$ rpki-client -vvf rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/34352e3232362e3134302e302f32322d3232203d3e20323636393833.roa File: 34352e3232362e3134302e302f32322d3232203d3e20323636393833.roa (raw, json) Hash identifier: MnKDZ8or8B7zZQws3QbYkiQOzFmscYtSyQwLfLMDTgc= Subject key identifier: 99:99:7B:F3:55:ED:66:DE:67:5E:74:6D:A5:94:60:F5:E3:7C:63:1E Certificate issuer: /CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Certificate serial: 1AA5065B2D5EA52110EA88BDF1E40168C3D176C9 Authority key identifier: 3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject info access: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/34352e3232362e3134302e302f32322d3232203d3e20323636393833.roa Signing time: Tue 06 May 2025 12:25:37 +0000 ROA not before: Tue 06 May 2025 12:20:37 +0000 ROA not after: Tue 05 May 2026 12:25:37 +0000 asID: 266983 IP address blocks: 45.226.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 13 May 2025 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a5:06:5b:2d:5e:a5:21:10:ea:88:bd:f1:e4:01:68:c3:d1:76:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F Validity Not Before: May 6 12:20:37 2025 GMT Not After : May 5 12:25:37 2026 GMT Subject: CN=99997BF355ED66DE675E746DA59460F5E37C631E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b4:ac:5a:4f:f8:96:84:0b:cf:91:f7:a9:de: d7:25:38:7f:7c:26:63:67:7c:2d:0d:f9:2b:2e:22: 6c:4f:bc:b8:44:62:3d:f1:90:11:ec:3d:af:e0:4d: 01:e9:c6:d8:b6:98:cd:e1:8c:b4:ce:4b:0d:0b:9c: 66:5c:e2:74:a6:d5:35:20:3f:22:b5:1b:34:81:b5: a9:72:55:6e:aa:10:fe:9f:88:c4:61:f5:b8:0b:bc: 14:e5:ae:aa:4d:82:20:20:41:44:8c:2a:a1:d0:ec: c1:f7:af:9d:50:9d:2a:31:e4:26:ba:58:cf:60:85: b0:19:af:5c:76:34:a0:65:c8:7a:b9:89:4b:0e:4e: 36:10:b2:b8:53:6d:f1:f2:02:0c:44:e7:61:5a:44: 09:1d:4a:f6:b2:2f:1e:d7:20:05:f7:2e:fa:f3:a8: 8c:1f:6c:f7:6b:5f:43:3e:1a:ca:de:11:83:e5:6d: e4:88:70:c2:84:9e:a9:3a:c2:70:ef:f8:b0:15:6a: 3e:c8:74:2c:70:5c:48:e6:0c:a8:8e:33:43:e5:b3: 4e:6b:bc:70:37:a9:7c:3e:f1:c8:27:1c:97:27:2e: 2b:0b:2e:7a:0a:c6:2e:ba:34:de:d3:fc:ef:f2:84: b9:dd:c7:a5:e6:66:6a:43:6a:f7:60:52:7e:65:84: d5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:99:7B:F3:55:ED:66:DE:67:5E:74:6D:A5:94:60:F5:E3:7C:63:1E X509v3 Authority Key Identifier: keyid:3D:C3:91:5B:16:1F:2F:1D:4A:EF:DF:6B:F5:81:EE:C0:95:B3:D6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3DC3915B161F2F1D4AEFDF6BF581EEC095B3D60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CMJhtV8NdmGXqtXZyZLuhAwQZkXNMoBPPi2C7cxHYVYh/0/34352e3232362e3134302e302f32322d3232203d3e20323636393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.226.140.0/22 Signature Algorithm: