$ rpki-client -vvf rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/3137372e3132352e37322e302f32332d3233203d3e203532373636.roa File: 3137372e3132352e37322e302f32332d3233203d3e203532373636.roa (raw, json) Hash identifier: RUgWQbSbfKqm4Hfu18+LGJPAqutuS6ikmtMKvWzJroY= Subject key identifier: B8:59:E0:43:60:14:1B:88:32:F7:73:D0:A9:9B:A3:2F:7C:B0:D3:F3 Certificate issuer: /CN=DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE Certificate serial: 29F18A1E0D091C5AB44B1A510208987E9B283C50 Authority key identifier: DB:A9:BB:6F:D5:67:A5:08:3B:7B:A0:BB:07:CD:31:21:0F:3C:8B:EE Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.cer Subject info access: rsync://rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/3137372e3132352e37322e302f32332d3233203d3e203532373636.roa Signing time: Fri 11 Apr 2025 14:03:10 +0000 ROA not before: Fri 11 Apr 2025 13:58:10 +0000 ROA not after: Fri 10 Apr 2026 14:03:10 +0000 asID: 52766 IP address blocks: 177.125.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.crl rsync://rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Mon 28 Apr 2025 22:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f1:8a:1e:0d:09:1c:5a:b4:4b:1a:51:02:08:98:7e:9b:28:3c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE Validity Not Before: Apr 11 13:58:10 2025 GMT Not After : Apr 10 14:03:10 2026 GMT Subject: CN=B859E04360141B8832F773D0A99BA32F7CB0D3F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dd:95:03:e1:3c:92:fe:48:0a:dd:c3:31:5c: c8:2d:07:03:37:ce:4f:de:da:84:11:f3:34:6f:e5: 4c:5a:e9:c7:76:3c:66:35:0b:c5:7d:90:63:65:e3: 77:f5:f5:c2:d8:a0:88:51:8d:d7:7c:40:2c:3c:f6: d1:ec:6a:4b:95:e5:db:bf:36:7c:fa:d2:96:c1:f1: 30:6e:db:9f:4b:7e:fc:74:2e:fd:56:4a:81:89:91: 16:e7:55:57:97:02:80:48:70:d4:75:03:24:e4:4f: 74:0f:91:6c:22:c0:61:c3:d7:e1:68:04:c4:50:69: 1c:46:83:49:70:43:06:eb:43:4d:ba:38:5b:e8:4a: 9b:71:5d:e5:17:d2:25:77:56:9c:6c:f6:e6:f5:6f: f1:d2:d1:bf:ea:51:56:a9:59:b3:b1:8d:52:21:9c: 53:a3:9c:74:73:e9:3d:e0:6f:56:ea:69:85:78:e3: b7:7e:b0:df:e4:15:38:87:8d:2c:99:9c:41:bf:52: 0e:11:fe:3d:ee:ab:6b:99:6b:7c:34:8e:b0:7e:26: 0c:0f:d9:f0:52:d8:75:c6:ff:3b:c2:54:9d:53:ed: c6:0d:7c:cd:29:69:91:34:d6:3c:f1:26:d1:56:6f: 31:ca:24:ed:c1:cc:ec:78:8f:5a:3f:10:59:38:e0: db:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:59:E0:43:60:14:1B:88:32:F7:73:D0:A9:9B:A3:2F:7C:B0:D3:F3 X509v3 Authority Key Identifier: keyid:DB:A9:BB:6F:D5:67:A5:08:3B:7B:A0:BB:07:CD:31:21:0F:3C:8B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/DBA9BB6FD567A5083B7BA0BB07CD31210F3C8BEE.