$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa File: 3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa (raw, json) Hash identifier: C8nl6i1YJBXuY7KqnNcHZ82XxRjwU4qb4KZwT3Ruswc= Subject key identifier: 7B:70:F1:40:99:D0:AB:59:AA:2B:7A:D9:DB:5A:7E:8F:BC:2E:1A:68 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 5BB9634EFCBB2D51E5A13931C80251CCE978353E Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa Signing time: Mon 21 Apr 2025 13:26:38 +0000 ROA not before: Mon 21 Apr 2025 13:21:38 +0000 ROA not after: Mon 20 Apr 2026 13:26:38 +0000 asID: 265078 IP address blocks: 170.233.112.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 10 May 2025 17:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b9:63:4e:fc:bb:2d:51:e5:a1:39:31:c8:02:51:cc:e9:78:35:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Apr 21 13:21:38 2025 GMT Not After : Apr 20 13:26:38 2026 GMT Subject: CN=7B70F14099D0AB59AA2B7AD9DB5A7E8FBC2E1A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:76:fd:55:a1:4b:a4:bf:9a:5b:fd:ac:5c:d6: eb:f2:49:4d:67:66:8b:27:01:8b:70:77:95:ef:93: 4d:78:ae:29:63:2b:a7:b6:96:e0:89:7b:c2:23:a3: 43:dc:38:0c:1f:72:93:cc:17:85:96:5b:00:a9:10: ef:2a:7c:3d:d8:7f:22:ae:f1:42:ef:b3:29:e3:56: a7:7a:6e:45:5d:f9:c8:d2:ff:86:7b:92:4b:58:ab: c0:f5:9c:47:25:20:a3:94:ff:8f:09:8d:eb:3d:d3: 17:0d:6b:cc:b2:5e:0b:63:0d:fe:d2:bf:4f:28:de: 12:22:5a:0f:f3:2f:2c:f9:0d:2c:3f:0a:a4:bc:03: 15:6d:6f:d8:e1:a1:84:20:23:77:d7:2c:77:74:0f: 3b:7e:ab:7d:af:c5:fb:d1:03:20:fa:6c:56:9d:3a: ab:1d:53:c0:af:dd:31:48:c5:3a:3c:a2:d0:a1:f4: 7d:2a:b3:b7:ce:4f:ef:89:a3:19:5e:22:ba:44:4f: ca:ee:86:86:dd:63:dc:2e:6c:e0:bb:d5:b3:92:62: a2:a3:14:1a:fc:03:a7:87:56:2a:76:fa:74:55:95: fb:49:95:8d:f6:3b:3d:5f:ce:59:7b:23:07:41:c8: 59:c3:74:bf:13:50:74:62:a5:27:21:95:95:55:89: 37:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:70:F1:40:99:D0:AB:59:AA:2B:7A:D9:DB:5A:7E:8F:BC:2E:1A:68 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131322e302f32322d3233203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.112.0/22 Signature Algorithm: sha256WithRSAEncryption cb:50:f7:d6:5b:ab:13:1d:a9:79:60:51:25:9e:c2:f0:b0:13: 3b:66:b0:89:9e:7f:25:87:3f:e4:8d:0e:a6:3e:c4:01:2d:4d: e7:16:20:29:7f:ba:f8:ce:89:29:96:5b:ce:8d:20:e4:3c:90: cf:3f:29:de:02:78:04:77:a7:37:c1:a4:4f:51:b5:b2:a3:49: 40:87:30:2d:f6:60:0c:cd:a9:69:da:c1:67:31:e8:a7:d2:1e: 47:72:e5:2f:3e:dc:57:44:57:87:ef:88:3c:f2:92:16:1c:c1: d2:c2:ba:91:d2:39:c8:78:da:4a:2a:2b:7e:38:0e:2c:d7:26: 2b:6d:a1:00:cb:73:ac:b4:66:eb:68:5e:9a:87:7b:22:3c:a3: 6b:c7:df:56:5c:03:f2:ea:fa:34:e8:ec:60:0a:c2:a1:c5:d5: 46:9b:38:60:62:5f:68:64:b9:32:e1:60:b2:d2:bb:6b:57:96: 89:09:50:ae:13:20:06:63:58:09:d8:fc:fb:1f:d0:62:cd:0e: 63:bb:4f:e7:18:01:c4:d3:42:d7:bb:8d:e4:e7:63:9f:08:02: 68:a8:48:e1:3d:e1:84:1e:bd:4f:92:6c:e9:52:71:11:2f:ea: df:0e:3d:8a:45:0b:05:37:b8:03:11:e2:70:df:53:11:7f:ae: ba:3c:d4:c7 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUW7ljTvy7LVHloTkxyAJRzOl4NT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNTA0MjExMzIxMzhaFw0yNjA0MjAxMzI2MzhaMDMxMTAvBgNV BAMTKDdCNzBGMTQwOTlEMEFCNTlBQTJCN0FEOURCNUE3RThGQkMyRTFBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSdv1VoUukv5pb/axc1uvySU1n ZosnAYtwd5Xvk014riljK6e2luCJe8Ijo0PcOAwfcpPMF4WWWwCpEO8qfD3YfyKu 8ULvsynjVqd6bkVd+cjS/4Z7kktYq8D1nEclIKOU/48Jjes90xcNa8yyXgtjDf7S v08o3hIiWg/zLyz5DSw/CqS8AxVtb9jhoYQgI3fXLHd0Dzt+q32vxfvRAyD6bFad OqsdU8Cv3TFIxTo8otCh9H0qs7fOT++JoxleIrpET8ruhobdY9wubOC71bOSYqKj FBr8A6eHVip2+nRVlftJlY32Oz1fzll7IwdByFnDdL8TUHRipSchlZVViTdRAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUe3DxQJnQq1mqK3rZ21p+j7wuGmgwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzMyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqrpcDANBgkqhkiG9w0BAQsFAAOCAQEAy1D3 1lurEx2peWBRJZ7C8LATO2awiZ5/JYc/5I0Opj7EAS1N5xYgKX+6+M6JKZZbzo0g 5DyQzz8p3gJ4BHenN8GkT1G1sqNJQIcwLfZgDM2padrBZzHop9IeR3LlLz7cV0RX h++IPPKSFhzB0sK6kdI5yHjaSiorfjgOLNcmK22hAMtzrLRm62hemod7Ijyja8ff VlwD8ur6NOjsYArCocXVRps4YGJfaGS5MuFgstK7a1eWiQlQrhMgBmNYCdj8+x/Q Ys0OY7tP5xgBxNNC17uN5OdjnwgCaKhI4T3hhB69T5Js6VJxES/q3w49ikULBTe4 AxHicN9TEX+uujzUxw== -----END CERTIFICATE-----Generated at Fri May 9 19:16:18 2025 by rpki-client