$ rpki-client -vvf rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35382e302f32342d3234203d3e20323638313438.roa File: 34352e3137302e35382e302f32342d3234203d3e20323638313438.roa (raw, json) Hash identifier: SoekstKv8f+pkK/WwzhieixqQG0KM+o03cw/55GYLlg= Subject key identifier: 89:1E:75:17:62:60:88:29:A0:3A:93:45:83:90:D0:02:47:E3:1E:D4 Certificate issuer: /CN=21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372 Certificate serial: 70BB23FB877D2EB613C09361E3FF64D723B14237 Authority key identifier: 21:FD:5A:0A:6A:A8:4A:CE:DB:44:5F:1A:73:D0:7D:D3:C0:A4:A3:72 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer Subject info access: rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35382e302f32342d3234203d3e20323638313438.roa Signing time: Thu 01 May 2025 00:02:43 +0000 ROA not before: Wed 30 Apr 2025 23:57:43 +0000 ROA not after: Thu 30 Apr 2026 00:02:43 +0000 asID: 268148 IP address blocks: 45.170.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.crl rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 13 May 2025 20:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:bb:23:fb:87:7d:2e:b6:13:c0:93:61:e3:ff:64:d7:23:b1:42:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372 Validity Not Before: Apr 30 23:57:43 2025 GMT Not After : Apr 30 00:02:43 2026 GMT Subject: CN=891E751762608829A03A93458390D00247E31ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:74:d6:a7:a2:e1:19:9b:f4:94:d9:fc:38:54: 2d:bc:6a:c2:d5:79:c2:9b:23:0f:cf:7a:5d:88:d5: 0d:b8:28:97:98:a1:4f:ce:d8:87:f2:3c:50:b3:96: 89:66:f3:39:20:2f:af:c6:a4:c2:9f:da:db:7e:f8: 59:c5:36:03:1c:65:52:d9:f9:52:3c:4d:db:3b:7c: 51:da:98:1f:33:4b:18:3c:31:ff:d7:11:b5:ec:3e: ef:f2:8f:a8:6f:38:f9:93:8c:0f:95:1d:4d:78:fa: ca:03:32:d0:10:05:77:c0:61:b9:6b:50:df:61:f5: b1:dd:84:74:de:ac:e8:bc:4f:0e:9c:f2:ac:6f:fd: b3:8c:ae:3b:24:b9:57:2f:a3:88:42:3e:be:c7:29: 41:0e:a5:f0:19:43:43:96:0a:a2:41:a8:e2:72:b2: ba:86:75:0b:8d:d9:6a:62:ae:39:e3:74:fa:ef:93: 08:5b:5b:83:bb:a0:39:ab:15:1b:c8:2b:f5:50:16: cc:37:3e:93:5e:49:b6:f3:69:bd:29:88:c1:1f:a5: 86:52:b1:ed:64:dd:f6:79:34:5f:db:4e:50:af:59: 6a:fa:0b:b4:6a:51:51:69:37:88:f1:ef:8c:87:bd: 3e:b8:f8:4c:62:95:1e:85:5a:a9:36:35:f1:aa:0f: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:1E:75:17:62:60:88:29:A0:3A:93:45:83:90:D0:02:47:E3:1E:D4 X509v3 Authority Key Identifier: keyid:21:FD:5A:0A:6A:A8:4A:CE:DB:44:5F:1A:73:D0:7D:D3:C0:A4:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/21FD5A0A6AA84ACEDB445F1A73D07DD3C0A4A372.