sha256WithRSAEncryption c7:0a:ec:0d:b3:69:bf:9e:ac:04:42:1a:b4:13:f4:ea:71:b5: 87:d5:6a:46:10:78:b5:29:0c:36:af:69:5b:a4:64:b7:38:21: 8e:65:86:a4:68:7d:39:2b:8b:5e:8b:52:7f:62:39:95:22:c0: 96:08:61:09:ba:d3:a6:b8:4b:6f:ee:da:ef:e5:07:d8:ce:8a: bb:ea:0b:2e:7c:62:59:36:5a:a3:7e:39:2e:a4:8e:67:28:1d: 99:45:40:d1:4e:62:96:55:bf:cf:77:81:e4:c8:c9:4e:e9:ae: fa:af:a3:72:e1:67:05:e5:17:de:f9:8d:1c:3f:ac:1b:82:a7: 03:3c:2a:30:50:97:e1:dd:11:d6:24:c9:51:da:af:b5:78:c9: 3e:bd:b3:47:fc:92:2c:04:0f:24:22:00:ef:48:60:89:74:8e: 39:e5:12:1a:4b:d3:9a:4c:ae:0e:4f:4c:ce:53:7c:86:b4:38: 31:e5:5f:e8:dd:98:b5:ca:12:40:ca:90:86:de:58:ad:fb:81: 84:27:fe:a2:5f:c8:8a:3c:75:00:42:de:34:ce:e6:c2:5d:4a: 4f:22:19:e1:73:64:3a:99:de:f9:7e:4b:6b:bd:86:5f:97:ff: 7a:dc:ce:cb:35:03:c4:69:6f:14:7f:d6:59:b6:8d:99:45:8c: 26:5f:a9:dd -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUGqUGWy1epSEQ6oi98eQBaMPRdskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RDMzkxNUIxNjFGMkYxRDRBRUZERjZCRjU4MUVFQzA5 NUIzRDYwRjAeFw0yNTA1MDYxMjIwMzdaFw0yNjA1MDUxMjI1MzdaMDMxMTAvBgNV BAMTKDk5OTk3QkYzNTVFRDY2REU2NzVFNzQ2REE1OTQ2MEY1RTM3QzYzMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDotKxaT/iWhAvPkfep3tclOH98 JmNnfC0N+SsuImxPvLhEYj3xkBHsPa/gTQHpxti2mM3hjLTOSw0LnGZc4nSm1TUg PyK1GzSBtalyVW6qEP6fiMRh9bgLvBTlrqpNgiAgQUSMKqHQ7MH3r51QnSox5Ca6 WM9ghbAZr1x2NKBlyHq5iUsOTjYQsrhTbfHyAgxE52FaRAkdSvayLx7XIAX3Lvrz qIwfbPdrX0M+GsreEYPlbeSIcMKEnqk6wnDv+LAVaj7IdCxwXEjmDKiOM0Pls05r vHA3qXw+8cgnHJcnLisLLnoKxi66NN7T/O/yhLndx6XmZmpDavdgUn5lhNX7AgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUmZl781XtZt5nXnRtpZRg9eN8Yx4wHwYDVR0j BBgwFoAUPcORWxYfLx1K799r9YHuwJWz1g8wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ01KaHRWOE5kbUdYcXRYWnlaTHVoQXdRWmtYTk1vQlBQaTJDN2N4SFlW WWgvMC8zREMzOTE1QjE2MUYyRjFENEFFRkRGNkJGNTgxRUVDMDk1QjNENjBGLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzNEQzM5MTVCMTYxRjJGMUQ0 QUVGREY2QkY1ODFFRUMwOTVCM0Q2MEYuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NNSmh0VjhOZG1HWHF0WFp5Wkx1aEF3UVprWE5Nb0JQUGkyQzdjeEhZVlloLzAv MzQzNTJlMzIzMjM2MmUzMTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM2 MzYzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAIt4owwDQYJKoZIhvcNAQELBQADggEBAMcK7A2z ab+erARCGrQT9OpxtYfVakYQeLUpDDavaVukZLc4IY5lhqRofTkri16LUn9iOZUi wJYIYQm606a4S2/u2u/lB9jOirvqCy58Ylk2WqN+OS6kjmcoHZlFQNFOYpZVv893 geTIyU7prvqvo3LhZwXlF975jRw/rBuCpwM8KjBQl+HdEdYkyVHar7V4yT69s0f8 kiwEDyQiAO9IYIl0jjnlEhpL05pMrg5PTM5TfIa0ODHlX+jdmLXKEkDKkIbeWK37 gYQn/qJfyIo8dQBC3jTO5sJdSk8iGeFzZDqZ3vl+S2u9hl+X/3rczss1A8RpbxR/ 1lm2jZlFjCZfqd0= -----END CERTIFICATE-----Generated at Tue May 13 05:43:37 2025 by rpki-client