$ rpki-client -vvf rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3137372e3133302e3132382e302f31392d3235203d3e203238323032.roa File: 3137372e3133302e3132382e302f31392d3235203d3e203238323032.roa (raw, json) Hash identifier: Z6pIhsjnVhIGFKWYZKvCVj5vy8bkp1QZ7wOc64Sp6nY= Subject key identifier: 88:EB:65:F8:8A:A0:EB:B7:75:AF:7A:F5:85:A6:AB:17:31:72:77:E1 Certificate issuer: /CN=3438EF474B88120C954212EE504ACF2C02AF3889 Certificate serial: 662CD5A1CE6E602F13F6C2C72A243DC8213B7259 Authority key identifier: 34:38:EF:47:4B:88:12:0C:95:42:12:EE:50:4A:CF:2C:02:AF:38:89 Authority info access: rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3438EF474B88120C954212EE504ACF2C02AF3889.cer Subject info access: rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3137372e3133302e3132382e302f31392d3235203d3e203238323032.roa Signing time: Tue 22 Apr 2025 11:57:23 +0000 ROA not before: Tue 22 Apr 2025 11:52:23 +0000 ROA not after: Tue 21 Apr 2026 11:57:23 +0000 asID: 28202 IP address blocks: 177.130.128.0/19 maxlen: 25 Validation: OK Signature path: rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3438EF474B88120C954212EE504ACF2C02AF3889.crl rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3438EF474B88120C954212EE504ACF2C02AF3889.mft rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3438EF474B88120C954212EE504ACF2C02AF3889.cer rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.crl rsync://rpki-repo.registro.br/repo/nicbr_repo/1/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.mft rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/605432E9E1B05A7E6C208B2946FDC9C967CA8A4B.cer rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.crl rsync://repository.lacnic.net/rpki/lacnic/A1531B24BF50C461C7F574CD65267A8B0DC325DAAA10075F67165B98C4F4EFC3/0/05BAF2939E37DDDE1793A803162A35594ACBB405.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/05BAF2939E37DDDE1793A803162A35594ACBB405.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Thu 01 May 2025 09:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2c:d5:a1:ce:6e:60:2f:13:f6:c2:c7:2a:24:3d:c8:21:3b:72:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3438EF474B88120C954212EE504ACF2C02AF3889 Validity Not Before: Apr 22 11:52:23 2025 GMT Not After : Apr 21 11:57:23 2026 GMT Subject: CN=88EB65F88AA0EBB775AF7AF585A6AB17317277E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:ff:32:a9:ed:27:c7:6a:14:fb:dd:a3:10: f1:57:f6:a5:72:70:8e:6c:42:5f:49:84:c1:d1:88: 10:4b:27:c5:aa:b4:24:f2:ed:bf:ef:17:67:78:74: d7:7e:8c:90:08:68:32:e1:94:3e:0c:60:86:16:ab: 99:d7:32:1d:1b:a2:81:52:c2:0b:19:0d:c0:2e:13: 6d:22:1e:dc:2f:27:34:23:a4:f5:f9:92:bb:1c:1f: 32:98:ca:bc:b4:29:65:82:36:6e:26:ce:fd:03:3b: e8:7a:5e:2d:c5:68:ce:00:2a:b4:ba:25:f7:40:ed: 19:4a:11:d3:ba:49:a5:b5:cd:46:c3:cf:8b:00:8e: b5:ce:45:29:11:69:09:7d:97:93:1e:76:a9:90:ea: fb:93:a5:b2:d1:cd:85:62:e5:74:2b:7b:c1:5e:3a: 74:04:ce:fa:bd:a0:b3:b1:e4:87:96:6c:6b:0a:46: ee:4d:a8:1c:c3:e3:ba:10:5e:bc:c9:18:cd:15:21: ad:f0:31:28:dd:be:f1:db:dd:22:7d:0f:38:a4:c7: 47:a8:4c:cd:c9:7c:d5:7e:85:fa:79:77:88:60:59: ad:4b:7a:d5:e6:56:10:7e:cb:69:7e:e4:2c:dd:8d: 3a:be:ce:f3:d3:85:91:9c:ff:1e:71:1d:06:d4:4c: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EB:65:F8:8A:A0:EB:B7:75:AF:7A:F5:85:A6:AB:17:31:72:77:E1 X509v3 Authority Key Identifier: keyid:34:38:EF:47:4B:88:12:0C:95:42:12:EE:50:4A:CF:2C:02:AF:38:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3438EF474B88120C954212EE504ACF2C02AF3889.