$ rpki-client -vvf rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131352e302f32342d3234203d3e20323635303738.roa File: 3137302e3233332e3131352e302f32342d3234203d3e20323635303738.roa (raw, json) Hash identifier: RJSiz6X40u1exZ0lylVroJmRjsSn1sj876c4G/oZyzw= Subject key identifier: 5A:3D:E0:CD:DF:35:85:04:36:ED:13:C9:55:B2:8F:44:9E:77:75:16 Certificate issuer: /CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Certificate serial: 66764CC2B8282793C2C35B26F1BE605E3DB7356C Authority key identifier: CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject info access: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131352e302f32342d3234203d3e20323635303738.roa Signing time: Mon 21 Apr 2025 13:26:51 +0000 ROA not before: Mon 21 Apr 2025 13:21:51 +0000 ROA not after: Mon 20 Apr 2026 13:26:51 +0000 asID: 265078 IP address blocks: 170.233.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 10 May 2025 17:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:76:4c:c2:b8:28:27:93:c2:c3:5b:26:f1:be:60:5e:3d:b7:35:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2 Validity Not Before: Apr 21 13:21:51 2025 GMT Not After : Apr 20 13:26:51 2026 GMT Subject: CN=5A3DE0CDDF35850436ED13C955B28F449E777516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:88:b8:9c:45:68:3c:90:f3:90:4b:08:44: a5:48:30:d6:28:ce:8d:f3:70:ca:44:a3:eb:00:74: 99:92:94:a3:6c:3d:15:69:21:c2:a5:0a:4e:78:e5: 97:30:6c:dd:98:25:ba:92:6c:87:19:c6:2a:f7:97: 9f:3f:64:75:f5:c6:4a:77:8a:f3:2c:73:1a:a2:4d: 05:a4:eb:ac:f5:78:df:4d:bb:86:3f:9d:82:56:d3: 70:34:89:a5:81:05:d8:22:ee:e2:f3:35:40:e8:57: cb:16:38:bf:be:ed:8c:27:9f:3e:06:67:05:27:d5: 9a:66:e8:51:fa:59:fc:c0:58:df:9c:e2:ae:cd:67: 21:b4:88:fe:23:c6:ef:11:88:14:e9:bf:15:a3:7c: ab:05:27:92:bb:61:73:63:41:04:c7:87:55:b2:58: 61:bc:11:2d:d2:dc:e1:14:bc:d8:ef:f1:3b:12:90: 2f:0c:b1:92:2d:d6:45:eb:23:f4:8c:33:b5:0f:82: 0b:ca:5d:c2:4b:81:99:9e:c4:1c:62:3a:0c:fe:94: da:f0:cb:e8:b2:f4:0c:3c:bd:49:ba:2a:45:09:60: 59:2d:e5:f7:d8:99:0d:80:8f:70:3a:72:91:df:00: 06:6b:e7:7e:98:87:88:6c:1b:b0:b3:15:d4:f4:1f: 19:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3D:E0:CD:DF:35:85:04:36:ED:13:C9:55:B2:8F:44:9E:77:75:16 X509v3 Authority Key Identifier: keyid:CE:9E:7D:4F:B6:64:E3:CF:2F:C9:0E:96:04:FA:E1:98:A1:A3:02:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/CE9E7D4FB664E3CF2FC90E9604FAE198A1A302B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/D6b5tdFKyN45w3ipdkdRA7HWJyFu4FoEhcUnYRP5WsTv/1/3137302e3233332e3131352e302f32342d3234203d3e20323635303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.233.115.0/24 Signature Algorithm: sha256WithRSAEncryption