$ rpki-client -vvf rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/34352e3136322e3132302e302f32322d3332203d3e20323638353034.roa File: 34352e3136322e3132302e302f32322d3332203d3e20323638353034.roa (raw, json) Hash identifier: HdYccR/va0xtom45Sen1UL4IC6Ew3wa64FV+vV/ilu0= Subject key identifier: DD:FC:A9:DF:44:8F:D0:08:F6:72:D2:81:AA:64:DB:D3:EB:FA:B1:94 Certificate issuer: /CN=724E697E1673A7C11A6F50E51FCE489942BAAA02 Certificate serial: 4B163A4C45D60281D7873EE1A34C62913C7C884E Authority key identifier: 72:4E:69:7E:16:73:A7:C1:1A:6F:50:E5:1F:CE:48:99:42:BA:AA:02 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/724E697E1673A7C11A6F50E51FCE489942BAAA02.cer Subject info access: rsync://rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/34352e3136322e3132302e302f32322d3332203d3e20323638353034.roa Signing time: Thu 24 Apr 2025 17:08:54 +0000 ROA not before: Thu 24 Apr 2025 17:03:54 +0000 ROA not after: Thu 23 Apr 2026 17:08:54 +0000 asID: 268504 IP address blocks: 45.162.120.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/724E697E1673A7C11A6F50E51FCE489942BAAA02.crl rsync://rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/724E697E1673A7C11A6F50E51FCE489942BAAA02.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/724E697E1673A7C11A6F50E51FCE489942BAAA02.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Fri 04 Jul 2025 09:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:16:3a:4c:45:d6:02:81:d7:87:3e:e1:a3:4c:62:91:3c:7c:88:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=724E697E1673A7C11A6F50E51FCE489942BAAA02 Validity Not Before: Apr 24 17:03:54 2025 GMT Not After : Apr 23 17:08:54 2026 GMT Subject: CN=DDFCA9DF448FD008F672D281AA64DBD3EBFAB194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:02:9c:55:37:a6:49:18:8a:a3:31:86:92:5c: b2:52:86:db:24:c6:60:56:0c:14:7f:84:3d:7b:93: 7e:da:c0:94:c8:16:2d:b6:a5:31:e1:a1:22:01:99: 9b:5c:cb:8d:36:c9:9b:cf:78:e8:4a:57:ee:73:70: 95:41:cc:8f:a0:e4:3f:f6:b9:72:b6:fe:38:bd:67: af:9b:f6:03:cf:04:e2:f7:59:c6:6a:75:cb:2e:b8: 1e:a5:8a:d8:5e:2c:ff:b4:aa:ef:b4:a1:b5:1b:55: f8:dc:2f:4b:14:df:26:7b:54:04:29:d9:a7:d1:9d: 04:a4:40:78:c3:bd:97:b4:03:26:8f:d0:8d:c3:3b: 7c:ba:a7:12:4f:71:13:a5:02:c5:e3:5e:33:c5:c2: 1c:2a:ff:f8:55:52:19:c0:f8:5d:0a:3f:dd:82:6e: b1:cf:84:c1:a8:d3:26:4b:b9:09:b9:4b:29:7c:bc: b4:84:cf:2d:b6:e5:9a:b3:65:43:88:5e:16:22:c4: fb:5e:dd:d4:0b:5b:41:85:55:e3:d5:f1:5c:ef:e0: 7e:0a:1e:8a:25:ea:8a:80:2b:28:ab:47:3f:20:a0: 61:ef:d6:a4:6b:b7:ba:b2:0f:8e:49:ae:4e:23:34: fd:50:01:6f:17:06:be:c6:dc:75:4f:16:7f:eb:b5: 7b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FC:A9:DF:44:8F:D0:08:F6:72:D2:81:AA:64:DB:D3:EB:FA:B1:94 X509v3 Authority Key Identifier: keyid:72:4E:69:7E:16:73:A7:C1:1A:6F:50:E5:1F:CE:48:99:42:BA:AA:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/724E697E1673A7C11A6F50E51FCE489942BAAA02.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/724E697E1673A7C11A6F50E51FCE489942BAAA02.