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/3CPPZuPjiuQBYkv3BaKVNqqK5t27ziqp9fhBWSSeEofV/0/3137372e3132352e37322e302f32332d3233203d3e203532373636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.125.72.0/23 Signature Algorithm: sha256WithRSAEncryption 56:31:23:70:fe:a0:95:c2:f7:4a:3c:f2:d3:54:3e:e5:1c:57: 85:fa:02:6a:12:ab:c0:23:56:cb:a7:bc:a6:27:ed:44:e8:5a: d6:8d:63:14:0e:7a:ce:d0:11:6a:68:28:12:64:e6:2c:75:06: a6:c4:77:7e:a2:75:b7:bf:24:54:5d:7e:ec:b0:b1:c9:9d:0a: 32:88:29:a6:8f:f1:ee:8f:d5:94:a7:fd:24:59:c3:d6:c9:2e: 5d:7f:59:af:62:72:e5:a3:b1:b4:8b:75:39:81:1c:3d:59:2d: 9a:b9:0e:b0:dd:bd:06:c4:bc:aa:5c:aa:f6:2c:aa:64:ca:d7: 7d:33:74:10:73:94:7b:43:05:f0:1b:61:54:4b:aa:f4:4d:30: fa:a5:c3:0d:12:81:d5:90:74:01:17:76:df:71:f6:ae:26:49: f4:9b:9e:e5:4f:4f:d4:aa:fa:2e:09:fd:f5:44:a6:5f:70:58: 43:96:ff:02:9b:9b:a0:74:97:8f:6c:af:0e:47:48:c9:8f:57: 83:b5:65:d5:84:6e:5d:d9:07:77:6e:5d:37:a8:4b:d8:e8:62: 1b:1f:7d:4f:9c:d6:ae:75:5c:14:f9:c4:43:a0:7f:db:68:d1: 61:a8:3d:0e:11:f7:88:d0:2f:b6:a0:25:c6:df:48:72:db:ce: c0:e6:ec:d7 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgIUKfGKHg0JHFq0SxpRAgiYfpsoPFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJBOUJCNkZENTY3QTUwODNCN0JBMEJCMDdDRDMxMjEw RjNDOEJFRTAeFw0yNTA0MTExMzU4MTBaFw0yNjA0MTAxNDAzMTBaMDMxMTAvBgNV BAMTKEI4NTlFMDQzNjAxNDFCODgzMkY3NzNEMEE5OUJBMzJGN0NCMEQzRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG3ZUD4TyS/kgK3cMxXMgtBwM3 zk/e2oQR8zRv5Uxa6cd2PGY1C8V9kGNl43f19cLYoIhRjdd8QCw89tHsakuV5du/ Nnz60pbB8TBu259Lfvx0Lv1WSoGJkRbnVVeXAoBIcNR1AyTkT3QPkWwiwGHD1+Fo BMRQaRxGg0lwQwbrQ026OFvoSptxXeUX0iV3Vpxs9ub1b/HS0b/qUVapWbOxjVIh nFOjnHRz6T3gb1bqaYV447d+sN/kFTiHjSyZnEG/Ug4R/j3uq2uZa3w0jrB+JgwP 2fBS2HXG/zvCVJ1T7cYNfM0paZE01jzxJtFWbzHKJO3BzOx4j1o/EFk44NvDAgMB AAGjggJPMIICSzAdBgNVHQ4EFgQUuFngQ2AUG4gy93PQqZujL3yw0/MwHwYDVR0j BBgwFoAU26m7b9VnpQg7e6C7B80xIQ88i+4wDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vM0NQUFp1UGppdVFCWWt2M0JhS1ZOcXFLNXQyN3ppcXA5ZmhCV1NTZUVv ZlYvMC9EQkE5QkI2RkQ1NjdBNTA4M0I3QkEwQkIwN0NEMzEyMTBGM0M4QkVFLmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xL0RCQTlCQjZGRDU2N0E1MDgz QjdCQTBCQjA3Q0QzMTIxMEYzQzhCRUUuY2VyMIGsBggrBgEFBQcBCwSBnzCBnDCB mQYIKwYBBQUHMAuGgYxyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzNDUFBadVBqaXVRQllrdjNCYUtWTnFxSzV0Mjd6aXFwOWZoQldTU2VFb2ZWLzAv MzEzNzM3MmUzMTMyMzUyZTM3MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNTMy MzczNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEH AQH/BBAwDjAMBAIAATAGAwQBsX1IMA0GCSqGSIb3DQEBCwUAA4IBAQBWMSNw/qCV wvdKPPLTVD7lHFeF+gJqEqvAI1bLp7ymJ+1E6FrWjWMUDnrO0BFqaCgSZOYsdQam xHd+onW3vyRUXX7ssLHJnQoyiCmmj/Huj9WUp/0kWcPWyS5df1mvYnLlo7G0i3U5 gRw9WS2auQ6w3b0GxLyqXKr2LKpkytd9M3QQc5R7QwXwG2FUS6r0TTD6pcMNEoHV kHQBF3bfcfauJkn0m57lT0/UqvouCf31RKZfcFhDlv8Cm5ugdJePbK8OR0jJj1eD tWXVhG5d2Qd3bl03qEvY6GIbH31PnNaudVwU+cRDoH/baNFhqD0OEfeI0C+2oCXG 30hy287A5uzX -----END CERTIFICATE-----Generated at Mon Apr 28 08:41:25 2025 by rpki-client