b1:f4:f7:8c:57:a9:ab:15:df:fa:8a:51:f0:88:6a:d6:e3:5c: c9:c5:d8:3a:02:bb:30:12:96:e3:5b:fc:b0:c7:cc:ae:93:46: be:61:f0:ff:eb:ef:25:8e:e4:97:49:e5:d1:51:99:9a:83:b6: 0e:2e:3e:5f:85:7d:5a:71:e2:2b:f7:47:03:3d:7a:e1:4f:8f: 70:22:c0:28:cc:1b:e4:47:56:38:7d:8d:64:c2:29:fa:30:08: 3b:55:ff:8b:f2:5b:f0:1e:8e:81:cf:8b:79:d4:15:6a:32:bb: 06:ff:66:13:e1:37:b4:6c:c8:ad:08:19:a7:2a:ed:90:ce:f1: bb:82:e3:f3:af:c5:d6:7b:7d:8e:72:f9:aa:55:c9:d7:5e:d1: 74:47:58:30:5a:b7:0a:93:0d:da:52:3c:bc:a2:c3:a0:53:cc: 4d:12:b2:e4:59:79:d2:1c:7c:03:b6:6f:b0:14:40:10:58:1d: 4e:57:8c:a7:0b:f6:56:2e:06:e7:ee:43:59:d1:76:0b:a1:0a: 46:cf:58:fe:ba:21:a3:15:a5:1c:bb:20:e4:92:ce:bf:34:07: fd:05:68:41:eb:ba:f2:d7:33:84:e4:99:4f:eb:e9:bf:4e:95: 68:b3:1a:58:67:6e:a3:ba:e4:e9:53:66:2d:69:5a:80:e8:2a: 15:05:4f:1b -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUZnZMwrgoJ5PCw1sm8b5gXj23NWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U5RTdENEZCNjY0RTNDRjJGQzkwRTk2MDRGQUUxOThB MUEzMDJCMjAeFw0yNTA0MjExMzIxNTFaFw0yNjA0MjAxMzI2NTFaMDMxMTAvBgNV BAMTKDVBM0RFMENEREYzNTg1MDQzNkVEMTNDOTU1QjI4RjQ0OUU3Nzc1MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ioi4nEVoPJDzkEsIRKVIMNYo zo3zcMpEo+sAdJmSlKNsPRVpIcKlCk545ZcwbN2YJbqSbIcZxir3l58/ZHX1xkp3 ivMscxqiTQWk66z1eN9Nu4Y/nYJW03A0iaWBBdgi7uLzNUDoV8sWOL++7Ywnnz4G ZwUn1Zpm6FH6WfzAWN+c4q7NZyG0iP4jxu8RiBTpvxWjfKsFJ5K7YXNjQQTHh1Wy WGG8ES3S3OEUvNjv8TsSkC8MsZIt1kXrI/SMM7UPggvKXcJLgZmexBxiOgz+lNrw y+iy9Aw8vUm6KkUJYFkt5ffYmQ2Aj3A6cpHfAAZr536Yh4hsG7CzFdT0HxnBAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUWj3gzd81hQQ27RPJVbKPRJ53dRYwHwYDVR0j BBgwFoAUzp59T7Zk488vyQ6WBPrhmKGjArIwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vRDZiNXRkRkt5TjQ1dzNpcGRrZFJBN0hXSnlGdTRGb0VoY1VuWVJQNVdz VHYvMS9DRTlFN0Q0RkI2NjRFM0NGMkZDOTBFOTYwNEZBRTE5OEExQTMwMkIyLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0NFOUU3RDRGQjY2NEUzQ0Yy RkM5MEU5NjA0RkFFMTk4QTFBMzAyQjIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv L0Q2YjV0ZEZLeU40NXczaXBka2RSQTdIV0p5RnU0Rm9FaGNVbllSUDVXc1R2LzEv MzEzNzMwMmUzMjMzMzMyZTMxMzEzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMy MzYzNTMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAKrpczANBgkqhkiG9w0BAQsFAAOCAQEAsfT3 jFepqxXf+opR8Ihq1uNcycXYOgK7MBKW41v8sMfMrpNGvmHw/+vvJY7kl0nl0VGZ moO2Di4+X4V9WnHiK/dHAz164U+PcCLAKMwb5EdWOH2NZMIp+jAIO1X/i/Jb8B6O gc+LedQVajK7Bv9mE+E3tGzIrQgZpyrtkM7xu4Lj86/F1nt9jnL5qlXJ117RdEdY MFq3CpMN2lI8vKLDoFPMTRKy5Fl50hx8A7ZvsBRAEFgdTleMpwv2Vi4G5+5DWdF2 C6EKRs9Y/rohoxWlHLsg5JLOvzQH/QVoQeu68tczhOSZT+vpv06VaLMaWGduo7rk 6VNmLWlagOgqFQVPGw== -----END CERTIFICATE-----Generated at Sat May 10 03:49:54 2025 by rpki-client