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3w7rh7r94tNhE51b1U3eW8hUhBUDeFsS7f31BFDT8oBL/0/34352e3136322e3132302e302f32322d3332203d3e20323638353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.162.120.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:06:b2:6f:2b:73:ca:20:e6:3d:af:8f:5d:4c:11:bc:df:ce: 22:f2:45:58:0d:d4:92:c6:f1:de:4d:3f:de:8b:31:d8:60:86: 14:37:18:ba:82:31:8b:ef:2d:d8:7e:69:d9:44:fb:b8:ce:e5: 67:d2:ad:61:b1:be:44:97:29:d3:05:af:fc:94:8a:25:57:c6: 7c:a9:7b:42:4a:16:4d:d9:a9:7a:05:22:8b:4b:48:64:b4:1d: 24:1f:da:fb:9e:a2:5c:62:a3:a2:93:81:4d:ab:85:57:b2:94: ab:86:cd:7b:78:95:de:0c:18:be:01:5b:d0:06:c8:91:06:b9: ff:26:87:b1:93:d0:2a:76:e6:d7:53:f0:3d:81:d4:10:3f:37: 62:4f:42:4a:61:da:b1:f9:0d:09:40:20:6b:0a:14:b8:fe:fd: 5b:14:c9:70:f7:0c:93:1c:c1:cc:2a:64:d0:7a:4f:f8:d4:79: a7:43:9c:5a:84:47:9d:59:a8:8c:79:23:84:10:da:f5:17:52: ce:73:aa:e3:e7:f7:a0:08:70:62:df:a1:d5:c1:30:38:97:31: 4b:62:d3:f4:56:a3:60:ea:f8:ee:36:50:ff:74:3d:30:e8:ab: ce:3c:64:d9:3e:bd:6c:12:5a:f4:90:03:d1:e7:d2:3c:e1:6c: 60:64:fa:01 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUSxY6TEXWAoHXhz7ho0xikTx8iE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI0RTY5N0UxNjczQTdDMTFBNkY1MEU1MUZDRTQ4OTk0 MkJBQUEwMjAeFw0yNTA0MjQxNzAzNTRaFw0yNjA0MjMxNzA4NTRaMDMxMTAvBgNV BAMTKERERkNBOURGNDQ4RkQwMDhGNjcyRDI4MUFBNjREQkQzRUJGQUIxOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFApxVN6ZJGIqjMYaSXLJShtsk xmBWDBR/hD17k37awJTIFi22pTHhoSIBmZtcy402yZvPeOhKV+5zcJVBzI+g5D/2 uXK2/ji9Z6+b9gPPBOL3WcZqdcsuuB6litheLP+0qu+0obUbVfjcL0sU3yZ7VAQp 2afRnQSkQHjDvZe0AyaP0I3DO3y6pxJPcROlAsXjXjPFwhwq//hVUhnA+F0KP92C brHPhMGo0yZLuQm5Syl8vLSEzy225ZqzZUOIXhYixPte3dQLW0GFVePV8Vzv4H4K Hool6oqAKyirRz8goGHv1qRrt7qyD45Jrk4jNP1QAW8XBr7G3HVPFn/rtXs/AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQU3fyp30SP0Aj2ctKBqmTb0+v6sZQwHwYDVR0j BBgwFoAUck5pfhZzp8Eab1DlH85ImUK6qgIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM3c3cmg3cjk0dE5oRTUxYjFVM2VXOGhVaEJVRGVGc1M3ZjMxQkZEVDhv QkwvMC83MjRFNjk3RTE2NzNBN0MxMUE2RjUwRTUxRkNFNDg5OTQyQkFBQTAyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzcyNEU2OTdFMTY3M0E3QzEx QTZGNTBFNTFGQ0U0ODk5NDJCQUFBMDIuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzN3N3JoN3I5NHROaEU1MWIxVTNlVzhoVWhCVURlRnNTN2YzMUJGRFQ4b0JMLzAv MzQzNTJlMzEzNjMyMmUzMTMyMzAyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzMjM2 MzgzNTMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAItongwDQYJKoZIhvcNAQELBQADggEBAHwGsm8r c8og5j2vj11MEbzfziLyRVgN1JLG8d5NP96LMdhghhQ3GLqCMYvvLdh+adlE+7jO 5WfSrWGxvkSXKdMFr/yUiiVXxnype0JKFk3ZqXoFIotLSGS0HSQf2vueolxio6KT gU2rhVeylKuGzXt4ld4MGL4BW9AGyJEGuf8mh7GT0Cp25tdT8D2B1BA/N2JPQkph 2rH5DQlAIGsKFLj+/VsUyXD3DJMcwcwqZNB6T/jUeadDnFqER51ZqIx5I4QQ2vUX Us5zquPn96AIcGLfodXBMDiXMUti0/RWo2Dq+O42UP90PTDoq848ZNk+vWwSWvSQ A9Hn0jzhbGBk+gE= -----END CERTIFICATE-----Generated at Thu Jul 3 13:34:21 2025 by rpki-client