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/3438EF474B88120C954212EE504ACF2C02AF3889.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.registro.br/repo/4dP7NF1Bd3vAzGDcj7vmQVW9fkrAQ7PymP9uxM8BMUWM/0/3137372e3133302e3132382e302f31392d3235203d3e203238323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.130.128.0/19 Signature Algorithm: sha256WithRSAEncryption 41:80:32:09:bd:e2:37:f6:64:8b:82:aa:f8:f2:9d:db:70:8b: 66:0a:5d:74:dd:d8:ff:af:28:6e:d5:6b:e8:de:52:c6:c7:eb: 5c:bf:0c:12:dd:21:21:24:f9:e8:2b:10:53:58:07:30:c3:7e: 54:67:23:3d:94:79:4a:ac:cb:fc:07:6a:ad:a5:ce:8e:91:65: 5e:fd:b1:37:d4:8b:86:ab:4d:e8:88:74:7e:17:e4:50:75:26: b2:4e:3b:6c:b7:51:51:f0:f4:bf:47:14:69:15:41:cf:75:10: 3d:89:7f:d5:d4:1b:10:31:ac:37:7f:77:b9:83:55:66:7b:d4: 83:1c:bf:26:8f:5d:fa:e3:da:ae:07:f0:84:17:e1:90:0e:8b: 6a:69:bf:d1:14:f0:42:f0:10:a2:ae:b3:b2:84:38:a7:4e:e5: 88:8e:dd:9d:d0:a2:a4:40:0f:2d:89:ec:54:1e:e6:30:dc:f8: 22:70:bf:f5:57:75:26:2c:12:0b:75:2c:8f:2e:06:85:67:a6: d3:30:51:ba:31:ea:da:0e:f1:4b:15:59:33:9d:df:ba:3f:a9: 03:b3:77:d2:ee:6e:3a:13:84:21:68:f1:94:a9:4f:16:33:96: 32:6f:5d:98:d4:b1:ee:e9:f3:6b:95:85:dc:e2:91:b3:65:af: 43:55:50:69 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIUZizVoc5uYC8T9sLHKiQ9yCE7clkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQzOEVGNDc0Qjg4MTIwQzk1NDIxMkVFNTA0QUNGMkMw MkFGMzg4OTAeFw0yNTA0MjIxMTUyMjNaFw0yNjA0MjExMTU3MjNaMDMxMTAvBgNV BAMTKDg4RUI2NUY4OEFBMEVCQjc3NUFGN0FGNTg1QTZBQjE3MzE3Mjc3RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzo/8yqe0nx2oU+92jEPFX9qVy cI5sQl9JhMHRiBBLJ8WqtCTy7b/vF2d4dNd+jJAIaDLhlD4MYIYWq5nXMh0booFS wgsZDcAuE20iHtwvJzQjpPX5krscHzKYyry0KWWCNm4mzv0DO+h6Xi3FaM4AKrS6 JfdA7RlKEdO6SaW1zUbDz4sAjrXORSkRaQl9l5MedqmQ6vuTpbLRzYVi5XQre8Fe OnQEzvq9oLOx5IeWbGsKRu5NqBzD47oQXrzJGM0VIa3wMSjdvvHb3SJ9Dzikx0eo TM3JfNV+hfp5d4hgWa1LetXmVhB+y2l+5CzdjTq+zvPThZGc/x5xHQbUTILdAgMB AAGjggJRMIICTTAdBgNVHQ4EFgQUiOtl+Iqg67d1r3r1haarFzFyd+EwHwYDVR0j BBgwFoAUNDjvR0uIEgyVQhLuUErPLAKvOIkwDgYDVR0PAQH/BAQDAgeAMIGUBgNV HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy L3JlcG8vNGRQN05GMUJkM3ZBekdEY2o3dm1RVlc5ZmtyQVE3UHltUDl1eE04Qk1V V00vMC8zNDM4RUY0NzRCODgxMjBDOTU0MjEyRUU1MDRBQ0YyQzAyQUYzODg5LmNy bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8xLzM0MzhFRjQ3NEI4ODEyMEM5 NTQyMTJFRTUwNEFDRjJDMDJBRjM4ODkuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv LzRkUDdORjFCZDN2QXpHRGNqN3ZtUVZXOWZrckFRN1B5bVA5dXhNOEJNVVdNLzAv MzEzNzM3MmUzMTMzMzAyZTMxMzIzODJlMzAyZjMxMzkyZDMyMzUyMDNkM2UyMDMy MzgzMjMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH AQcBAf8EEDAOMAwEAgABMAYDBAWxgoAwDQYJKoZIhvcNAQELBQADggEBAEGAMgm9 4jf2ZIuCqvjyndtwi2YKXXTd2P+vKG7Va+jeUsbH61y/DBLdISEk+egrEFNYBzDD flRnIz2UeUqsy/wHaq2lzo6RZV79sTfUi4arTeiIdH4X5FB1JrJOO2y3UVHw9L9H FGkVQc91ED2Jf9XUGxAxrDd/d7mDVWZ71IMcvyaPXfrj2q4H8IQX4ZAOi2ppv9EU 8ELwEKKus7KEOKdO5YiO3Z3QoqRADy2J7FQe5jDc+CJwv/VXdSYsEgt1LI8uBoVn ptMwUbox6toO8UsVWTOd37o/qQOzd9LubjoThCFo8ZSpTxYzljJvXZjUse7p82uV hdzikbNlr0NVUGk= -----END CERTIFICATE-----Generated at Thu May 1 00:09:19 2025 by rpki-client