$ rpki-client -vvf rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35362e302f32342d3234203d3e20323638313438.roa File: 34352e3137302e35362e302f32342d3234203d3e20323638313438.roa (raw, json) Hash identifier: J300dFXZr5KKTkTQzQCo+VuABspi5UhFx/KywDZmrV4= Subject key identifier: AD:D4:5D:88:ED:AD:C4:5D:4A:7C:35:8C:91:0E:76:55:3C:A2:FF:EF Certificate issuer: /CN=21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372 Certificate serial: 46395B289E3EA7F5EDF072FE1131CD8A46655050 Authority key identifier: 21:FD:5A:0A:6A:A8:4A:CE:DB:44:5F:1A:73:D0:7D:D3:C0:A4:A3:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer Subject info access: rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35362e302f32342d3234203d3e20323638313438.roa Signing time: Thu 01 May 2025 00:02:42 +0000 ROA not before: Wed 30 Apr 2025 23:57:42 +0000 ROA not after: Thu 30 Apr 2026 00:02:42 +0000 asID: 268148 IP address blocks: 45.170.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.crl rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 13 May 2025 20:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:39:5b:28:9e:3e:a7:f5:ed:f0:72:fe:11:31:cd:8a:46:65:50:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372 Validity Not Before: Apr 30 23:57:42 2025 GMT Not After : Apr 30 00:02:42 2026 GMT Subject: CN=ADD45D88EDADC45D4A7C358C910E76553CA2FFEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f2:65:a7:0d:b3:01:4e:ed:0b:9c:b1:da:d4: 8f:c3:82:3c:cf:c7:cc:f8:3a:ec:ce:88:0f:ab:98: 93:ba:a0:9a:cc:22:d7:92:d8:f0:9c:57:6c:6e:1f: fe:38:b5:e1:4f:54:94:03:a5:ab:1e:d6:d2:72:58: ab:cf:a8:d4:4d:6f:13:02:88:d3:8e:00:95:9a:df: 6c:18:05:6d:1f:6c:27:7a:b6:d5:6d:73:0e:ae:5a: 24:8c:13:69:21:69:99:cf:20:2b:a1:00:a6:fc:83: 39:21:57:b1:e2:22:44:f3:f3:1f:a8:6d:12:4e:e0: ef:bd:c3:9e:af:c1:69:33:9a:c2:68:4a:b0:b5:d0: 82:67:ab:75:82:54:f3:7a:bb:7c:aa:84:04:c6:df: 49:28:48:c9:39:c5:a6:aa:ab:84:5b:29:90:e0:69: 9a:6b:57:c3:a1:17:4d:eb:ab:56:49:66:5c:2b:c4: dc:e0:ac:71:4d:4f:c6:ef:92:91:5d:de:a4:a9:34: 91:85:58:74:63:c7:87:c9:15:51:b7:1e:e8:98:60: 0a:61:83:00:1c:85:6f:1e:71:9b:e8:d5:1c:8c:1e: af:a5:07:ca:12:1a:e2:03:a4:6d:f2:52:7e:40:5b: a6:3f:eb:6c:8a:89:d8:30:c4:5f:ca:af:2b:ae:e6: e0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:5D:88:ED:AD:C4:5D:4A:7C:35:8C:91:0E:76:55:3C:A2:FF:EF X509v3 Authority Key Identifier: keyid:21:FD:5A:0A:6A:A8:4A:CE:DB:44:5F:1A:73:D0:7D:D3:C0:A4:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35362e302f32342d3234203d3e20323638313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.170.56.0/24 Signature Algorithm: sha256WithRSAEncryption 