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/CYn3eRtthtDyifuZD5URvVkmuBbuuFF6mUjWAkbGXLzb/0/34352e3137302e35382e302f32342d3234203d3e20323638313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.170.58.0/24 Signature Algorithm: sha256WithRSAEncryption 35:3a:65:ee:36:e9:84:02:b6:8e:7c:aa:02:79:cc:e6:a0:36: 18:47:06:9e:95:6c:f4:cc:ed:8e:0d:24:75:af:32:3a:fa:ee: fe:9b:d2:b0:84:8a:8c:3c:69:54:2d:58:93:f1:15:68:cf:14: 8e:ac:db:a8:b1:52:d6:07:93:f2:1e:13:63:04:00:44:59:52: 0c:55:ac:c5:9f:28:bc:5f:51:1b:b7:c2:32:d1:5b:e8:28:d9: e7:f3:96:8e:7e:d6:05:dd:0b:72:2e:13:fe:d6:d8:7e:a4:ba: 6b:fd:a5:72:0c:bc:1c:96:fe:14:14:ec:0f:26:4e:dd:85:70: 31:9b:63:98:20:ff:40:53:5b:a5:8d:f8:d2:65:0d:33:a5:83: 23:fe:0f:d6:cd:ef:9b:23:3d:fb:af:92:59:af:b5:6f:2a:49: b0:bf:d2:a8:4c:05:ac:05:64:cc:4f:59:d0:38:64:f7:9a:02: b8:6d:37:57:ad:93:84:47:ba:8f:bf:03:13:94:39:07:00:bf: 39:5e:09:ed:95:bb:46:6d:8b:c3:83:f0:ba:e1:38:23:cb:0a: f5:b2:8c:96:c5:10:cb:a2:5b:2b:99:2c:fc:de:bf:78:aa:ca: ad:7b:06:a9:87:ba:b1:d0:e6:33:78:3c:bc:4b:44:37:d5:ae: 79:01:3d:af -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUcLsj+4d9LrYTwJNh4/9k1yOxQjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGRDVBMEE2QUE4NEFDRURCNDQ1RjFBNzNEMDdERDND MEE0QTM3MjAeFw0yNTA0MzAyMzU3NDNaFw0yNjA0MzAwMDAyNDNaMDMxMTAvBgNV BAMTKDg5MUU3NTE3NjI2MDg4MjlBMDNBOTM0NTgzOTBEMDAyNDdFMzFFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCodNanouEZm/SU2fw4VC28asLV ecKbIw/Pel2I1Q24KJeYoU/O2IfyPFCzlolm8zkgL6/GpMKf2tt++FnFNgMcZVLZ +VI8Tds7fFHamB8zSxg8Mf/XEbXsPu/yj6hvOPmTjA+VHU14+soDMtAQBXfAYblr UN9h9bHdhHTerOi8Tw6c8qxv/bOMrjskuVcvo4hCPr7HKUEOpfAZQ0OWCqJBqOJy srqGdQuN2WpirjnjdPrvkwhbW4O7oDmrFRvIK/VQFsw3PpNeSbbzab0piMEfpYZS se1k3fZ5NF/bTlCvWWr6C7RqUVFpN4jx74yHvT64+ExilR6FWqk2NfGqD6R3AgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUiR51F2JgiCmgOpNFg5DQAkfjHtQwHwYDVR0j BBgwFoAUIf1aCmqoSs7bRF8ac9B908Cko3IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vQ1luM2VSdHRodER5aWZ1WkQ1VVJ2VmttdUJidXVGRjZtVWpXQWtiR1hM emIvMC8yMUZENUEwQTZBQTg0QUNFREI0NDVGMUE3M0QwN0REM0MwQTRBMzcyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzIxRkQ1QTBBNkFBODRBQ0VE QjQ0NUYxQTczRDA3REQzQzBBNEEzNzIuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0NZbjNlUnR0aHREeWlmdVpENVVSdlZrbXVCYnV1RkY2bVVqV0FrYkdYTHpiLzAv MzQzNTJlMzEzNzMwMmUzNTM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM4 MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQALao6MA0GCSqGSIb3DQEBCwUAA4IBAQA1OmXuNumE AraOfKoCeczmoDYYRwaelWz0zO2ODSR1rzI6+u7+m9KwhIqMPGlULViT8RVozxSO rNuosVLWB5PyHhNjBABEWVIMVazFnyi8X1Ebt8Iy0VvoKNnn85aOftYF3QtyLhP+ 1th+pLpr/aVyDLwclv4UFOwPJk7dhXAxm2OYIP9AU1uljfjSZQ0zpYMj/g/Wze+b Iz37r5JZr7VvKkmwv9KoTAWsBWTMT1nQOGT3mgK4bTdXrZOER7qPvwMTlDkHAL85 XgntlbtGbYvDg/C64Tgjywr1soyWxRDLolsrmSz83r94qsqtewaph7qx0OYzeDy8 S0Q31a55AT2v -----END CERTIFICATE-----Generated at Tue May 13 05:09:35 2025 by rpki-client