:75: b2:57:2f:47:a5:d6:af:aa:9c:b9:6a:bc:10:10:56: a2:99:aa:ee:ff:63:71:18:d4:fb:42:38:de:b0:9c: 41:d8:2d:54:5f:f1:db:c2:9d:75:16:17:7c:4b:0f: 7c:5c:94:f9:09:0d:d2:94:16:ac:86:ba:83:d5:92: fc:32:c7:c2:1b:a3:06:d4:2f:2b:5e:0d:15:48:77: 58:97:27:d7:e1:d8:0b:e9:90:bf:1f:44:7c:53:d8: e9:f8:59:66:76:6a:c9:0f:e0:46:09:7e:af:b5:09: 99:06:9a:be:a4:76:e3:8f:36:de:1d:0f:54:4b:8f: 11:ec:93:51:83:4e:d4:34:c8:9d:b3:84:6c:43:5d: 86:c1:38:d6:04:52:0c:eb:3d:31:fa:70:54:b8:c1: 83:ed:9c:b0:bb:30:3f:3e:0d:ec:de:29:79:de:97: 3e:6d:6a:e5:04:2b:77:c5:c1:7f:f9:92:d9:db:44: e8:e2:53:e0:27:97:8d:14:9a:33:1b:31:74:7b:bb: 68:23:15:66:73:3f:fb:f5:13:09:bc:ff:7d:a4:49: 5c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0F:4B:41:25:CF:7E:6B:FF:47:D9:13:F3:B7:0E:DD:27:E6:66:59 X509v3 Authority Key Identifier: keyid:42:D6:04:69:8A:FA:9B:A4:92:80:73:98:AA:65:27:B6:E7:B0:4A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/42D604698AFA9BA492807398AA6527B6E7B04AB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/42D604698AFA9BA492807398AA6527B6E7B04AB4.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/2NhCXVoo4oDxkFt1dvth7wKDCFouiu7pjwzfzyka5P5N/0/34352e3233362e35322e302f32322d3232203d3e20323638323231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.236.52.0/22 Signature Algorithm: sha256WithRSAEncryption 93:27:0e:8f:8c:26:d3:c0:69:51:28:51:a1:f8:79:c7:04:d4: c6:63:59:b3:4c:f5:44:e4:1b:b6:02:ca:20:f2:61:dc:45:8e: f0:a7:0c:b3:9f:da:4d:59:c3:15:84:cc:f7:c8:3e:68:e0:14: 05:b0:71:54:a5:70:cf:e7:68:5d:bf:8c:6d:c0:15:d7:c2:8c: 6e:89:6f:e7:34:51:c8:28:5f:c1:5e:8c:0d:0a:9c:07:56:cc: 45:52:55:35:da:b5:83:6c:cb:b8:d3:31:43:75:1d:c7:0c:b3: f1:b9:5d:1c:05:eb:cb:a7:82:dd:a9:d3:d7:6d:22:09:a8:27: 0f:12:95:60:4c:59:6a:1f:3b:10:81:2b:9b:8a:ca:07:16:74: 22:02:d9:c6:02:66:f7:bf:8c:8a:53:43:42:a6:ca:79:50:13: 80:e7:96:bf:7f:ea:c1:8d:54:54:30:1f:10:09:f1:ba:c9:09: f9:35:07:f6:a0:15:6f:44:e2:31:5b:39:61:b3:47:7d:cf:12: ea:31:d6:06:65:45:3f:1f:10:48:a2:03:a8:78:c5:7b:b5:7c: 6f:f3:0f:78:2e:b5:92:c9:f8:e1:cf:83:06:51:2e:09:c4:fa: 44:0c:91:86:9c:39:d9:19:36:67:1b:05:3b:09:4b:9b:ab:1e: 75:d9:ad:d0 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUUVgbthLUVQgyxk0tpOwZC2KTbG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJENjA0Njk4QUZBOUJBNDkyODA3Mzk4QUE2NTI3QjZF N0IwNEFCNDAeFw0yNTA0MjkyMDEwMzFaFw0yNjA0MjgyMDE1MzFaMDMxMTAvBgNV BAMTKDhCMEY0QjQxMjVDRjdFNkJGRjQ3RDkxM0YzQjcwRUREMjdFNjY2NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/Seb2Sa8BrmWNR8tyKI+LGzd qY76qV6we+26qSdKvwEAtG3OLTtXszKPdbJXL0el1q+qnLlqvBAQVqKZqu7/Y3EY 1PtCON6wnEHYLVRf8dvCnXUWF3xLD3xclPkJDdKUFqyGuoPVkvwyx8IbowbULyte DRVId1iXJ9fh2AvpkL8fRHxT2On4WWZ2askP4EYJfq+1CZkGmr6kduOPNt4dD1RL jxHsk1GDTtQ0yJ2zhGxDXYbBONYEUgzrPTH6cFS4wYPtnLC7MD8+DezeKXnelz5t auUEK3fFwX/5ktnbROjiU+Anl40UmjMbMXR7u2gjFWZzP/v1Ewm8/32kSVxzAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUiw9LQSXPfmv/R9kT87cO3SfmZlkwHwYDVR0j BBgwFoAUQtYEaYr6m6SSgHOYqmUntuewSrQwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vMk5oQ1hWb280b0R4a0Z0MWR2dGg3d0tEQ0ZvdWl1N3Bqd3pmenlrYTVQ NU4vMC80MkQ2MDQ2OThBRkE5QkE0OTI4MDczOThBQTY1MjdCNkU3QjA0QUI0LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzQyRDYwNDY5OEFGQTlCQTQ5 MjgwNzM5OEFBNjUyN0I2RTdCMDRBQjQuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzJOaENYVm9vNG9EeGtGdDFkdnRoN3dLRENGb3VpdTdwand6Znp5a2E1UDVOLzAv MzQzNTJlMzIzMzM2MmUzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM4 MzIzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQCLew0MA0GCSqGSIb3DQEBCwUAA4IBAQCTJw6PjCbT wGlRKFGh+HnHBNTGY1mzTPVE5Bu2Asog8mHcRY7wpwyzn9pNWcMVhMz3yD5o4BQF sHFUpXDP52hdv4xtwBXXwoxuiW/nNFHIKF/BXowNCpwHVsxFUlU12rWDbMu40zFD dR3HDLPxuV0cBevLp4LdqdPXbSIJqCcPEpVgTFlqHzsQgSubisoHFnQiAtnGAmb3 v4yKU0NCpsp5UBOA55a/f+rBjVRUMB8QCfG6yQn5NQf2oBVvROIxWzlhs0d9zxLq MdYGZUU/HxBIogOoeMV7tXxv8w94LrWSyfjhz4MGUS4JxPpEDJGGnDnZGTZnGwU7 CUubqx512a3Q -----END CERTIFICATE-----Generated at Tue May 13 17:24:04 2025 by rpki-client