30:b9:7b:b6:0c:4b:6e:d0:71:4c:f9:8c:6f:01:a6:64:d4:03: e5:89:2f:c4:e5:61:8e:34:89:46:a4:d3:9d:1f:9f:81:a1:97: da:31:ea:3f:74:bd:3d:87:33:23:2b:1d:39:94:2e:11:fb:d4: f6:fa:e5:80:e3:8e:8b:54:15:1e:81:40:af:2a:6a:f6:9b:55: 2e:99:0d:5f:db:19:af:76:a3:da:27:26:64:17:c2:41:01:0d: a4:6b:88:8a:da:e6:c1:2e:3a:ad:c0:b2:f9:1f:ad:45:4c:65: 5c:e4:c6:b5:b2:fc:51:e2:bc:7b:3f:5c:cb:a7:da:ae:e1:31: 0a:c4:2f:aa:7a:d1:28:1d:96:cb:b6:3b:05:6e:55:7c:a6:94: f3:6f:59:be:12:48:e4:a6:46:de:5b:f3:a7:0e:3a:b0:b0:90: 3a:80:1f:27:d3:a9:1e:a3:17:29:32:d3:77:44:ab:f1:ff:36: d7:7a:f0:1b:c9:08:fe:5a:6e:df:92:17:19:2a:27:9f:3f:1b: 3a:6e:08:92:cd:a6:9e:37:b2:e6:65:ad:c3:ba:12:fb:d4:60: 2c:65:de:7f:8e:1a:ba:23:50:d1:8d:9b:4d:a5:5e:19:24:77: 22:31:e6:73:01:c0:10:3a:c2:f0:6a:04:d3:f2:4f:15:21:86: 57:74:2f:9c -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIURjlbKJ4+p/Xt8HL+ETHNikZlUFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGRDVBMEE2QUE4NEFDRURCNDQ1RjFBNzNEMDdERDND MEE0QTM3MjAeFw0yNTA0MzAyMzU3NDJaFw0yNjA0MzAwMDAyNDJaMDMxMTAvBgNV BAMTKEFERDQ1RDg4RURBREM0NUQ0QTdDMzU4QzkxMEU3NjU1M0NBMkZGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt8mWnDbMBTu0LnLHa1I/DgjzP x8z4OuzOiA+rmJO6oJrMIteS2PCcV2xuH/44teFPVJQDpase1tJyWKvPqNRNbxMC iNOOAJWa32wYBW0fbCd6ttVtcw6uWiSME2khaZnPICuhAKb8gzkhV7HiIkTz8x+o bRJO4O+9w56vwWkzmsJoSrC10IJnq3WCVPN6u3yqhATG30koSMk5xaaqq4RbKZDg aZprV8OhF03rq1ZJZlwrxNzgrHFNT8bvkpFd3qSpNJGFWHRjx4fJFVG3HuiYYAph gwAchW8ecZvo1RyMHq+lB8oSGuIDpG3yUn5AW6Y/62yKidgwxF/Kryuu5uB/AgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUrdRdiO2txF1KfDWMkQ52VTyi/+8wHwYDVR0j BBgwFoAUIf1aCmqoSs7bRF8ac9B908Cko3IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ1luM2VSdHRodER5aWZ1WkQ1VVJ2VmttdUJidXVGRjZtVWpXQWtiR1hM emIvMC8yMUZENUEwQTZBQTg0QUNFREI0NDVGMUE3M0QwN0REM0MwQTRBMzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIxRkQ1QTBBNkFBODRBQ0VE QjQ0NUYxQTczRDA3REQzQzBBNEEzNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NZbjNlUnR0aHREeWlmdVpENVVSdlZrbXVCYnV1RkY2bVVqV0FrYkdYTHpiLzAv MzQzNTJlMzEzNzMwMmUzNTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM4 MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQALao4MA0GCSqGSIb3DQEBCwUAA4IBAQAwuXu2DEtu 0HFM+YxvAaZk1APliS/E5WGONIlGpNOdH5+BoZfaMeo/dL09hzMjKx05lC4R+9T2 +uWA446LVBUegUCvKmr2m1UumQ1f2xmvdqPaJyZkF8JBAQ2ka4iK2ubBLjqtwLL5 H61FTGVc5Ma1svxR4rx7P1zLp9qu4TEKxC+qetEoHZbLtjsFblV8ppTzb1m+Ekjk pkbeW/OnDjqwsJA6gB8n06keoxcpMtN3RKvx/zbXevAbyQj+Wm7fkhcZKiefPxs6 bgiSzaaeN7LmZa3DuhL71GAsZd5/jhq6I1DRjZtNpV4ZJHciMeZzAcAQOsLwagTT 8k8VIYZXdC+c -----END CERTIFICATE-----Generated at Mon May 12 23:15:24 2025 by rpki-client